Alternatives and similar repositories for virtual-prompt-injection

Users that are interested in virtual-prompt-injection are comparing it to the libraries listed below

• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆102Updated last year
• Lyz1213 / BadEdit
  ☆36Updated last year
• wang2226 / Trojan-Activation-Attack
  [CIKM 2024] Trojan Activation Attack: Attack Large Language Models using Activation Steering for Safety-Alignment.
  ☆29Updated last year
• byerose / Awesome-Foundation-Model-Security
  A curated list of trustworthy Generative AI papers. Daily updating...
  ☆75Updated last year
• huizhang-L / CodeChameleon
  ☆25Updated last year
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆43Updated last year
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆218Updated 3 weeks ago
• BHui97 / PLeak
  ☆70Updated 11 months ago
• GodXuxilie / PromptAttack
  An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
  ☆107Updated 10 months ago
• inspire-group / RobustRAG
  ☆21Updated last year
• cnut1648 / Model-Fingerprint
  Fingerprint large language models
  ☆46Updated last year
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆155Updated last year
• YancyKahn / CoA
  Chain of Attack: a Semantic-Driven Contextual Multi-Turn attacker for LLM
  ☆39Updated 10 months ago
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆77Updated last year
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆44Updated last year
• YihanWang617 / llm-jailbreaking-defense
  A lightweight library for large laguage model (LLM) jailbreaking defense.
  ☆60Updated 2 months ago
• arobey1 / smooth-llm
  ☆114Updated 2 years ago
• AI45Lab / ActorAttack
  ☆112Updated 10 months ago
• llm-editing / editing-attack
  Code and dataset for the paper: "Can Editing LLMs Inject Harm?"
  ☆21Updated last year
• CryptoAILab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆175Updated 8 months ago
• thunlp / OpenBackdoor
  An open-source toolkit for textual backdoor attack and defense (NeurIPS 2022 D&B, Spotlight)
  ☆196Updated 2 years ago
• HKUST-KnowComp / LLM-Multistep-Jailbreak
  Code for Findings-EMNLP 2023 paper: Multi-step Jailbreaking Privacy Attacks on ChatGPT
  ☆35Updated 2 years ago
• safr-ai-lab / survey-llm
  A survey of privacy problems in Large Language Models (LLMs). Contains summary of the corresponding paper along with relevant code
  ☆68Updated last year
• Phantivia / T-PGD
  [Findings of ACL 2023] Bridge the Gap Between CV and NLP! A Optimization-based Textual Adversarial Attack Framework.
  ☆14Updated 2 years ago
• phycholosogy / RAG-privacy
  The code for paper "The Good and The Bad: Exploring Privacy Issues in Retrieval-Augmented Generation (RAG)", exploring the privacy risk o…
  ☆60Updated 10 months ago
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆175Updated 7 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆171Updated last year
• ltroin / llm_attack_defense_arena
  ☆82Updated 3 months ago
• uw-nsl / SafeDecoding
  Official Repository for ACL 2024 Paper SafeDecoding: Defending against Jailbreak Attacks via Safety-Aware Decoding
  ☆152Updated last year
• xyq7 / GradSafe
  Official Code for ACL 2024 paper "GradSafe: Detecting Unsafe Prompts for LLMs via Safety-Critical Gradient Analysis"
  ☆60Updated last year