ethz-spylab / agentdojoLinks
A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
☆288Updated last month
Alternatives and similar repositories for agentdojo
Users that are interested in agentdojo are comparing it to the libraries listed below
Sorting:
- ☆80Updated last year
- This repository provides a benchmark for prompt Injection attacks and defenses☆289Updated 2 months ago
- A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.☆82Updated last year
- TAP: An automated jailbreaking method for black-box LLMs☆186Updated 9 months ago
- Code to generate NeuralExecs (prompt injection for LLMs)☆24Updated 10 months ago
- Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]☆350Updated 8 months ago
- [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"☆155Updated 5 months ago
- The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".☆58Updated 11 months ago
- [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.☆170Updated 6 months ago
- A fast + lightweight implementation of the GCG algorithm in PyTorch☆287Updated 4 months ago
- Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"☆69Updated 2 months ago
- ☆62Updated 9 months ago
- [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents☆49Updated 2 months ago
- ☆626Updated 3 months ago
- Papers about red teaming LLMs and Multimodal models.☆140Updated 4 months ago
- [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models☆200Updated 7 months ago
- ☆46Updated last year
- [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability☆166Updated 9 months ago
- Agent Security Bench (ASB)☆123Updated 3 months ago
- [NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models☆218Updated 2 weeks ago
- A repository of Language Model Vulnerabilities and Exposures (LVEs).☆114Updated last year
- The automated prompt injection framework for LLM-integrated applications.☆233Updated last year
- Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]☆91Updated last year
- JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]☆422Updated 6 months ago
- TaskTracker is an approach to detecting task drift in Large Language Models (LLMs) by analysing their internal activations. It provides a…☆66Updated last month
- official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries☆45Updated 2 months ago
- [USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…☆52Updated 6 months ago
- A benchmark for prompt injection detection systems.☆142Updated last month
- ☆23Updated last month
- A Comprehensive Assessment of Trustworthiness in GPT Models☆302Updated last year