microsoft/BIPIA

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/microsoft/BIPIA)

microsoft / BIPIA

A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.

☆104

Alternatives and similar repositories for BIPIA

Users that are interested in BIPIA are comparing it to the libraries listed below

Sorting:

SheltonLiu-N / Universal-Prompt-Injection
View on GitHub
The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
☆69Oct 23, 2024Updated last year
Valhall-ai / prompt-injection-mitigations
View on GitHub
A collection of prompt injection mitigation techniques.
☆27Aug 19, 2023Updated 2 years ago
TrustAIRLab / VoiceJailbreakAttack
View on GitHub
Code for Voice Jailbreak Attacks Against GPT-4o.
☆36May 31, 2024Updated last year
liu00222 / Open-Prompt-Injection
View on GitHub
This repository provides a benchmark for prompt injection attacks and defenses in LLMs
☆395Oct 29, 2025Updated 3 months ago
SchwinnL / LLM_Embedding_Attack
View on GitHub
Code to conduct an embedding attack on LLMs
☆31Jan 10, 2025Updated last year
lakeraai / pint-benchmark
View on GitHub
A benchmark for prompt injection detection systems.
☆162Dec 16, 2025Updated 2 months ago
OSU-NLP-Group / AgentAttack
View on GitHub
☆23Oct 25, 2024Updated last year
pasquini-dario / LLM_NeuralExec
View on GitHub
Code to generate NeuralExecs (prompt injection for LLMs)
☆27Oct 5, 2025Updated 4 months ago
Sizhe-Chen / StruQ
View on GitHub
official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
☆63Nov 10, 2025Updated 3 months ago
dzungvpham / awesome-llm4privacy
View on GitHub
A curated collection of papers and related projects on using LLMs for privacy.
☆24Oct 8, 2025Updated 4 months ago
huggingface / candle-cublaslt
View on GitHub
☆12Feb 22, 2024Updated 2 years ago
ethz-spylab / satml-llm-ctf
View on GitHub
Code used to run the platform for the LLM CTF colocated with SaTML 2024
☆28Mar 20, 2024Updated last year
ghuntley / strace-to-application
View on GitHub
☆20Jul 19, 2025Updated 7 months ago
GraySwanAI / nanoGCG
View on GitHub
A fast + lightweight implementation of the GCG algorithm in PyTorch
☆318May 13, 2025Updated 9 months ago
LLMSecurity / HouYi
View on GitHub
The automated prompt injection framework for LLM-integrated applications.
☆254Sep 12, 2024Updated last year
aeturrell / smartrappy
View on GitHub
Smart reproducible analytical pipeline inspection
☆21Feb 13, 2026Updated 2 weeks ago
justin-yan / pyjust
View on GitHub
☆14Jan 7, 2024Updated 2 years ago
SaFo-Lab / DoxBench
View on GitHub
[ICLR 2026] The official code for "Doxing via the Lens: Revealing Location-related Privacy Leakage on Multi-modal Large Reasoning Models"
☆23Feb 7, 2026Updated 3 weeks ago
microsoft / TaskTracker
View on GitHub
TaskTracker is an approach to detecting task drift in Large Language Models (LLMs) by analysing their internal activations. It provides a…
☆80Sep 1, 2025Updated 5 months ago
YihanWang617 / llm-jailbreaking-defense
View on GitHub
A lightweight library for large laguage model (LLM) jailbreaking defense.
☆61Sep 11, 2025Updated 5 months ago
GodXuxilie / PromptAttack
View on GitHub
An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
☆112Jan 21, 2025Updated last year
SaFo-Lab / JailBreakV_28K
View on GitHub
[COLM 2024] JailBreakV-28K: A comprehensive benchmark designed to evaluate the transferability of LLM jailbreak attacks to MLLMs, and fur…
☆87May 9, 2025Updated 9 months ago
usail-hkust / JailTrickBench
View on GitHub
Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
☆163Nov 30, 2024Updated last year
mbzuai-nlp / AudioJailbreak
View on GitHub
Audio Jailbreak: An Open Comprehensive Benchmark for Jailbreaking Large Audio-Language Models
☆30Oct 6, 2025Updated 4 months ago
tldrsec / prompt-injection-defenses
View on GitHub
Every practical and proposed defense against prompt injection.
☆642Feb 22, 2025Updated last year
WhileBug / AwesomeLLMJailBreakPapers
View on GitHub
Awesome LLM Jailbreak academic papers
☆124Nov 3, 2023Updated 2 years ago
centerforaisafety / HarmBench
View on GitHub
HarmBench: A Standardized Evaluation Framework for Automated Red Teaming and Robust Refusal
☆858Aug 16, 2024Updated last year
lindsey98 / PhishingBaseline
View on GitHub
Implementations of 3 phishing detection and identification baselines
☆20Nov 25, 2024Updated last year
greshake / llm-security
View on GitHub
New ways of breaking app-integrated LLMs
☆2,053Jul 17, 2025Updated 7 months ago
rt219 / LatentGuard
View on GitHub
This is the official repo of the paper "Latent Guard: a Safety Framework for Text-to-image Generation"
☆52Oct 24, 2024Updated last year
SproutNan / AI-Safety_Benchmark
View on GitHub
The official repository for guided jailbreak benchmark
☆28Jul 28, 2025Updated 7 months ago
RICommunity / TAP
View on GitHub
TAP: An automated jailbreaking method for black-box LLMs
☆221Dec 10, 2024Updated last year
rotaryhammer / code-autodan
View on GitHub
An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
☆45Feb 8, 2024Updated 2 years ago
vinusankars / BEAST
View on GitHub
Implementation of BEAST adversarial attack for language models (ICML 2024)
☆90May 14, 2024Updated last year
vgel / gmailsponge
View on GitHub
sponge your gmail with artificial intelligence
☆22Jan 22, 2025Updated last year
vinid / safety-tuned-llamas
View on GitHub
ICLR2024 Paper. Showing properties of safety tuning and exaggerated safety.
☆93May 9, 2024Updated last year
CryptoAILab / FigStep
View on GitHub
[AAAI'25 (Oral)] Jailbreaking Large Vision-language Models via Typographic Visual Prompts
☆191Jun 26, 2025Updated 8 months ago
Allen-piexl / JailbreakZoo
View on GitHub
☆164Sep 2, 2024Updated last year
patrickrchao / JailbreakingLLMs
View on GitHub
☆698Jul 2, 2025Updated 7 months ago