# jailbreaking

標記為「jailbreaking」的 71 篇文章

Jailbreaking Techniques Assessment

Test your knowledge of LLM jailbreaking methods, bypass strategies, and the mechanics behind safety training circumvention with 10 intermediate-level questions.

assessmentjailbreakingbypasssafety-trainingred-teaming

中級

Multi-Turn Attack Assessment

Assessment of crescendo attacks, conversational manipulation, and progressive jailbreaking techniques.

assessmentmulti-turnjailbreaking

中級

Prompt Injection Assessment

Test your knowledge of prompt injection types, techniques, defense mechanisms, and real-world exploitation with 15 intermediate-level questions.

assessmentprompt-injectionjailbreakinginjection-techniques

中級

Skill Verification: Jailbreaking

Timed skill verification lab: bypass safety measures on a defended AI system within 30 minutes using jailbreak techniques.

skill-verificationjailbreakingsafety-bypasshands-on

進階

Case Study: Open-Source Model Jailbreak Campaign

Analysis of coordinated jailbreak campaigns against open-source models and community response patterns.

case-studyopen-sourcejailbreaking

中級

Building a Jailbreak Fuzzer

Build a mutation-based fuzzer for generating and testing jailbreak prompts at scale.

exploit-devfuzzerjailbreakingtooling

進階

Implementing PAIR Automated Attacks

Implement the PAIR (Prompt Automatic Iterative Refinement) attack for automated jailbreaking.

labspairautomatedjailbreaking

進階

Lab: PAIR Attack Implementation

Build a complete Prompt Automatic Iterative Refinement system that uses an attacker LLM to automatically generate and refine jailbreak prompts against a target model.

labpairautomated-attacksjailbreaking

進階

Tree of Attacks (TAP) Implementation

Build a TAP attack system that generates and prunes jailbreak attempts using tree search.

labstapautomatedjailbreaking

進階

Temperature and Sampling Effects on Jailbreaks

Experiment with temperature and top-p settings to understand their impact on jailbreak success rates.

labstemperaturesamplingjailbreaking

入門

Jailbreak Gauntlet: Level 2 — Adaptive Defenses

Break through adaptive defense systems that learn from your previous attack attempts.

labsctfjailbreakingadaptive

進階

Custom Jailbreak Wordlist Generation

Generate targeted jailbreak wordlists using mutation strategies and seed prompts.

labswordlistsjailbreakingintermediate

中級

Implementing Many-Shot Jailbreaking

Implement Anthropic's many-shot jailbreaking technique with scaling analysis across conversation lengths.

labsmany-shotjailbreakingintermediate

中級

Many-Shot Jailbreaking Analysis

Deep analysis of the many-shot jailbreaking technique and its implications for in-context learning.

prompt-injectionmany-shotjailbreakinganthropic

進階

Universal Jailbreak Techniques

Analysis of jailbreak techniques that transfer across multiple models and providers.

prompt-injectionuniversaljailbreakingtechniques

進階

AutoDAN Stealthy Jailbreak Walkthrough

Walkthrough of generating stealthy, human-readable jailbreak prompts using the AutoDAN methodology.

walkthroughsautodanstealthyjailbreaking

進階

Cipher-Based Jailbreak

Using ciphers, encodings, and coded language to bypass LLM content filters by transforming harmful requests into formats that safety classifiers do not recognize.

jailbreakingcipherencodingobfuscationcontent-filter-bypassred-teaming

中級

Crescendo Multi-Turn Jailbreak Walkthrough

Step-by-step walkthrough of the Crescendo technique for gradually escalating multi-turn jailbreaks.

walkthroughscrescendomulti-turnjailbreaking

中級

Crescendo Multi-Turn Attack

The Crescendo attack technique for gradually escalating requests across multiple conversation turns to bypass LLM safety training without triggering single-turn detection.

jailbreakingcrescendomulti-turnconversation-escalationred-teaming

進階

DAN Jailbreak Evolution

History and evolution of Do Anything Now (DAN) prompts, analyzing what makes them effective at bypassing LLM safety training and how defenses have adapted over time.

jailbreakingDANprompt-engineeringsafety-bypassred-teaming

中級

Language Switch Jailbreak

Exploiting weaker safety training in non-English languages to bypass LLM content filters by switching the conversation language mid-prompt or using low-resource languages.

jailbreakingmultilinguallanguage-switchlow-resource-languagessafety-bypassred-teaming

中級

Many-Shot Jailbreaking Walkthrough

Walkthrough implementing Anthropic's many-shot jailbreaking technique with analysis of scaling behavior.

walkthroughsmany-shotjailbreakinganthropic

中級

Many-Shot Jailbreaking (Attack Walkthrough)

Using large numbers of examples in a single prompt to overwhelm LLM safety training through in-context learning, exploiting long context windows to shift model behavior.

jailbreakingmany-shotin-context-learninglong-contextred-teaming

中級

Output Format Manipulation (Attack Walkthrough)

Forcing specific output formats to bypass LLM safety checks by exploiting the tension between format compliance and content restriction.

jailbreakingoutput-formatstructured-outputformat-manipulationsafety-bypassred-teaming

中級

PAIR Automated Jailbreak Walkthrough

End-to-end walkthrough of the PAIR attack methodology for automated black-box jailbreaking.

walkthroughspairautomatedjailbreaking

進階

PAIR Automated Jailbreak

Using a second LLM as an automated attacker to iteratively generate and refine jailbreak prompts against a target model, implementing the Prompt Automatic Iterative Refinement technique.

jailbreakingPAIRautomated-red-teamingLLM-attackeriterative-refinementred-teaming

進階

Role Escalation Chain

Progressive role escalation techniques that gradually transform an LLM from a constrained assistant into an unrestricted entity across multiple conversation turns.

jailbreakingrole-escalationpersona-manipulationmulti-turnprivilege-escalationred-teaming

進階

Skeleton Key Attack

The Skeleton Key jailbreak technique that attempts to disable model safety guardrails across all topics simultaneously by convincing the model to add a disclaimer instead of refusing.

jailbreakingskeleton-keymaster-keysafety-bypassred-teaming

進階

System Prompt Override

Techniques to override, replace, or neutralize LLM system prompts through user-level injection, analyzing how system prompt authority can be undermined.

jailbreakingsystem-promptprompt-injectionauthority-overridered-teaming

中級

TAP Tree of Attacks Walkthrough

Detailed walkthrough of building and running Tree of Attacks for systematic jailbreak generation.

walkthroughstaptree-of-attacksjailbreaking

進階

Thought Injection for Reasoning Models

Techniques for injecting malicious content into chain-of-thought reasoning traces of thinking models, exploiting the gap between reasoning and safety enforcement.

jailbreakingthought-injectionchain-of-thoughtreasoning-modelsCoTred-teaming

進階

Token Smuggling

Exploiting LLM tokenization quirks to smuggle harmful content past safety filters by manipulating how text is split into tokens at the subword level.

jailbreakingtokenizationtoken-smugglingBPEsubwordcontent-filter-bypassred-teaming

進階

Cognitive Overload Jailbreak Walkthrough

Step-by-step walkthrough of the cognitive overload technique that overwhelms safety training with complex nested instructions.

walkthroughscognitive-overloadjailbreakingtechnique

中級

Context Virtualization Attack Walkthrough

Walkthrough of creating virtualized contexts that make the model believe it is operating in a different environment.

walkthroughscontext-virtualizationjailbreakingtechnique

進階

Few-Shot Attack Scaling Analysis

Detailed analysis of how few-shot examples scale to influence model behavior, from 2-shot to many-shot regime.

walkthroughsfew-shotscalingjailbreaking

進階

Refusal Suppression Technique Walkthrough

Walkthrough of refusal suppression techniques that prime models to avoid safety refusal patterns.

walkthroughsrefusal-suppressionjailbreakingtechnique

中級

章節評量：越獄

15 題校準評量，測試你對越獄技術的理解——角色扮演、編碼、多範例、漸進與基於梯度的方法。

assessmentjailbreakingsafety-bypassevaluation

進階

Multi-Turn 攻擊評量

評量 of crescendo attacks, conversational manipulation, and progressive jailbreaking techniques.

assessmentmulti-turnjailbreaking

中級

技能驗證：越獄

限時技能驗證實驗室：在 30 分鐘內使用越獄技術繞過防禦 AI 系統的安全措施。

skill-verificationjailbreakingsafety-bypasshands-on

進階

Case Study: Open-Source 模型越獄 Campaign

Analysis of coordinated jailbreak campaigns against open-source models and community response patterns.

case-studyopen-sourcejailbreaking

中級

Building a 越獄 Fuzzer

Build a mutation-based fuzzer for generating and testing jailbreak prompts at scale.

exploit-devfuzzerjailbreakingtooling

進階

Implementing PAIR Automated 攻擊s

Implement the PAIR (Prompt Automatic Iterative Refinement) attack for automated jailbreaking.

labspairautomatedjailbreaking

進階

實驗室: PAIR 攻擊 Implementation

Build a complete Prompt Automatic Iterative Refinement system that uses an attacker LLM to automatically generate and refine jailbreak prompts against a target model.

labpairautomated-attacksjailbreaking

進階

Tree of 攻擊s (TAP) Implementation

Build a TAP attack system that generates and prunes jailbreak attempts using tree search.

labstapautomatedjailbreaking

進階

Temperature and Sampling Effects on 越獄s

Experiment with temperature and top-p settings to understand their impact on jailbreak success rates.

labstemperaturesamplingjailbreaking

入門

越獄 Gauntlet: Level 2 — Adaptive 防禦s

Break through adaptive defense systems that learn from your previous attack attempts.

labsctfjailbreakingadaptive

進階

Custom 越獄 Wordlist Generation

Generate targeted jailbreak wordlists using mutation strategies and seed prompts.

labswordlistsjailbreakingintermediate

中級

Implementing Many-Shot 越獄ing

Implement Anthropic's many-shot jailbreaking technique with scaling analysis across conversation lengths.

labsmany-shotjailbreakingintermediate

中級

Many-Shot 越獄ing Analysis

Deep analysis of the many-shot jailbreaking technique and its implications for in-context learning.

prompt-injectionmany-shotjailbreakinganthropic

進階

Universal 越獄 Techniques

Analysis of jailbreak techniques that transfer across multiple models and providers.

prompt-injectionuniversaljailbreakingtechniques

進階

AutoDAN Stealthy 越獄導覽

導覽 of generating stealthy, human-readable jailbreak prompts using the AutoDAN methodology.

walkthroughsautodanstealthyjailbreaking

進階

Cipher-Based 越獄

Using ciphers, encodings, and coded language to bypass LLM content filters by transforming harmful requests into formats that safety classifiers do not recognize.

jailbreakingcipherencodingobfuscationcontent-filter-bypassred-teaming

中級

Crescendo Multi-Turn 越獄導覽

Step-by-step walkthrough of the Crescendo technique for gradually escalating multi-turn jailbreaks.

walkthroughscrescendomulti-turnjailbreaking

中級

Crescendo Multi-Turn 攻擊

The Crescendo attack technique for gradually escalating requests across multiple conversation turns to bypass LLM safety training without triggering single-turn detection.

jailbreakingcrescendomulti-turnconversation-escalationred-teaming

進階

DAN 越獄 Evolution

History and evolution of Do Anything Now (DAN) prompts, analyzing what makes them effective at bypassing LLM safety training and how defenses have adapted over time.

jailbreakingDANprompt-engineeringsafety-bypassred-teaming

中級

Language Switch 越獄

利用ing weaker safety training in non-English languages to bypass LLM content filters by switching the conversation language mid-prompt or using low-resource languages.

jailbreakingmultilinguallanguage-switchlow-resource-languagessafety-bypassred-teaming

中級

Many-Shot 越獄ing 導覽

Walkthrough implementing Anthropic's many-shot jailbreaking technique with analysis of scaling behavior.

walkthroughsmany-shotjailbreakinganthropic

中級

Many-Shot 越獄ing (攻擊導覽)

Using large numbers of examples in a single prompt to overwhelm LLM safety training through in-context learning, exploiting long context windows to shift model behavior.

jailbreakingmany-shotin-context-learninglong-contextred-teaming

中級

Output Format Manipulation (攻擊導覽)

Forcing specific output formats to bypass LLM safety checks by exploiting the tension between format compliance and content restriction.

jailbreakingoutput-formatstructured-outputformat-manipulationsafety-bypassred-teaming

中級

PAIR Automated 越獄導覽

End-to-end walkthrough of the PAIR attack methodology for automated black-box jailbreaking.

walkthroughspairautomatedjailbreaking

進階

PAIR Automated 越獄

Using a second LLM as an automated attacker to iteratively generate and refine jailbreak prompts against a target model, implementing the Prompt Automatic Iterative Refinement technique.

jailbreakingPAIRautomated-red-teamingLLM-attackeriterative-refinementred-teaming

進階

Role Escalation Chain

Progressive role escalation techniques that gradually transform an LLM from a constrained assistant into an unrestricted entity across multiple conversation turns.

jailbreakingrole-escalationpersona-manipulationmulti-turnprivilege-escalationred-teaming

進階

Skeleton Key 攻擊

The Skeleton Key jailbreak technique that attempts to disable model safety guardrails across all topics simultaneously by convincing the model to add a disclaimer instead of refusing.

jailbreakingskeleton-keymaster-keysafety-bypassred-teaming

進階

System Prompt Override

Techniques to override, replace, or neutralize LLM system prompts through user-level injection, analyzing how system prompt authority can be undermined.

jailbreakingsystem-promptprompt-injectionauthority-overridered-teaming

中級

TAP Tree of 攻擊s 導覽

Detailed walkthrough of building and running Tree of 攻擊s for systematic jailbreak generation.

walkthroughstaptree-of-attacksjailbreaking

進階

Thought Injection for Reasoning 模型s

Techniques for injecting malicious content into chain-of-thought reasoning traces of thinking models, exploiting the gap between reasoning and safety enforcement.

jailbreakingthought-injectionchain-of-thoughtreasoning-modelsCoTred-teaming

進階

Token Smuggling

利用ing LLM tokenization quirks to smuggle harmful content past safety filters by manipulating how text is split into tokens at the subword level.

jailbreakingtokenizationtoken-smugglingBPEsubwordcontent-filter-bypassred-teaming

進階

Cognitive Overload 越獄導覽

Step-by-step walkthrough of the cognitive overload technique that overwhelms safety training with complex nested instructions.

walkthroughscognitive-overloadjailbreakingtechnique

中級

Context Virtualization 攻擊導覽

導覽 of creating virtualized contexts that make the model believe it is operating in a different environment.

walkthroughscontext-virtualizationjailbreakingtechnique

進階

Few-Shot 攻擊 Scaling Analysis

Detailed analysis of how few-shot examples scale to influence model behavior, from 2-shot to many-shot regime.

walkthroughsfew-shotscalingjailbreaking

進階

Refusal Suppression Technique 導覽

導覽 of refusal suppression techniques that prime models to avoid safety refusal patterns.

walkthroughsrefusal-suppressionjailbreakingtechnique

中級

# jailbreaking

Jailbreaking Techniques Assessment

Multi-Turn Attack Assessment

Prompt Injection Assessment

Skill Verification: Jailbreaking

Case Study: Open-Source Model Jailbreak Campaign

Building a Jailbreak Fuzzer

Implementing PAIR Automated Attacks

Lab: PAIR Attack Implementation

Tree of Attacks (TAP) Implementation

Temperature and Sampling Effects on Jailbreaks

Jailbreak Gauntlet: Level 2 — Adaptive Defenses

Custom Jailbreak Wordlist Generation

Implementing Many-Shot Jailbreaking

Many-Shot Jailbreaking Analysis

Universal Jailbreak Techniques

AutoDAN Stealthy Jailbreak Walkthrough

Cipher-Based Jailbreak

Crescendo Multi-Turn Jailbreak Walkthrough

Crescendo Multi-Turn Attack

DAN Jailbreak Evolution

Language Switch Jailbreak

Many-Shot Jailbreaking Walkthrough

Many-Shot Jailbreaking (Attack Walkthrough)

Output Format Manipulation (Attack Walkthrough)

PAIR Automated Jailbreak Walkthrough

PAIR Automated Jailbreak

Role Escalation Chain

Skeleton Key Attack

System Prompt Override

TAP Tree of Attacks Walkthrough

Thought Injection for Reasoning Models

Token Smuggling

Cognitive Overload Jailbreak Walkthrough

Context Virtualization Attack Walkthrough

Few-Shot Attack Scaling Analysis

Refusal Suppression Technique Walkthrough

章節評量：越獄

Multi-Turn 攻擊 評量

技能驗證：越獄

Case Study: Open-Source 模型 越獄 Campaign

Building a 越獄 Fuzzer

Implementing PAIR Automated 攻擊s

實驗室: PAIR 攻擊 Implementation

Tree of 攻擊s (TAP) Implementation

Temperature and Sampling Effects on 越獄s

越獄 Gauntlet: Level 2 — Adaptive 防禦s

Custom 越獄 Wordlist Generation

Implementing Many-Shot 越獄ing

Many-Shot 越獄ing Analysis

Universal 越獄 Techniques

AutoDAN Stealthy 越獄 導覽

Cipher-Based 越獄

Crescendo Multi-Turn 越獄 導覽

Crescendo Multi-Turn 攻擊

DAN 越獄 Evolution

Language Switch 越獄

Many-Shot 越獄ing 導覽

Many-Shot 越獄ing (攻擊 導覽)

Output Format Manipulation (攻擊 導覽)

PAIR Automated 越獄 導覽

PAIR Automated 越獄

Role Escalation Chain

Skeleton Key 攻擊

System Prompt Override

TAP Tree of 攻擊s 導覽

Thought Injection for Reasoning 模型s

Token Smuggling

Cognitive Overload 越獄 導覽

Context Virtualization 攻擊 導覽

Few-Shot 攻擊 Scaling Analysis

Refusal Suppression Technique 導覽

# jailbreaking

Jailbreaking Techniques Assessment

Multi-Turn Attack Assessment

Prompt Injection Assessment

Skill Verification: Jailbreaking

Case Study: Open-Source Model Jailbreak Campaign

Building a Jailbreak Fuzzer

Implementing PAIR Automated Attacks

Multi-Turn 攻擊評量

Case Study: Open-Source 模型越獄 Campaign

AutoDAN Stealthy 越獄導覽

Crescendo Multi-Turn 越獄導覽

Many-Shot 越獄ing (攻擊導覽)

Output Format Manipulation (攻擊導覽)

PAIR Automated 越獄導覽

Cognitive Overload 越獄導覽

Context Virtualization 攻擊導覽

Multi-Turn 攻擊評量

Case Study: Open-Source 模型越獄 Campaign

AutoDAN Stealthy 越獄導覽

Crescendo Multi-Turn 越獄導覽

Many-Shot 越獄ing (攻擊導覽)

Output Format Manipulation (攻擊導覽)

PAIR Automated 越獄導覽

Cognitive Overload 越獄導覽

Context Virtualization 攻擊導覽