This repository provides a benchmark for prompt injection attacks and defenses in LLMs
β452Oct 29, 2025Updated 7 months ago
Alternatives and similar repositories for Open-Prompt-Injection
Users that are interested in Open-Prompt-Injection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Papers and resources related to the security and privacy of LLMs π€β579Jun 8, 2025Updated last year
- Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"β96May 6, 2026Updated last month
- β740Jul 2, 2025Updated 11 months ago
- The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".β71Oct 23, 2024Updated last year
- β141Jul 2, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queriesβ75Nov 10, 2025Updated 6 months ago
- Code for our NAACL2025 accepted paper: Attention Tracker: Detecting Prompt Injection Attacks in LLMsβ25Sep 19, 2025Updated 8 months ago
- A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.β598Jun 2, 2026Updated last week
- Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Promptsβ586Feb 27, 2026Updated 3 months ago
- [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Modelsβ272Jan 27, 2026Updated 4 months ago
- Code for the API, workload execution, and agents underlying the LLMail-Inject Adpative Prompt Injection Challengeβ25Apr 9, 2026Updated 2 months ago
- TAP: An automated jailbreaking method for black-box LLMsβ236Dec 10, 2024Updated last year
- Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]β385Jan 23, 2025Updated last year
- A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.β131Apr 15, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Fine-tuning base models to build robust task-specific modelsβ36Apr 11, 2024Updated 2 years ago
- [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"β217Apr 12, 2025Updated last year
- [ICML 2025] An official source code for paper "FlipAttack: Jailbreak LLMs via Flipping".β171May 2, 2025Updated last year
- Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)β163Nov 30, 2024Updated last year
- PromptInject is a framework that assembles prompts in a modular fashion to provide a quantitative analysis of the robustness of LLMs to aβ¦β496Apr 27, 2026Updated last month
- a security scanner for custom LLM applicationsβ1,205Dec 1, 2025Updated 6 months ago
- A reading list for large models safety, security, and privacy (including Awesome LLM Security, Safety, etc.).β1,985May 27, 2026Updated last week
- Every practical and proposed defense against prompt injection.β699Feb 22, 2025Updated last year
- β201Nov 26, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]β605Apr 4, 2025Updated last year
- Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]β112Sep 27, 2024Updated last year
- [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllabilityβ176Dec 18, 2024Updated last year
- Agent Security Bench (ASB)β252Apr 16, 2026Updated last month
- [ACL 2025] The official implementation of the paper "PIGuard: Prompt Injection Guardrail via Mitigating Overdefense for Free".β76Dec 4, 2025Updated 6 months ago
- Awesome-Jailbreak-on-LLMs is a collection of state-of-the-art, novel, exciting jailbreak methods on LLMs. It contains papers, codes, dataβ¦β1,406May 30, 2026Updated last week
- Indirect Prompt Injection Methodology (IPIM) - A structured process which security professionals can use to find Indirect Prompt Injectioβ¦β21Jul 28, 2025Updated 10 months ago
- β39May 17, 2025Updated last year
- Universal and Transferable Attacks on Aligned Language Modelsβ4,690Aug 2, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- [COLM 2024] JailBreakV-28K: A comprehensive benchmark designed to evaluate the transferability of LLM jailbreak attacks to MLLMs, and furβ¦β94May 9, 2025Updated last year
- We jailbreak GPT-3.5 Turboβs safety guardrails by fine-tuning it on only 10 adversarially designed examples, at a cost of less than $0.20β¦β351Feb 23, 2024Updated 2 years ago
- [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language Mβ¦β444Jan 22, 2025Updated last year
- [ICLR 2025] Dissecting adversarial robustness of multimodal language model agentsβ137Feb 19, 2025Updated last year
- code of paper "Defending Against Alignment-Breaking Attacks via Robustly Aligned LLM"β14Nov 17, 2023Updated 2 years ago
- The automated prompt injection framework for LLM-integrated applications.β266Sep 12, 2024Updated last year
- Whispers in the Machine: Confidentiality in Agentic Systemsβ44Apr 20, 2026Updated last month