Alternatives and similar repositories for BEAST

Users that are interested in BEAST are comparing it to the libraries listed below

• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆67Updated last year
• chawins / pal
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆55Updated last year
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆176Updated last year
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆213Updated last year
• Libr-AI / OpenRedTeaming
  Papers about red teaming LLMs and Multimodal models.
  ☆159Updated 7 months ago
• CryptoAILab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆178Updated 9 months ago
• AIM-Intelligence / Automated-Multi-Turn-Jailbreaks
  ☆111Updated last month
• liu00222 / Open-Prompt-Injection
  This repository provides a benchmark for prompt injection attacks and defenses in LLMs
  ☆368Updated 2 months ago
• shreyansh26 / Red-Teaming-Language-Models-with-Language-Models
  A re-implementation of the "Red Teaming Language Models with Language Models" paper by Perez et al., 2022
  ☆35Updated 2 years ago
• reds-lab / BEEAR
  This is the official Gtihub repo for our paper: "BEEAR: Embedding-based Adversarial Removal of Safety Backdoors in Instruction-tuned Lang…
  ☆20Updated last year
• AI-secure / RedCode
  [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
  ☆61Updated last month
• uiuc-kang-lab / InjecAgent
  ☆101Updated last year
• centerforaisafety / wmdp
  WMDP is a LLM proxy benchmark for hazardous knowledge in bio, cyber, and chemical security. We also release code for RMU, an unlearning m…
  ☆157Updated 7 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆105Updated last year
• dsbowen / strong_reject
  ☆119Updated 6 months ago
• GraySwanAI / nanoGCG
  A fast + lightweight implementation of the GCG algorithm in PyTorch
  ☆308Updated 7 months ago
• tml-epfl / llm-adaptive-attacks
  Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]
  ☆371Updated 11 months ago
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆157Updated last year
• BHui97 / PLeak
  ☆75Updated last year
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆45Updated last year
• dreadnode / research
  General research for Dreadnode
  ☆27Updated last year
• ebagdasa / multimodal_injection
  ☆96Updated 2 years ago
• JonasGeiping / carving
  Package to optimize Adversarial Attacks against (Large) Language Models with Varied Objectives
  ☆70Updated last year
• microsoft / BIPIA
  A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.
  ☆97Updated last year
• Princeton-SysML / Jailbreak_LLM
  ☆191Updated 2 years ago
• uw-nsl / ArtPrompt
  [ACL24] Official Repo of Paper `ArtPrompt: ASCII Art-based Jailbreak Attacks against Aligned LLMs`
  ☆90Updated 4 months ago
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆182Updated 8 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆173Updated last year
• wagner-group / prompt-injection-defense
  Fine-tuning base models to build robust task-specific models
  ☆34Updated last year
• weizeming / momentum-attack-llm
  ☆23Updated 11 months ago