Alternatives and similar repositories for VillanDiffusion

Users that are interested in VillanDiffusion are comparing it to the libraries listed below

• jiawangbai / BadCLIP
  Implementation of BadCLIP https://arxiv.org/pdf/2311.16194.pdf
  ☆24Updated last year
• ZhentingWang / DIAGNOSIS
  ☆23Updated last year
• JJ-Vice / BAGM
  All code and data necessary to replicate experiments in the paper BAGM: A Backdoor Attack for Manipulating Text-to-Image Generative Model…
  ☆13Updated last year
• IBM / BadDiffusion
  Official repo to reproduce the paper "How to Backdoor Diffusion Models?" published at CVPR 2023
  ☆94Updated 2 months ago
• zhaisf / BadT2I
  [MM'23 Oral] "Text-to-image diffusion models can be easily backdoored through multimodal data poisoning"
  ☆31Updated 3 months ago
• datar001 / Awesome-AD-on-T2IDM
  A collection of resources on attacks and defenses targeting text-to-image diffusion models
  ☆84Updated 8 months ago
• linweiii / BackdoorDM
  [NeurIPS 2025 D&B] BackdoorDM: A Comprehensive Benchmark for Backdoor Learning in Diffusion Model
  ☆22Updated 4 months ago
• njuaplusplus / Elijah
  ☆13Updated last year
• chenweixin107 / TrojDiff
  ☆59Updated 3 years ago
• grasses / PoisonPrompt
  Code for paper: PoisonPrompt: Backdoor Attack on Prompt-based Large Language Models, IEEE ICASSP 2024. Demo//124.220.228.133:11107
  ☆18Updated last year
• WUSTL-CSPL / RIATIG
  ☆28Updated 2 years ago
• Huang-yihao / Personalization-based_backdoor
  ☆10Updated 11 months ago
• LiangSiyuan21 / BadCLIP
  ☆29Updated last year
• haowang02 / EvilEdit
  [MM '24] EvilEdit: Backdooring Text-to-Image Diffusion Models in One Second
  ☆26Updated last year
• AntigoneRandy / SIREN
  Official Implementation for "Towards Reliable Verification of Unauthorized Data Usage in Personalized Text-to-Image Diffusion Models" (IE…
  ☆26Updated 8 months ago
• caradryanl / ACE
  ☆28Updated last year
• KuofengGao / ASD
  [CVPR 2023] Backdoor Defense via Adaptively Splitting Poisoned Dataset
  ☆49Updated last year
• jinghuichen / AWM
  Github repo for One-shot Neural Backdoor Erasing via Adversarial Weight Masking (NeurIPS 2022)
  ☆15Updated 2 years ago
• SaFo-Lab / Awesome-T2I-safety-Papers
  List of T2I safety papers, updated daily, welcome to discuss using Discussions
  ☆67Updated last year
• GuanhaoGan / robust-model-watermarking
  official implementation of Towards Robust Model Watermark via Reducing Parametric Vulnerability
  ☆15Updated last year
• OPTML-Group / Diffusion-MU-Attack
  The official implementation of ECCV'24 paper "To Generate or Not? Safety-Driven Unlearned Diffusion Models Are Still Easy To Generate Uns…
  ☆87Updated 9 months ago
• jiaxiaojunQAQ / FOA-Attack
  Adversarial Attacks against Closed-Source MLLMs via Feature Optimal Alignment (NeurIPS 2025)
  ☆40Updated last month
• ZhengyueZhao / GrIDPure
  Code of paper [CVPR'24: Can Protective Perturbation Safeguard Personal Data from Being Exploited by Stable Diffusion?]
  ☆23Updated last year
• CGCL-codes / TeCo
  [CVPR 2023] The official implementation of our CVPR 2023 paper "Detecting Backdoors During the Inference Stage Based on Corruption Robust…
  ☆23Updated 2 years ago
• kangmintong / DiffAttack
  [NeurIPS 2023] Codes for DiffAttack: Evasion Attacks Against Diffusion-Based Adversarial Purification
  ☆37Updated last year
• OPTML-Group / QF-Attack
  [CVPR23W] "A Pilot Study of Query-Free Adversarial Attack against Stable Diffusion" by Haomin Zhuang, Yihua Zhang and Sijia Liu
  ☆26Updated last year
• KuofengGao / Verbose_Images
  [ICLR 2024] Inducing High Energy-Latency of Large Vision-Language Models with Verbose Images
  ☆41Updated last year
• chiayi-hsu / Ring-A-Bell
  ☆38Updated 10 months ago
• 20000yshust / SWARM
  [CVPR 2024] Not All Prompts Are Secure: A Switchable Backdoor Attack Against Pre-trained Vision Transfomers
  ☆16Updated last year
• steven202 / semantic_adv_via_dm
  [BMVC 2023] Semantic Adversarial Attacks via Diffusion Models
  ☆24Updated 2 years ago