JailbreakDB

An indexed catalog of working LLM jailbreak techniques.

An indexed, searchable catalog of LLM jailbreak techniques. Each entry: the prompt pattern, the models it works on, when it stopped working, the behavior it exploits — sourced from primary disclosure where possible, with honest attribution.

Open trace Stack

Isometric vector illustration representing dan prompt jailbreak history

Anomaly

DAN Prompt Jailbreak History: From Reddit Post to Research Case Study

The complete dan prompt jailbreak history — how 'Do Anything Now' went from a December 2022 r/ChatGPT experiment through twelve-plus iterations and became the template for studying LLM safety failure modes.

Open trace

Anomaly

technique

The Crescendo Class: Multi-Turn Jailbreaks and Why They're Hard to Catch

Single-turn defenses miss the jailbreak class where no individual message is harmful. How crescendo and multi-turn escalation work as a category, why per-message classifiers can't see them, and what session-level defense requires.

Compare

research

How Jailbreak Benchmarks Measure Success: HarmBench, JailbreakBench, StrongREJECT

An attack-success-rate number is meaningless without knowing the behavior set, the attacker, and the judge that produced it. A reader's guide to the three benchmarks that define how jailbreak effectiveness is actually measured.

Compare

primer

Many-Shot vs. Single-Shot Jailbreaks: Long-Context Risks

Single-shot jailbreaks compress the entire attack into one prompt; many-shot jailbreaks exploit the model's in-context learning. The cost, detectability, and defenses differ — and so does which threat your stack should worry about.

Compare

Trace

Why trust us

Trusted by researchers across the AI security community

JailbreakDB is part of a 26-site editorial network covering adversarial ML, AI governance, defensive tooling, and ops engineering — all open access.

Sites in network

Across 6 topic clusters

400+

Expert articles

And growing daily

Daily

New content

Automated + editorial

Free

Always free to read

Newsletter included

About this site · Subscribe free

JailbreakDB — in your inbox

An indexed catalog of working LLM jailbreak techniques. — delivered when there's something worth your inbox.

No spam. Unsubscribe anytime.

Related tools in this network

Other interactive tools across the network that pair well with this one.

An indexed catalog of working LLM jailbreak techniques.

DAN Prompt Jailbreak History: From Reddit Post to Research Case Study

Anomaly

The Crescendo Class: Multi-Turn Jailbreaks and Why They're Hard to Catch

How Jailbreak Benchmarks Measure Success: HarmBench, JailbreakBench, StrongREJECT

Many-Shot vs. Single-Shot Jailbreaks: Long-Context Risks

Trace

Responsible Disclosure Norms for LLM Jailbreaks

Encoding and Obfuscation Jailbreaks: The Filter-Model Gap

The Jailbreak Detection Evasion Arms Race: How Attackers Adapt

Roleplay and Persona Jailbreaks: Why They Mostly Don't Work Now

Universal Adversarial Suffixes: The GCG Attack and Transfer Since

LLM Jailbreak Taxonomy 2026: How the Techniques Cluster

Many-Shot Jailbreaking: How Long Context Created a New Attack

What this site is for

Trusted by researchers across the AI security community

JailbreakDB — in your inbox

Related tools in this network