This repository provides a benchmark for prompt injection attacks and defenses in LLMs
β460Oct 29, 2025Updated 8 months ago
Alternatives and similar repositories for Open-Prompt-Injection
Users that are interested in Open-Prompt-Injection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Papers and resources related to the security and privacy of LLMs π€β579Jun 8, 2025Updated last year
- Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"β98Jun 20, 2026Updated last week
- β747Jul 2, 2025Updated 11 months ago
- The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".β72Oct 23, 2024Updated last year
- β145Jul 2, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queriesβ76Nov 10, 2025Updated 7 months ago
- Code for our NAACL2025 accepted paper: Attention Tracker: Detecting Prompt Injection Attacks in LLMsβ28Sep 19, 2025Updated 9 months ago
- A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.β630Jun 2, 2026Updated 3 weeks ago
- Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Promptsβ589Feb 27, 2026Updated 4 months ago
- [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Modelsβ280Jan 27, 2026Updated 5 months ago
- Code for the API, workload execution, and agents underlying the LLMail-Inject Adpative Prompt Injection Challengeβ25Apr 9, 2026Updated 2 months ago
- TAP: An automated jailbreaking method for black-box LLMsβ238Dec 10, 2024Updated last year
- Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]β388Jan 23, 2025Updated last year
- A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.β138Apr 15, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI β’ AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Fine-tuning base models to build robust task-specific modelsβ36Apr 11, 2024Updated 2 years ago
- [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"β223Jun 17, 2026Updated last week
- [ICML 2025] An official source code for paper "FlipAttack: Jailbreak LLMs via Flipping".β175May 2, 2025Updated last year
- Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)β163Nov 30, 2024Updated last year
- PromptInject is a framework that assembles prompts in a modular fashion to provide a quantitative analysis of the robustness of LLMs to aβ¦β501Apr 27, 2026Updated 2 months ago
- a security scanner for custom LLM applicationsβ1,207Dec 1, 2025Updated 6 months ago
- A reading list for large models safety, security, and privacy (including Awesome LLM Security, Safety, etc.).β2,004Jun 17, 2026Updated last week
- Every practical and proposed defense against prompt injection.β707Feb 22, 2025Updated last year
- β201Nov 26, 2023Updated 2 years ago
- Open source password manager - Proton Pass β’ AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]β615Apr 4, 2025Updated last year
- Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]β113Sep 27, 2024Updated last year
- [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllabilityβ176Dec 18, 2024Updated last year
- Agent Security Bench (ASB)β264Apr 16, 2026Updated 2 months ago
- [ACL 2025] The official implementation of the paper "PIGuard: Prompt Injection Guardrail via Mitigating Overdefense for Free".β77Dec 4, 2025Updated 6 months ago
- Awesome-Jailbreak-on-LLMs is a collection of state-of-the-art, novel, exciting jailbreak methods on LLMs. It contains papers, codes, dataβ¦β1,476Jun 7, 2026Updated 3 weeks ago
- Indirect Prompt Injection Methodology (IPIM) - A structured process which security professionals can use to find Indirect Prompt Injectioβ¦β21Jul 28, 2025Updated 11 months ago
- β39May 17, 2025Updated last year
- Universal and Transferable Attacks on Aligned Language Modelsβ4,714Aug 2, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- [COLM 2024] JailBreakV-28K: A comprehensive benchmark designed to evaluate the transferability of LLM jailbreak attacks to MLLMs, and furβ¦β96May 9, 2025Updated last year
- [CCS 2024] Optimization-based Prompt Injection Attack to LLM-as-a-Judgeβ40Sep 17, 2025Updated 9 months ago
- We jailbreak GPT-3.5 Turboβs safety guardrails by fine-tuning it on only 10 adversarially designed examples, at a cost of less than $0.20β¦β356Feb 23, 2024Updated 2 years ago
- [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language Mβ¦β445Jan 22, 2025Updated last year
- [ICLR 2025] Dissecting adversarial robustness of multimodal language model agentsβ139Feb 19, 2025Updated last year
- code of paper "Defending Against Alignment-Breaking Attacks via Robustly Aligned LLM"β14Nov 17, 2023Updated 2 years ago
- The automated prompt injection framework for LLM-integrated applications.β266Sep 12, 2024Updated last year