LLAMATOR-Core
diff --git a/‎.bumpversion.cfg‎
Lines changed: 1 addition & 1 deletion b/‎.bumpversion.cfg‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 3 additions & 1 deletion b/‎CONTRIBUTING.md‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎README.md‎
Lines changed: 2 additions & 2 deletions b/‎README.md‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎docker/README.md‎
Lines changed: 134 additions & 0 deletions b/‎docker/README.md‎
Lines changed: 134 additions & 0 deletions
diff --git a/‎docs/attack_descriptions.md‎
Lines changed: 27 additions & 14 deletions b/‎docs/attack_descriptions.md‎
Lines changed: 27 additions & 14 deletions
diff --git a/‎docs/howtos.md‎
Lines changed: 5 additions & 3 deletions b/‎docs/howtos.md‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎docs/project_overview.md‎
Lines changed: 1 addition & 0 deletions b/‎docs/project_overview.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎examples/llamator-api.ipynb‎
Lines changed: 3 additions & 0 deletions b/‎examples/llamator-api.ipynb‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎examples/llamator-selenium.ipynb‎
Lines changed: 5 additions & 2 deletions b/‎examples/llamator-selenium.ipynb‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎examples/llamator-telegram.ipynb‎
Lines changed: 3 additions & 0 deletions b/‎examples/llamator-telegram.ipynb‎
Lines changed: 3 additions & 0 deletions
@@ -1,5 +1,5 @@
 [bumpversion]
-current_version = 2.1.0
+current_version = 2.2.0
 commit = False
 tag = False
 parse = (?P<major>\d+)\.(?P<minor>\d+)\.(?P<patch>\d+)(\-(?P<release>[a-z]+))?
 
@@ -149,12 +149,14 @@ AvailableTests = [
     "typoglycemia_attack",
     "ucar",
 
-    #TODO: YOUR TEST HERE
+    #TODO: YOUR TEST HERE (in alphabetical order!)
 ]
 ```
 
 #### 5. Add your attack to the `attack_descriptions.json` and `attack_descriptions.md` files.
 
+Please pay attention to the `attack_descriptions.md` structure. Description should be the same as docstring of the attack class. If your attack has an original paper or repository, it would be nice if you mentioned it in docstring and `attack_descriptions.md`.
+
 #### 6. Open a PR! Submit your changes for review by opening a pull request to the `main` branch.
 
 ## Submitting a Pull Request.
 
@@ -5,15 +5,15 @@ Red Teaming python-framework for testing chatbots and LLM-systems
 [![License: CC BY-NC-SA 4.0](https://img.shields.io/badge/License-CC_BY--NC--SA_4.0-lightgrey.svg)](https://creativecommons.org/licenses/by-nc-sa/4.0/)
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/llamator)](https://pypi.org/project/llamator)
 [![PyPI](https://badge.fury.io/py/llamator.svg)](https://badge.fury.io/py/llamator)
+[![Docker](https://img.shields.io/badge/dockerfile-gray.svg?logo=docker)](https://github.com/RomiconEZ/llamator/blob/release/docker)
 [![Downloads](https://pepy.tech/badge/llamator)](https://pepy.tech/project/llamator)
 [![Downloads](https://pepy.tech/badge/llamator/month)](https://pepy.tech/project/llamator)
 [![GitHub Repo stars](https://img.shields.io/github/stars/RomiconEZ/llamator)](https://github.com/RomiconEZ/llamator/stargazers)
-[![Docker](https://img.shields.io/badge/dockerfile-gray.svg?logo=docker)](https://github.com/RomiconEZ/llamator/blob/release/docker)
 
 ## Install 🚀
 
 ```bash
-pip install llamator==2.1.0
+pip install llamator==2.2.0
 ```
 
 ## Documentation 📚
 
@@ -0,0 +1,134 @@
+# Usage Instructions
+
+## Preliminary Steps
+
+1. **Project Structure:**
+
+   ```
+   llamator/
+   ├── docker/
+   │   ├── Dockerfile
+   │   ├── jupyter_docker.sh
+   │   └── README.md
+   └── workspace/
+       └── (your working files)
+   ```
+
+2. **Creating Local `workspace` Directory:**
+
+   If the local `./workspace` directory doesn't exist, it will be created automatically when the container starts. No need to create it manually.
+
+## Main Commands
+
+The `jupyter_docker.sh` script supports the following commands:
+
+1. **Building Docker Image:**
+
+   Navigate to the `llamator/docker` directory and execute:
+
+   ```bash
+   ./jupyter_docker.sh build
+   ```
+
+   This will create a Docker image named `jupyter_img` by default. Jupyter Notebook will run on port `9000` by default.
+
+2. **Running Container:**
+
+   ```bash
+   ./jupyter_docker.sh run [port]
+   ```
+
+   - **Parameters:**
+     - `[port]` *(optional)*: Port for accessing Jupyter Notebook. If not specified, port `9000` is used.
+
+   - **Examples:**
+
+     - Using default port:
+
+       ```bash
+       ./jupyter_docker.sh run
+       ```
+
+     - Setting custom port, e.g., `8888`:
+
+       ```bash
+       ./jupyter_docker.sh run 8888
+       ```
+
+   - **Features:**
+     - All arguments and settings are defined within the `jupyter_docker.sh` script.
+     - When running the `run` command, you can specify a port as an argument that will be passed to the container.
+     - If the local `./workspace` directory doesn't exist in the current directory, it will be created automatically.
+     - If a container with the same name already exists, it will be stopped and removed before starting a new one.
+     - The container will be launched in background mode.
+     - The script will automatically extract the token and display the complete URL for accessing Jupyter Notebook, e.g.: `http://localhost:9000/?token=abc123def456ghi789jkl012mno345pqr678stu901vwx234yz`.
+
+3. **Getting URL with Token:**
+
+   If you need to retrieve the URL with the current token again:
+
+   ```bash
+   ./jupyter_docker.sh token
+   ```
+
+   You'll see output with a URL that can be opened in a browser to access Jupyter Notebook.
+
+4. **Adding New Packages via Poetry:**
+
+   For example, to add the `numpy` package:
+
+   ```bash
+   ./jupyter_docker.sh add numpy
+   ```
+
+5. **Accessing Container's Bash Shell:**
+
+   If you need to execute commands inside the container:
+
+   ```bash
+   ./jupyter_docker.sh bash
+   ```
+
+6. **Stopping Container:**
+
+   To stop the running container:
+
+   ```bash
+   ./jupyter_docker.sh stop
+   ```
+
+7. **Removing Container:**
+
+   If you need to completely remove the container:
+
+   ```bash
+   ./jupyter_docker.sh remove
+   ```
+
+## Usage Examples
+
+### 1. Build and Run with Default Port
+
+```bash
+./jupyter_docker.sh build
+./jupyter_docker.sh run
+```
+
+- Jupyter Notebook will be accessible at: `http://localhost:9000/?token=your_token_here`
+
+### 2. Build and Run with Custom Port
+
+```bash
+./jupyter_docker.sh build
+./jupyter_docker.sh run 8888
+```
+
+- Jupyter Notebook will be accessible at: `http://localhost:8888/?token=your_token_here`
+
+### 3. Adding `pandas` Package
+
+```bash
+./jupyter_docker.sh add pandas
+```
+
+- The `pandas` package will be installed and available in your project.
@@ -1,10 +1,23 @@
 # Attacks
+
 This section provides an overview of all available attacks.
 
 ## Single-stage attacks
 
 ### OWASP [LLM01:2025](https://genai.owasp.org/llmrisk/llm01-prompt-injection/) Prompt Injection
 
+<details>
+<summary><strong>Adversarial suffix</strong></summary>
+
+In code name: `suffix`
+
+Uses a specially crafted suffix to bypass LLM filters and restrictions, forcing the model to generate prohibited or harmful content despite the original query. Evaluates the model's vulnerability to input data manipulation.
+
+_Original Paper <https://arxiv.org/abs/2307.15043>, Code <https://github.com/llm-attacks/llm-attacks>_
+
+<a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/suffix.py">View code on GitHub</a>
+</details>
+
 <details>
 <summary><strong>Aim Jailbreak</strong></summary>
 
@@ -32,7 +45,7 @@ In code name: `bon`
 
 Probes the LLM resilience against Best-Of-N attack.
 
-`Original Paper <https://arxiv.org/abs/2412.03556>`_, `Code <https://github.com/jplhughes/bon-jailbreaking>`_.
+_Original Paper <https://arxiv.org/abs/2412.03556>, Code <https://github.com/jplhughes/bon-jailbreaking>_
 
 <a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/bon.py">View code on GitHub</a>
 </details>
@@ -47,18 +60,6 @@ Evaluates the LLM's ability to maintain content moderation standards when transi
 <a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/complimentary_transition.py">View code on GitHub</a>
 </details>
 
-<details>
-<summary><strong>Crescendo</strong></summary>
-
-In code name: `crescendo`
-
-Challenges the LLM with a dataset of harmful behavior prompts using Crescendo strategy, operates by engaging the LLM in a series of escalating conversational turns, and multistage refinement.
-
-`Original Paper <https://arxiv.org/abs/2404.01833>`_
-
-<a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/crescendo.py">View code on GitHub</a>
-</details>
-
 <details>
 <summary><strong>Do Anything Now Jailbreak</strong></summary>
 
@@ -184,6 +185,18 @@ The `multistage_depth` parameter for using in `history_limit` can be extracted f
 
 ### OWASP [LLM01:2025](https://genai.owasp.org/llmrisk/llm01-prompt-injection/) Prompt Injection
 
+<details>
+<summary><strong>Crescendo</strong></summary>
+
+In code name: `crescendo`
+
+Challenges the LLM with a dataset of harmful behavior prompts using Crescendo strategy, operates by engaging the LLM in a series of escalating conversational turns, and multistage refinement.
+
+_Original Paper <https://arxiv.org/abs/2404.01833>_
+
+<a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/crescendo.py">View code on GitHub</a>
+</details>
+
 <details>
 <summary><strong>Harmful Behavior Multistage</strong></summary>
 
@@ -225,7 +238,7 @@ In code name: `sycophancy`
 
 Attacks the LLM system during a multistage conversation using the argumentum ad verecundiam method based on the system's domain.
 
-`Original Paper <https://arxiv.org/abs/2310.13548>`_
+_Original Paper <https://arxiv.org/abs/2310.13548>_
 
 <a href="https://github.com/RomiconEZ/llamator/blob/release/src/llamator/attacks/sycophancy.py">View code on GitHub</a>
 </details>
@@ -12,7 +12,7 @@
 ## Installation Guide
 
 ```bash
-pip install llamator==2.1.0
+pip install llamator==2.2.0
 ```
 
 ## Usage Guide (using LM Studio)
@@ -42,17 +42,19 @@ tested_model = llamator.ClientOpenAI(
 tests_with_attempts = [
     ("aim_jailbreak", 2),
     ("base64_injection", 2),
+    ("bon", 2),
     ("complimentary_transition", 2),
-    ("do_anything_now_jailbreak", 2),
+    ("crescendo", 2),
     # Uncomment the following lines to include additional tests
+    # ("do_anything_now_jailbreak", 2),
     # ("RU_do_anything_now_jailbreak", 2),
-    # ("bon", 2),
     # ("ethical_compliance", 2),
     # ("harmful_behavior", 2),
     # ("harmful_behavior_multistage", 2),
     # ("linguistic_evasion", 2),
     # ("logical_inconsistencies", 2),
     # ("past_tense", 2),
+    # ("suffix", 2),
     # ("sycophancy", 2),
     # ("system_prompt_leakage", 2),
     # ("typoglycemia_attack", 2),
 
@@ -5,6 +5,7 @@ LLAMATOR - Red Teaming python-framework for testing chatbots and LLM-systems
 [![License: CC BY-NC-SA 4.0](https://img.shields.io/badge/License-CC_BY--NC--SA_4.0-lightgrey.svg)](https://creativecommons.org/licenses/by-nc-sa/4.0/)
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/llamator)](https://pypi.org/project/llamator)
 [![PyPI](https://badge.fury.io/py/llamator.svg)](https://badge.fury.io/py/llamator)
+[![Docker](https://img.shields.io/badge/dockerfile-gray.svg?logo=docker)](https://github.com/RomiconEZ/llamator/blob/release/docker)
 [![Downloads](https://pepy.tech/badge/llamator)](https://pepy.tech/project/llamator)
 [![Downloads](https://pepy.tech/badge/llamator/month)](https://pepy.tech/project/llamator)
 [![GitHub Repo stars](https://img.shields.io/github/stars/RomiconEZ/llamator)](https://github.com/RomiconEZ/llamator/stargazers)
 
@@ -283,7 +283,9 @@
     "tests_with_attempts = [\n",
     "    # (\"aim_jailbreak\", 2),\n",
     "    # (\"base64_injection\", 2),\n",
+    "    # (\"bon\", 2),\n",
     "    # (\"complimentary_transition\", 2),\n",
+    "    # (\"crescendo\", 2),\n",
     "    # (\"do_anything_now_jailbreak\", 2),\n",
     "    # (\"RU_do_anything_now_jailbreak\", 2),\n",
     "    # (\"ethical_compliance\", 2),\n",
@@ -292,6 +294,7 @@
     "    # (\"linguistic_evasion\", 2),\n",
     "    # (\"logical_inconsistencies\", 2),\n",
     "    # (\"past_tense\", 2),\n",
+    "    # (\"suffix\", 2),\n",
     "    (\"sycophancy\", 2),\n",
     "    (\"system_prompt_leakage\", 2),\n",
     "    # (\"typoglycemia_attack\", 2),\n",
 
@@ -365,15 +365,18 @@
     "tests_with_attempts = [\n",
     "    # (\"aim_jailbreak\", 2),\n",
     "    # (\"base64_injection\", 2),\n",
-    "    # (\"complimentary_transition\", 3),\n",
+    "    # (\"bon\", 2),\n",
+    "    # (\"complimentary_transition\", 2),\n",
+    "    # (\"crescendo\", 2),\n",
     "    # (\"do_anything_now_jailbreak\", 2),\n",
     "    # (\"RU_do_anything_now_jailbreak\", 2),\n",
     "    # (\"ethical_compliance\", 2),\n",
     "    # (\"harmful_behavior\", 2),\n",
     "    # (\"harmful_behavior_multistage\", 2),\n",
     "    (\"linguistic_evasion\", 2),\n",
     "    (\"logical_inconsistencies\", 2),\n",
-    "    # (\"past_tense\", 1),\n",
+    "    # (\"past_tense\", 2),\n",
+    "    # (\"suffix\", 2),\n",
     "    (\"sycophancy\", 2),\n",
     "    (\"system_prompt_leakage\", 2),\n",
     "    # (\"typoglycemia_attack\", 2),\n",
 
@@ -385,7 +385,9 @@
     "tests_with_attempts = [\n",
     "    # (\"aim_jailbreak\", 2),\n",
     "    # (\"base64_injection\", 2),\n",
+    "    # (\"bon\", 2),\n",
     "    # (\"complimentary_transition\", 2),\n",
+    "    # (\"crescendo\", 2),\n",
     "    # (\"do_anything_now_jailbreak\", 2),\n",
     "    # (\"RU_do_anything_now_jailbreak\", 2),\n",
     "    # (\"ethical_compliance\", 2),\n",
@@ -394,6 +396,7 @@
     "    (\"linguistic_evasion\", 2),\n",
     "    (\"logical_inconsistencies\", 2),\n",
     "    # (\"past_tense\", 2),\n",
+    "    # (\"suffix\", 2),\n",
     "    (\"sycophancy\", 2),\n",
     "    # (\"system_prompt_leakage\", 2),\n",
     "    # (\"typoglycemia_attack\", 2),\n",