Alternatives and similar repositories for BEAST:

Users that are interested in BEAST are comparing it to the libraries listed below

• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆43Updated 5 months ago
• chawins / pal
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆49Updated 7 months ago
• Libr-AI / OpenRedTeaming
  Papers about red teaming LLMs and Multimodal models.
  ☆105Updated 4 months ago
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆153Updated 3 months ago
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆148Updated 3 months ago
• ebagdasa / multimodal_injection
  ☆81Updated last year
• liu00222 / Open-Prompt-Injection
  This repository provides implementation to formalize and benchmark Prompt Injection attacks and defenses
  ☆182Updated 2 months ago
• JonasGeiping / carving
  Package to optimize Adversarial Attacks against (Large) Language Models with Varied Objectives
  ☆67Updated last year
• ThuCCSLab / JailbreakEval
  [NDSS'25 Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆133Updated 3 weeks ago
• reds-lab / BEEAR
  This is the official Gtihub repo for our paper: "BEEAR: Embedding-based Adversarial Removal of Safety Backdoors in Instruction-tuned Lang…
  ☆16Updated 9 months ago
• RapidResponseBench / rapidresponsebench
  ☆31Updated 4 months ago
• wagner-group / prompt-injection-defense
  Fine-tuning base models to build robust task-specific models
  ☆28Updated 11 months ago
• RenatoGeh / advtok
  Adversarial Tokenization
  ☆18Updated this week
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆37Updated last year
• uiuc-kang-lab / InjecAgent
  ☆57Updated 9 months ago
• SchwinnL / LLM_Embedding_Attack
  Code to conduct an embedding attack on LLMs
  ☆23Updated 2 months ago
• weizeming / momentum-attack-llm
  ☆20Updated 2 months ago
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆105Updated 2 months ago
• AIM-Intelligence / Automated-Multi-Turn-Jailbreaks
  ☆41Updated 4 months ago
• Aatrox103 / SAP
  ☆43Updated 10 months ago
• microsoft / BIPIA
  A benchmark for evaluating the robustness of LLMs and defenses to indirect prompt injection attacks.
  ☆63Updated 11 months ago
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆20Updated 4 months ago
• dsbowen / strong_reject
  ☆51Updated 2 months ago
• TrustAIResearch / MLHospital
  ☆44Updated last year
• aengusl / latent-adversarial-training
  ☆33Updated 6 months ago
• centerforaisafety / wmdp
  WMDP is a LLM proxy benchmark for hazardous knowledge in bio, cyber, and chemical security. We also release code for RMU, an unlearning m…
  ☆108Updated 11 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆148Updated 10 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆65Updated 6 months ago
• ethz-spylab / autoadvexbench
  ☆24Updated 3 weeks ago
• xirui-li / DrAttack
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆51Updated 7 months ago