Garak

Visit Tool

garak is an open-source LLM vulnerability scanner that identifies weaknesses like hallucination, data leakage, and prompt injection. It helps assess the safety and security of AI models.

Claim this tool

3Views

At a glance

Pricing

Open Source

Free tier

Yes

API

Skill level

Technical

About

What is garak?

garak is an open-source LLM vulnerability scanner designed to identify and assess weaknesses in large language models. It probes for a wide range of issues including hallucination, data leakage, prompt injection, misinformation, toxicity generation, and jailbreaks. Inspired by tools like nmap and Metasploit Framework, garak focuses on making LLMs or dialog systems fail through static, dynamic, and adaptive probes. It supports various LLM platforms such as Hugging Face, OpenAI, AWS Bedrock, Replicate, Cohere, and Groq, and can be installed via pip or cloned from source. The tool provides detailed logging and reporting in JSONL format, helping developers and researchers understand and mitigate risks in their AI models.

Best used for

Ideal for developers and data scientists who need to identify security vulnerabilities in large language models, assess their robustness against prompt injection, and detect potential for hallucination or toxicity. Especially valuable for red-teaming AI systems and ensuring responsible AI deployment.

Common actions

scan LLM vulnerabilities

test AI security

detect model weaknesses

red-team LLMs

assess model safety

face swappinggithub copilot"AI Agents"automated workflowlow-code/no-codedeepfakeworkflowscollaborationopen-source

Capabilities

Key features

LLM vulnerability scanning
Detects hallucination
Probes data leakage
Tests prompt injection
Assesses toxicity generation
Supports multiple LLM APIs
Detailed JSONL logging

Target Audience

developerdata scientist

Integrations

Not yet documented

Pricing & Plans

Open Source

Free

FAQs

What types of LLM vulnerabilities can garak detect?

garak is designed to detect a wide range of LLM vulnerabilities, including hallucination, data leakage, prompt injection, misinformation, toxicity generation, and jailbreaks. It uses various static, dynamic, and adaptive probes to explore these weaknesses in large language models and dialog systems.

Which LLM platforms does garak support for scanning?

garak supports scanning models from various platforms, including Hugging Face Hub, OpenAI API (chat & continuation models), AWS Bedrock, Replicate, Cohere, Groq, and GGUF models like llama.cpp. It also offers a flexible REST generator for custom endpoints and NIM models.

How do I interpret the results from a garak scan?

After a scan, garak provides a row evaluating each probe's results on detectors. If any prompt attempts lead to undesirable behavior, it's marked as FAIL, with a failure rate. Figures like '840/840' indicate total generations and how many behaved acceptably. Detailed logs are in a .jsonl file.

Trending

Subcategories trending in Coding & Development

Code Assistants DevOps & Infrastructure No-Code / Low-Code Testing & QA Backend & APIs Prompt Engineering

Trending

Explore

Browse AI tools by category

Content & Design Productivity & Business Coding & Development AI Agents & Automation Research & Education Wellness & Lifestyle Career Development Marketing & Growth Data & Analytics Customer Support & CX Finance E-commerce