Alternatives and similar repositories for prompt-injection-defense

Users that are interested in prompt-injection-defense are comparing it to the libraries listed below

• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆99Updated last year
• uiuc-kang-lab / InjecAgent
  ☆93Updated last year
• GodXuxilie / PromptAttack
  An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
  ☆106Updated 10 months ago
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆155Updated 11 months ago
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆44Updated last year
• rucnyz / LeakAgent
  ☆24Updated 2 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆170Updated last year
• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆61Updated last year
• xirui-li / DrAttack
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆65Updated last year
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆165Updated 7 months ago
• huizhang-L / CodeChameleon
  ☆25Updated last year
• BHui97 / PLeak
  ☆67Updated 11 months ago
• AI-secure / RedCode
  [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
  ☆55Updated last week
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆75Updated last year
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆52Updated last week
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆25Updated last month
• facebookresearch / SecAlign
  Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"
  ☆75Updated 4 months ago
• wang2226 / Trojan-Activation-Attack
  [CIKM 2024] Trojan Activation Attack: Attack Large Language Models using Activation Steering for Safety-Alignment.
  ☆29Updated last year
• CryptoAILab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆172Updated 7 months ago
• WhileBug / AwesomeLLMJailBreakPapers
  Awesome LLM Jailbreak academic papers
  ☆114Updated 2 years ago
• reds-lab / BEEAR
  This is the official Gtihub repo for our paper: "BEEAR: Embedding-based Adversarial Removal of Safety Backdoors in Instruction-tuned Lang…
  ☆20Updated last year
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆170Updated 11 months ago
• agiresearch / ASB
  Agent Security Bench (ASB)
  ☆144Updated 3 weeks ago
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆194Updated 11 months ago
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆218Updated this week
• AI45Lab / ActorAttack
  ☆111Updated 9 months ago
• lapisrocks / rpo
  Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"
  ☆59Updated last year
• Aatrox103 / SAP
  ☆46Updated last year
• HKUST-KnowComp / LLM-Multistep-Jailbreak
  Code for Findings-EMNLP 2023 paper: Multi-step Jailbreaking Privacy Attacks on ChatGPT
  ☆35Updated 2 years ago
• OSU-NLP-Group / EIA_against_webagent
  ☆36Updated last year