Alternatives and similar repositories for virtual-prompt-injection

Users that are interested in virtual-prompt-injection are comparing it to the libraries listed below

• Lyz1213 / BadEdit
  ☆37Updated last year
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆105Updated last year
• byerose / Awesome-Foundation-Model-Security
  A curated list of trustworthy Generative AI papers. Daily updating...
  ☆75Updated last year
• wang2226 / Trojan-Activation-Attack
  [CIKM 2024] Trojan Activation Attack: Attack Large Language Models using Activation Steering for Safety-Alignment.
  ☆29Updated last year
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆45Updated last year
• huizhang-L / CodeChameleon
  ☆26Updated last year
• thu-coai / JailbreakDefense_GoalPriority
  [ACL 2024] Defending Large Language Models Against Jailbreaking Attacks Through Goal Prioritization
  ☆29Updated last year
• SolidShen / RIPPLE_official
  ☆20Updated last year
• AI45Lab / ActorAttack
  ☆119Updated 11 months ago
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆60Updated 2 months ago
• YihanWang617 / llm-jailbreaking-defense
  A lightweight library for large laguage model (LLM) jailbreaking defense.
  ☆60Updated 4 months ago
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆83Updated last year
• ltroin / llm_attack_defense_arena
  ☆86Updated 4 months ago
• inspire-group / RobustRAG
  ☆22Updated last year
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆27Updated 3 months ago
• OSU-NLP-Group / EIA_against_webagent
  ☆37Updated last year
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆159Updated last year
• arobey1 / smooth-llm
  ☆114Updated 2 years ago
• xyq7 / GradSafe
  Official Code for ACL 2024 paper "GradSafe: Detecting Unsafe Prompts for LLMs via Safety-Critical Gradient Analysis"
  ☆64Updated last year
• cnut1648 / Model-Fingerprint
  Fingerprint large language models
  ☆47Updated last year
• YancyKahn / CoA
  Chain of Attack: a Semantic-Driven Contextual Multi-Turn attacker for LLM
  ☆39Updated last year
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆45Updated last year
• CryptoAILab / misalignment
  [NDSS'25] The official implementation of safety misalignment.
  ☆17Updated last year
• lapisrocks / rpo
  Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"
  ☆60Updated last year
• tmllab / 2025_ICLR_PiF
  ☆38Updated 8 months ago
• GodXuxilie / PromptAttack
  An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
  ☆109Updated 11 months ago
• llm-editing / editing-attack
  Code and dataset for the paper: "Can Editing LLMs Inject Harm?"
  ☆21Updated 3 weeks ago
• uw-nsl / SafeDecoding
  Official Repository for ACL 2024 Paper SafeDecoding: Defending against Jailbreak Attacks via Safety-Aware Decoding
  ☆152Updated last year
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆187Updated 9 months ago
• eurekayuan / RigorLLM
  Implementation for "RigorLLM: Resilient Guardrails for Large Language Models against Undesired Content"
  ☆22Updated last year