Alternatives and similar repositories for geometry-of-refusal

Users that are interested in geometry-of-refusal are comparing it to the libraries listed below

• centerforaisafety / tdc2023-starter-kit
  This is the starter kit for the Trojan Detection Challenge 2023 (LLM Edition), a NeurIPS 2023 competition.
  ☆89Updated last year
• aengusl / latent-adversarial-training
  ☆43Updated 11 months ago
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆71Updated 10 months ago
• rishub-tamirisa / tamper-resistance
  [ICLR 2025] Official Repository for "Tamper-Resistant Safeguards for Open-Weight LLMs"
  ☆61Updated 3 months ago
• CLAS2024 / starter-kit
  ☆39Updated 10 months ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆164Updated last year
• Unispac / shallow-vs-deep-alignment
  Official Repository for The Paper: Safety Alignment Should Be Made More Than Just a Few Tokens Deep
  ☆150Updated 4 months ago
• ejones313 / auditing-llms
  ☆57Updated 2 years ago
• lapisrocks / rpo
  Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"
  ☆56Updated last year
• Confirm-Solutions / flrt
  Fluent student-teacher redteaming
  ☆22Updated last year
• SolidShen / RIPPLE_official
  ☆20Updated last year
• sophie-xhonneux / Continuous-AdvTrain
  ☆28Updated 3 weeks ago
• ethz-spylab / rlhf-poisoning
  Code for paper "Universal Jailbreak Backdoors from Poisoned Human Feedback"
  ☆59Updated last year
• YihanWang617 / llm-jailbreaking-defense
  A lightweight library for large laguage model (LLM) jailbreaking defense.
  ☆57Updated last week
• SORRY-Bench / sorry-bench
  Benchmark evaluation code for "SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal" (ICLR 2025)
  ☆62Updated 6 months ago
• sail-sg / I-FSJ
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆64Updated 8 months ago
• ethz-spylab / autoadvexbench
  ☆32Updated 4 months ago
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆43Updated last year
• yuplin2333 / representation-space-jailbreak
  Code repo of our paper Towards Understanding Jailbreak Attacks in LLMs: A Representation Space Analysis (https://arxiv.org/abs/2406.10794…
  ☆22Updated last year
• AI-secure / MMDT
  Comprehensive Assessment of Trustworthiness in Multimodal Foundation Models
  ☆22Updated 6 months ago
• Vaidehi99 / InfoDeletionAttacks
  ☆45Updated 7 months ago
• zhaoyiran924 / Probe-Sampling
  [NeurIPS 2024] Accelerating Greedy Coordinate Gradient and General Prompt Optimization via Probe Sampling
  ☆30Updated 10 months ago
• paul-rottger / xstest
  Röttger et al. (NAACL 2024): "XSTest: A Test Suite for Identifying Exaggerated Safety Behaviours in Large Language Models"
  ☆111Updated 6 months ago
• Princeton-SysML / Jailbreak_LLM
  ☆183Updated last year
• AI45Lab / CodeAttack
  [ACL 2024] CodeAttack: Revealing Safety Generalization Challenges of Large Language Models via Code Completion
  ☆52Updated 10 months ago
• facebookresearch / jailbreak-objectives
  Code and data to go with the Zhu et al. paper "An Objective for Nuanced LLM Jailbreaks"
  ☆34Updated 9 months ago
• thestephencasper / explore_establish_exploit_llms
  ☆31Updated 2 years ago
• GraySwanAI / circuit-breakers
  Improving Alignment and Robustness with Circuit Breakers
  ☆233Updated 11 months ago
• princeton-polaris-lab / Evaluating-Durable-Safeguards
  [ICLR 2025] On Evluating the Durability of Safegurads for Open-Weight LLMs
  ☆13Updated 3 months ago
• agiresearch / TrustAgent
  TrustAgent: Towards Safe and Trustworthy LLM-based Agents
  ☆52Updated 7 months ago