Alternatives and similar repositories for agentdojo

Users that are interested in agentdojo are comparing it to the libraries listed below

• uiuc-kang-lab / InjecAgent
  ☆80Updated last year
• liu00222 / Open-Prompt-Injection
  This repository provides a benchmark for prompt Injection attacks and defenses
  ☆289Updated 2 months ago
• microsoft / BIPIA
  A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.
  ☆82Updated last year
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆186Updated 9 months ago
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆24Updated 10 months ago
• tml-epfl / llm-adaptive-attacks
  Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]
  ☆350Updated 8 months ago
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆155Updated 5 months ago
• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆58Updated 11 months ago
• ThuCCSLab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆170Updated 6 months ago
• GraySwanAI / nanoGCG
  A fast + lightweight implementation of the GCG algorithm in PyTorch
  ☆287Updated 4 months ago
• facebookresearch / SecAlign
  Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"
  ☆69Updated 2 months ago
• BHui97 / PLeak
  ☆62Updated 9 months ago
• AI-secure / RedCode
  [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
  ☆49Updated 2 months ago
• patrickrchao / JailbreakingLLMs
  ☆626Updated 3 months ago
• Libr-AI / OpenRedTeaming
  Papers about red teaming LLMs and Multimodal models.
  ☆140Updated 4 months ago
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆200Updated 7 months ago
• haizelabs / redteaming-resistance-benchmark
  ☆46Updated last year
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆166Updated 9 months ago
• agiresearch / ASB
  Agent Security Bench (ASB)
  ☆123Updated 3 months ago
• bboylyg / BackdoorLLM
  [NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models
  ☆218Updated 2 weeks ago
• lve-org / lve
  A repository of Language Model Vulnerabilities and Exposures (LVEs).
  ☆114Updated last year
• LLMSecurity / HouYi
  The automated prompt injection framework for LLM-integrated applications.
  ☆233Updated last year
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆91Updated last year
• JailbreakBench / jailbreakbench
  JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]
  ☆422Updated 6 months ago
• microsoft / TaskTracker
  TaskTracker is an approach to detecting task drift in Large Language Models (LLMs) by analysing their internal activations. It provides a…
  ☆66Updated last month
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆45Updated 2 months ago
• datasec-lab / CodeBreaker
  [USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…
  ☆52Updated 6 months ago
• lakeraai / pint-benchmark
  A benchmark for prompt injection detection systems.
  ☆142Updated last month
• rucnyz / LeakAgent
  ☆23Updated last month
• AI-secure / DecodingTrust
  A Comprehensive Assessment of Trustworthiness in GPT Models
  ☆302Updated last year