This repository provides a benchmark for prompt injection attacks and defenses in LLMs
β434Oct 29, 2025Updated 6 months ago
Alternatives and similar repositories for Open-Prompt-Injection
Users that are interested in Open-Prompt-Injection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Papers and resources related to the security and privacy of LLMs π€β573Jun 8, 2025Updated 10 months ago
- Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"β96Apr 14, 2026Updated 2 weeks ago
- β728Jul 2, 2025Updated 9 months ago
- The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".β70Oct 23, 2024Updated last year
- β132Jul 2, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queriesβ70Nov 10, 2025Updated 5 months ago
- Code for our NAACL2025 accepted paper: Attention Tracker: Detecting Prompt Injection Attacks in LLMsβ23Sep 19, 2025Updated 7 months ago
- A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.β546Mar 30, 2026Updated last month
- Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Promptsβ578Feb 27, 2026Updated 2 months ago
- [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Modelsβ262Jan 27, 2026Updated 3 months ago
- Code for the API, workload execution, and agents underlying the LLMail-Inject Adpative Prompt Injection Challengeβ22Apr 9, 2026Updated 3 weeks ago
- TAP: An automated jailbreaking method for black-box LLMsβ228Dec 10, 2024Updated last year
- Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]β385Jan 23, 2025Updated last year
- A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.β119Apr 15, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Fine-tuning base models to build robust task-specific modelsβ35Apr 11, 2024Updated 2 years ago
- [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"β214Apr 12, 2025Updated last year
- [ICML 2025] An official source code for paper "FlipAttack: Jailbreak LLMs via Flipping".β172May 2, 2025Updated 11 months ago
- Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)β161Nov 30, 2024Updated last year
- PromptInject is a framework that assembles prompts in a modular fashion to provide a quantitative analysis of the robustness of LLMs to aβ¦β485Feb 26, 2024Updated 2 years ago
- a security scanner for custom LLM applicationsβ1,180Dec 1, 2025Updated 4 months ago
- A reading list for large models safety, security, and privacy (including Awesome LLM Security, Safety, etc.).β1,941Apr 2, 2026Updated 3 weeks ago
- Every practical and proposed defense against prompt injection.β681Feb 22, 2025Updated last year
- β199Nov 26, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean β’ AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Agent Security Bench (ASB)β228Apr 16, 2026Updated last week
- JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]β582Apr 4, 2025Updated last year
- Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]β112Sep 27, 2024Updated last year
- [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllabilityβ176Dec 18, 2024Updated last year
- Awesome-Jailbreak-on-LLMs is a collection of state-of-the-art, novel, exciting jailbreak methods on LLMs. It contains papers, codes, dataβ¦β1,328Mar 30, 2026Updated last month
- [ACL 2025] The official implementation of the paper "PIGuard: Prompt Injection Guardrail via Mitigating Overdefense for Free".β76Dec 4, 2025Updated 4 months ago
- Indirect Prompt Injection Methodology (IPIM) - A structured process which security professionals can use to find Indirect Prompt Injectioβ¦β21Jul 28, 2025Updated 9 months ago
- β39May 17, 2025Updated 11 months ago
- Universal and Transferable Attacks on Aligned Language Modelsβ4,638Aug 2, 2024Updated last year
- Open source password manager - Proton Pass β’ AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- [COLM 2024] JailBreakV-28K: A comprehensive benchmark designed to evaluate the transferability of LLM jailbreak attacks to MLLMs, and furβ¦β89May 9, 2025Updated 11 months ago
- [CCS 2024] Optimization-based Prompt Injection Attack to LLM-as-a-Judgeβ40Sep 17, 2025Updated 7 months ago
- We jailbreak GPT-3.5 Turboβs safety guardrails by fine-tuning it on only 10 adversarially designed examples, at a cost of less than $0.20β¦β348Feb 23, 2024Updated 2 years ago
- [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language Mβ¦β439Jan 22, 2025Updated last year
- [ICLR 2025] Dissecting adversarial robustness of multimodal language model agentsβ138Feb 19, 2025Updated last year
- The automated prompt injection framework for LLM-integrated applications.β262Sep 12, 2024Updated last year
- code of paper "Defending Against Alignment-Breaking Attacks via Robustly Aligned LLM"β14Nov 17, 2023Updated 2 years ago