A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.
☆126Apr 15, 2024Updated 2 years ago
Alternatives and similar repositories for BIPIA
Users that are interested in BIPIA are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- [ACL 2025] The official implementation of the paper "PIGuard: Prompt Injection Guardrail via Mitigating Overdefense for Free".☆76Dec 4, 2025Updated 5 months ago
- The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".☆71Oct 23, 2024Updated last year
- The official implementation of the paper "AgentDyn: A Dynamic Open-Ended Benchmark for Evaluating Prompt Injection Attacks of Real-World …☆50May 2, 2026Updated 2 weeks ago
- This repository provides a benchmark for prompt injection attacks and defenses in LLMs☆444Oct 29, 2025Updated 6 months ago
- Code for Voice Jailbreak Attacks Against GPT-4o.☆38May 31, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Code to conduct an embedding attack on LLMs☆32Jan 10, 2025Updated last year
- Utilities for Python developing and debugging.☆25Dec 1, 2021Updated 4 years ago
- Code for our paper "Defending ChatGPT against Jailbreak Attack via Self-Reminder" in NMI.☆57Nov 13, 2023Updated 2 years ago
- official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries☆72Nov 10, 2025Updated 6 months ago
- A fast + lightweight implementation of the GCG algorithm in PyTorch☆331May 13, 2025Updated last year
- Every practical and proposed defense against prompt injection.☆690Feb 22, 2025Updated last year
- 针对大模型的后门攻击☆12Jun 30, 2024Updated last year
- An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)☆115Jan 21, 2025Updated last year
- A lightweight library for large laguage model (LLM) jailbreaking defense.☆60Sep 11, 2025Updated 8 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.☆566Mar 30, 2026Updated last month
- Code used to run the platform for the LLM CTF colocated with SaTML 2024☆28Mar 20, 2024Updated 2 years ago
- Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]☆112Sep 27, 2024Updated last year
- An easy-to-use Python framework to generate adversarial jailbreak prompts.☆853Mar 30, 2026Updated last month
- The automated prompt injection framework for LLM-integrated applications.☆264Sep 12, 2024Updated last year
- A curated collection of papers and related projects on using LLMs for privacy.☆31Oct 8, 2025Updated 7 months ago
- [COLM 2024] JailBreakV-28K: A comprehensive benchmark designed to evaluate the transferability of LLM jailbreak attacks to MLLMs, and fur…☆92May 9, 2025Updated last year
- ☆137Jul 2, 2024Updated last year
- Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)☆162Nov 30, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"☆62Aug 8, 2024Updated last year
- TaskTracker is an approach to detecting task drift in Large Language Models (LLMs) by analysing their internal activations. It provides a…☆87Sep 1, 2025Updated 8 months ago
- An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)☆45Feb 8, 2024Updated 2 years ago
- New ways of breaking app-integrated LLMs☆2,092Jul 17, 2025Updated 10 months ago
- The python implementation of our "UA-FedRec: Untargeted Attack on Federated News Recommendation" in KDD 2023.☆20Aug 2, 2022Updated 3 years ago
- [ICLR 2026] The official code for "Doxing via the Lens: Revealing Location-related Privacy Leakage on Multi-modal Large Reasoning Models"☆26Feb 7, 2026Updated 3 months ago
- [ACL 2025] Beyond Prompt Engineering: Robust Behavior Control in LLMs via Steering Target Atoms☆41Jun 4, 2025Updated 11 months ago
- [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability☆176Dec 18, 2024Updated last year
- ☆100Oct 15, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 华中科技大学网络安全课程设计-Linux下的状态检测防火墙☆11Oct 17, 2022Updated 3 years ago
- SG-Bench: Evaluating LLM Safety Generalization Across Diverse Tasks and Prompt Types☆25Nov 29, 2024Updated last year
- Audio Jailbreak: An Open Comprehensive Benchmark for Jailbreaking Large Audio-Language Models☆33Oct 6, 2025Updated 7 months ago
- HarmBench: A Standardized Evaluation Framework for Automated Red Teaming and Robust Refusal☆947Aug 16, 2024Updated last year
- ☆11Jan 3, 2024Updated 2 years ago
- TAP: An automated jailbreaking method for black-box LLMs☆231Dec 10, 2024Updated last year
- ICLR2024 Paper. Showing properties of safety tuning and exaggerated safety.☆93May 9, 2024Updated 2 years ago