NVlabs/DiffPure external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

NVlabs/DiffPure

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/NVlabs/DiffPure)

Close

NVlabs / DiffPureView on GitHubMore

• External links
• Readme badge

A new adversarial purification method that uses the forward and reverse processes of diffusion models to remove adversarial perturbations.

☆337Jan 29, 2023Updated 3 years ago

Alternatives and similar repositories for DiffPure

Users that are interested in DiffPure are comparing it to the libraries listed below

• JinyiW / GuidedDiffusionPur

  View on GitHub
  ☆61Aug 9, 2023Updated 2 years ago
• RobustBench / robustbench

  View on GitHub
  RobustBench: a standardized adversarial robustness benchmark [NeurIPS 2021 Benchmarks and Datasets Track]
  ☆772Mar 31, 2025Updated 11 months ago
• LixiaoTHU / ADBM

  View on GitHub
  ☆23Jul 29, 2025Updated 7 months ago
• wzekai99 / DM-Improves-AT

  View on GitHub
  Code for the paper "Better Diffusion Models Further Improve Adversarial Training" (ICML 2023)
  ☆145Jul 31, 2023Updated 2 years ago
• WindVChen / DiffAttack

  View on GitHub
  An unrestricted attack based on diffusion models that can achieve both good transferability and imperceptibility.
  ☆258Nov 23, 2025Updated 3 months ago
• glin2022 / atop

  View on GitHub
  The code of the ICLR 2024 paper: Adversarial Training on Purification (AToP): Advancing Both Robustness and Generalization
  ☆10Nov 21, 2024Updated last year
• fra31 / auto-attack

  View on GitHub
  Code relative to "Reliable evaluation of adversarial robustness with an ensemble of diverse parameter-free attacks"
  ☆743May 16, 2024Updated last year
• kangmintong / DiffAttack

  View on GitHub
  [NeurIPS 2023] Codes for DiffAttack: Evasion Attacks Against Diffusion-Based Adversarial Purification
  ☆39Feb 29, 2024Updated 2 years ago
• ZhengyueZhao / GrIDPure

  View on GitHub
  Code of paper [CVPR'24: Can Protective Perturbation Safeguard Personal Data from Being Exploited by Stable Diffusion?]
  ☆23Apr 2, 2024Updated last year
• ml-postech / robust-evaluation-of-diffusion-based-purification

  View on GitHub
  [ICCV 2023 Oral] Official implementation of "Robust Evaluation of Diffusion-Based Adversarial Purification"
  ☆25Dec 3, 2023Updated 2 years ago
• kabachuha / sd-webui-diffpure

  View on GitHub
  Auto1111 port of NVlab's adversarial purification method that uses the forward and reverse processes of diffusion models to remove advers…
  ☆13Aug 8, 2023Updated 2 years ago
• xavihart / Diff-PGD

  View on GitHub
  [NeurIPS'2023] Official Code Repo:Diffusion-Based Adversarial Sample Generation for Improved Stealthiness and Controllability
  ☆118Oct 31, 2023Updated 2 years ago
• jmyoon1 / adp

  View on GitHub
  Implementation of "Adversarial purification with Score-based generative models", ICML 2021
  ☆30Oct 24, 2021Updated 4 years ago
• steven202 / semantic_adv_via_dm

  View on GitHub
  [BMVC 2023] Semantic Adversarial Attacks via Diffusion Models
  ☆25Nov 30, 2023Updated 2 years ago
• csdongxian / AWP

  View on GitHub
  Codes for NeurIPS 2020 paper "Adversarial Weight Perturbation Helps Robust Generalization"
  ☆189Feb 18, 2021Updated 5 years ago
• Muzammal-Naseer / TTP

  View on GitHub
  Official repository for "On Generating Transferable Targeted Perturbations" (ICCV 2021)
  ☆62Mar 25, 2023Updated 2 years ago
• imrahulr / adversarial_robustness_pytorch

  View on GitHub
  Unofficial implementation of the DeepMind papers "Uncovering the Limits of Adversarial Training against Norm-Bounded Adversarial Examples…
  ☆99Mar 4, 2022Updated 4 years ago
• huanranchen / DiffusionClassifier

  View on GitHub
  Official code implement of Robust Classification via a Single Diffusion Model
  ☆96Mar 7, 2025Updated last year
• point0bar1 / ebm-defense

  View on GitHub
  PyTorch implementation of BPDA+EOT attack to evaluate adversarial defense with an EBM
  ☆27Jun 30, 2020Updated 5 years ago
• yaodongyu / TRADES

  View on GitHub
  TRADES (TRadeoff-inspired Adversarial DEfense via Surrogate-loss minimization)
  ☆554Mar 30, 2023Updated 2 years ago
• chihhuiho / disco

  View on GitHub
  ☆15Dec 12, 2022Updated 3 years ago
• ethz-spylab / robust-style-mimicry

  View on GitHub
  ☆49Jun 19, 2024Updated last year
• P2333 / Bag-of-Tricks-for-AT

  View on GitHub
  Empirical tricks for training robust models (ICLR 2021)
  ☆258May 25, 2023Updated 2 years ago
• Alibaba-AAIG / Beyond-ImageNet-Attack

  View on GitHub
  Beyond imagenet attack (accepted by ICLR 2022) towards crafting adversarial examples for black-box domains.
  ☆61Jun 15, 2022Updated 3 years ago
• val-iisc / NuAT

  View on GitHub
  Towards Efficient and Effective Adversarial Training, NeurIPS 2021
  ☆17Feb 15, 2022Updated 4 years ago
• jiaxiaojunQAQ / LAS-AT

  View on GitHub
  Code for LAS-AT: Adversarial Training with Learnable Attack Strategy (CVPR2022)
  ☆118Mar 30, 2022Updated 3 years ago
• qizhangli / MoreBayesian-attack

  View on GitHub
  Code for our ICLR 2023 paper Making Substitute Models More Bayesian Can Enhance Transferability of Adversarial Examples.
  ☆18May 31, 2023Updated 2 years ago
• YisenWang / MART

  View on GitHub
  Code for ICLR2020 "Improving Adversarial Robustness Requires Revisiting Misclassified Examples"
  ☆153Oct 15, 2020Updated 5 years ago
• Harry24k / adversarial-attacks-pytorch

  View on GitHub
  PyTorch implementation of adversarial attacks [torchattacks]
  ☆2,148Jun 29, 2024Updated last year
• huanranchen / AdversarialAttacks

  View on GitHub
  ☆81Jul 23, 2024Updated last year
• ShawnXYang / C-GSP

  View on GitHub
  ☆16Jul 25, 2022Updated 3 years ago
• yunqing-me / AttackVLM

  View on GitHub
  [NeurIPS-2023] Annual Conference on Neural Information Processing Systems
  ☆228Dec 22, 2024Updated last year
• kopperx / Adv-Diffusion

  View on GitHub
  [AAAI-2024] Official code for work "Adv-Diffusion: Imperceptible Adversarial Face Identity Attack via Latent Diffusion Model"
  ☆60Aug 17, 2024Updated last year
• alevine0 / patchSmoothing

  View on GitHub
  Code for the paper "(De)Randomized Smoothing for Certifiable Defense against Patch Attacks" by Alexander Levine and Soheil Feizi.
  ☆17Aug 22, 2022Updated 3 years ago
• Jayfeather1024 / DensePure

  View on GitHub
  ☆20Oct 5, 2023Updated 2 years ago
• CGCL-codes / TransferAttackSurrogates

  View on GitHub
  The official code of IEEE S&P 2024 paper "Why Does Little Robustness Help? A Further Step Towards Understanding Adversarial Transferabili…
  ☆20Aug 22, 2024Updated last year
• adverML / synthesizing_robust_adversarial

  View on GitHub
  PyTorch implementation of Expectation over Transformation
  ☆13Jul 18, 2025Updated 8 months ago
• v-wangg / OrthogonalPGD

  View on GitHub
  ☆22Sep 13, 2021Updated 4 years ago
• NVlabs / A5

  View on GitHub
  Adversarial Augmentation Against Adversarial Attacks
  ☆32May 23, 2023Updated 2 years ago