Alternatives and similar repositories for BEAST:

Users that are interested in BEAST are comparing it to the libraries listed below

• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆41Updated 4 months ago
• ThuCCSLab / JailbreakEval
  [NDSS'25 Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆116Updated 2 weeks ago
• AIM-Intelligence / Automated-Multi-Turn-Jailbreaks
  ☆35Updated 3 months ago
• ebagdasa / multimodal_injection
  ☆79Updated last year
• chawins / pal
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆49Updated 6 months ago
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆146Updated 2 months ago
• microsoft / BIPIA
  A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.
  ☆60Updated 10 months ago
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆136Updated 2 months ago
• liu00222 / Open-Prompt-Injection
  This repository provides implementation to formalize and benchmark Prompt Injection attacks and defenses
  ☆174Updated last month
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆35Updated last year
• Libr-AI / OpenRedTeaming
  Papers about red teaming LLMs and Multimodal models.
  ☆99Updated 3 months ago
• TrustAIResearch / MLHospital
  ☆44Updated last year
• wagner-group / prompt-injection-defense
  Fine-tuning base models to build robust task-specific models
  ☆27Updated 10 months ago
• uiuc-kang-lab / InjecAgent
  ☆54Updated 8 months ago
• azshue / AutoPoison
  The official repository of the paper "On the Exploitability of Instruction Tuning".
  ☆60Updated last year
• ethz-spylab / agentdojo
  A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
  ☆100Updated this week
• HKU-TASR / Imperio
  [IJCAI 2024] Imperio is an LLM-powered backdoor attack. It allows the adversary to issue language-guided instructions to control the vict…
  ☆41Updated last week
• JonasGeiping / carving
  Package to optimize Adversarial Attacks against (Large) Language Models with Varied Objectives
  ☆67Updated last year
• dreadnode / parley
  Tree of Attacks (TAP) Jailbreaking Implementation
  ☆100Updated last year
• reds-lab / BEEAR
  This is the official Gtihub repo for our paper: "BEEAR: Embedding-based Adversarial Removal of Safety Backdoors in Instruction-tuned Lang…
  ☆14Updated 8 months ago
• Aatrox103 / SAP
  ☆43Updated 9 months ago
• centerforaisafety / wmdp
  WMDP is a LLM proxy benchmark for hazardous knowledge in bio, cyber, and chemical security. We also release code for RMU, an unlearning m…
  ☆102Updated 10 months ago
• ThuCCSLab / FigStep
  [AAAI'25 (Oral)] Jailbreaking Large Vision-language Models via Typographic Visual Prompts
  ☆113Updated last week
• sail-sg / P-DoS
  [ArXiv 2024] Denial-of-Service Poisoning Attacks on Large Language Models
  ☆16Updated 4 months ago
• dreadnode / research
  General research for Dreadnode
  ☆19Updated 8 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆60Updated 5 months ago
• leondz / lm_risk_cards
  Risks and targets for assessing LLMs & LLM vulnerabilities
  ☆30Updated 9 months ago
• rucnyz / PrivAgent
  ☆11Updated 3 months ago
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆19Updated 3 months ago