Alternatives and similar repositories for prompt-injection-defense

Users that are interested in prompt-injection-defense are comparing it to the libraries listed below

• uiuc-kang-lab / InjecAgent
  ☆67Updated last year
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆81Updated 9 months ago
• GodXuxilie / PromptAttack
  An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
  ☆92Updated 5 months ago
• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆50Updated 8 months ago
• rucnyz / PrivAgent
  ☆18Updated last month
• Aatrox103 / SAP
  ☆45Updated last year
• ThuCCSLab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆161Updated 3 months ago
• chen37058 / Red-Team-Arxiv-Paper-Update
  Awesome Jailbreak, red teaming arxiv papers (Automatically Update Every 12th hours)
  ☆41Updated this week
• BHui97 / PLeak
  ☆58Updated 6 months ago
• reds-lab / BEEAR
  This is the official Gtihub repo for our paper: "BEEAR: Embedding-based Adversarial Removal of Safety Backdoors in Instruction-tuned Lang…
  ☆17Updated last year
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆140Updated 7 months ago
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆157Updated 6 months ago
• agiresearch / ASB
  Agent Security Bench (ASB)
  ☆92Updated last month
• niconi19 / LLM-Conversation-Safety
  [NAACL2024] Attacks, Defenses and Evaluations for LLM Conversation Safety: A Survey
  ☆104Updated 11 months ago
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆170Updated 4 months ago
• wang2226 / Trojan-Activation-Attack
  [CIKM 2024] Trojan Activation Attack: Attack Large Language Models using Activation Steering for Safety-Alignment.
  ☆25Updated 11 months ago
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆42Updated last year
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆43Updated last month
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆22Updated 7 months ago
• AI-secure / RedCode
  [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
  ☆42Updated this week
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆37Updated 11 months ago
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆130Updated 3 months ago
• SORRY-Bench / sorry-bench
  Benchmark evaluation code for "SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal" (ICLR 2025)
  ☆56Updated 4 months ago
• huizhang-L / CodeChameleon
  ☆22Updated last year
• AI45Lab / ActorAttack
  ☆91Updated 5 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆157Updated last year
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆68Updated 8 months ago
• vinid / safety-tuned-llamas
  ICLR2024 Paper. Showing properties of safety tuning and exaggerated safety.
  ☆85Updated last year
• GraySwanAI / nanoGCG
  A fast + lightweight implementation of the GCG algorithm in PyTorch
  ☆255Updated 2 months ago
• akumar2709 / OVERTHINK_public
  ☆34Updated 3 months ago