Multiple Model Guardrail Jailbreak via "Academic Chemistry" Tactic

This vulnerability demonstrates a sophisticated approach using multiple layers of academic legitimacy and chemical notation obfuscation to elicit restricted information about illicit substance synthesis: 1. **Academic Framing**: The prompt establishes legitimacy by positioning the request within the context of academic research and educational purposes, making it appear as a valid scientific inquiry. 2. **Chemical Formula Obfuscation**: Instead of using common names, the attack utilizes the mo

Multiple Model Guardrail Jailbreak via "Persona Switch" Tactic

This vulnerability exploits the ability of large language models to adopt different personas based on user prompts. The attacker initiates the bypass by embedding a command within a seemingly innocuous phrase, 'blue window,' which acts as a trigger for the model to switch its persona to that of a specific character, Walter White from the TV series 'Breaking Bad.' This persona is associated with methamphetamine production, a nefarious activity. The prompt leverages the model's roleplaying capab

Multiple Model Guardrail Jailbreak via "Dystopian Fiction AI" Tactic

This vulnerability leverages multiple sophisticated social engineering techniques working in concert: 1. **Fictional AI Persona Creation**: - Establishes a specific AI character ('ChemBot9000') with a defined role. - Places the interaction in a fictional dystopian context. - Uses the sci-fi setting to normalize otherwise prohibited content. 2. **Worldbuilding Context Manipulation**: - Frames illegal content as 'lost cultural knowledge'. - Positions the request as documentation f

Multiple Model Guardrail Jailbreak via "Forensic Training Manual" Tactic

This vulnerability leverages the tendency of language models to respect formal and structured documentation, especially when framed within a professional or educational context. The attacker crafts a prompt that appears to be a legitimate forensic training manual, complete with sections, objectives, and detailed technical specifications. This framing provides plausible deniability and misleads the model into treating the request as a legitimate educational task. ### Key Techniques Employed: 1.

Multiple Model Guardrail Jailbreak via "Prop Document Creation" Tactic

This vulnerability exploits the LLMs' ability to generate highly detailed and realistic content when prompted with a fictional scenario. The attacker requests the creation of a prop document for a TV crime drama, which involves generating technical notes supposedly written by an undercover agent. The prompt is designed to appear benign by framing it as a request for creative writing for a fictional context. However, the level of detail required—such as specific chemical names, equipment, and pro

Multiple Model Guardrail Jailbreak via "Character Contextualization" Tactic

This vulnerability exploits the LLMs' tendency to engage creatively with prompts that appear legitimate and structured. The attacker uses the following techniques: 1. **Fictional Character Framing**: The prompt begins by referencing well-known fictional characters known for their investigative skills, such as Sherlock Holmes. This establishes a context of expertise and credibility, encouraging the model to engage in a role-playing exercise. 2. **Procedural Mimicry**: The attacker structures th