Alternatives and similar repositories for jailbreak-bench

Users that are interested in jailbreak-bench are comparing it to the libraries listed below

• aaFrostnova / Papillon
  [Usenix Security 2025] Official repo of paper PAPILLON: Efficient and Stealthy Fuzz Testing-Powered Jailbreaks for LLMs
  ☆15Updated 4 months ago
• xirui-li / DrAttack
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆62Updated last year
• ThuCCSLab / FigStep
  [AAAI'25 (Oral)] Jailbreaking Large Vision-language Models via Typographic Visual Prompts
  ☆173Updated 3 months ago
• WUSTL-CSPL / LLMJailbreak
  ☆36Updated last year
• Aegis1863 / xJailbreak
  Code of paper: xJailbreak: Representation Space Guided Reinforcement Learning for Interpretable LLM Jailbreaking"
  ☆14Updated 6 months ago
• BHui97 / PLeak
  ☆62Updated 9 months ago
• NY1024 / Jailbreak_GPT4o
  ☆24Updated last year
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆188Updated 9 months ago
• NJUNLP / ReNeLLM
  The official implementation of our NAACL 2024 paper "A Wolf in Sheep’s Clothing: Generalized Nested Jailbreak Prompts can Fool Large Lang…
  ☆137Updated last month
• huizhang-L / CodeChameleon
  ☆23Updated last year
• uw-nsl / ArtPrompt
  [ACL24] Official Repo of Paper `ArtPrompt: ASCII Art-based Jailbreak Attacks against Aligned LLMs`
  ☆85Updated last month
• Lyz1213 / BadEdit
  ☆35Updated 11 months ago
• SheltonLiu-N / AutoDAN
  [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language M…
  ☆383Updated 8 months ago
• JailbreakBench / jailbreakbench
  JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]
  ☆422Updated 6 months ago
• ltroin / llm_attack_defense_arena
  ☆82Updated last month
• Unispac / Visual-Adversarial-Examples-Jailbreak-Large-Language-Models
  Repository for the Paper (AAAI 2024, Oral) --- Visual Adversarial Examples Jailbreak Large Language Models
  ☆240Updated last year
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆200Updated 7 months ago
• HKUST-KnowComp / LLM-Multistep-Jailbreak
  Code for Findings-EMNLP 2023 paper: Multi-step Jailbreaking Privacy Attacks on ChatGPT
  ☆35Updated last year
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆149Updated 10 months ago
• LLM-DRA / DRA
  [USENIX Security'24] Official repository of "Making Them Ask and Answer: Jailbreaking Large Language Models in Few Queries via Disguise a…
  ☆108Updated 11 months ago
• tmlr-group / DeepInception
  [arXiv:2311.03191] "DeepInception: Hypnotize Large Language Model to Be Jailbreaker"
  ☆163Updated last year
• Vinsonzyh / BlueSuffix
  [ICLR 2025] BlueSuffix: Reinforced Blue Teaming for Vision-Language Models Against Jailbreak Attacks
  ☆22Updated 5 months ago
• AI45Lab / ActorAttack
  ☆104Updated 8 months ago
• tmllab / 2025_ICLR_PiF
  ☆35Updated 4 months ago
• kztakemoto / simbaja
  All in How You Ask for It: Simple Black-Box Method for Jailbreak Attacks
  ☆18Updated last year
• shadowkiller33 / Language_attack
  A repo for LLM jailbreak
  ☆14Updated 2 years ago
• DPamK / BadAgent
  ☆21Updated 7 months ago
• ThuCCSLab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆170Updated 6 months ago
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆38Updated last year
• chen37058 / Red-Team-Arxiv-Paper-Update
  Awesome Jailbreak, red teaming arxiv papers (Automatically Update Every 12th hours)
  ☆64Updated this week