ZiangYan / subspace-attack.pytorch
Implementation of our NeurIPS 2019 paper: Subspace Attack: Exploiting Promising Subspaces for Query-Efficient Black-box Attacks
☆10Updated 5 years ago
Alternatives and similar repositories for subspace-attack.pytorch:
Users that are interested in subspace-attack.pytorch are comparing it to the libraries listed below
- Codebase for "Exploring the Landscape of Spatial Robustness" (ICML'19, https://arxiv.org/abs/1712.02779).☆26Updated 5 years ago
- ☆35Updated 4 years ago
- Coupling rejection strategy against adversarial attacks (CVPR 2022)☆29Updated 3 years ago
- Source code for Learning Transferable Adversarial Examples via Ghost Networks (AAAI2020)☆59Updated 6 years ago
- ☆48Updated 4 years ago
- Feature Scattering Adversarial Training (NeurIPS19)☆73Updated 10 months ago
- ☆45Updated 5 years ago
- Code for "Prior Convictions: Black-box Adversarial Attacks with Bandits and Priors"☆14Updated 6 years ago
- Code for FAB-attack☆32Updated 4 years ago
- ☆25Updated 5 years ago
- Smooth Adversarial Training☆67Updated 4 years ago
- Strongest attack against Feature Scatter and Adversarial Interpolation☆25Updated 5 years ago
- ☆18Updated 5 years ago
- Source code for Regional Homogeneity: Towards Learning Transferable Universal Adversarial Perturbations Against Defenses (ECCV 2020)☆41Updated 6 years ago
- Analysis of Adversarial Logit Pairing☆60Updated 6 years ago
- This repo contains the code for CVPR submission "Big but Invisible Adversarial Attack"☆30Updated 5 years ago
- A repository for the query-efficient black-box attack, SignHunter☆23Updated 5 years ago
- RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)☆56Updated 4 years ago
- Imbalanced Gradients: A New Cause of Overestimated Adversarial Robustness. (MD attacks)☆11Updated 4 years ago
- Project page for our paper: Interpreting Adversarially Trained Convolutional Neural Networks☆66Updated 5 years ago
- Code for "Prior Convictions: Black-Box Adversarial Attacks with Bandits and Priors"☆63Updated 5 years ago
- Code for the NeurIPS 2019 submission: "Improving Black-box Adversarial Attacks with a Transfer-based Prior".☆16Updated 4 years ago
- Python implementation for paper: Feature Distillation: DNN-Oriented JPEG Compression Against Adversarial Examples☆11Updated 6 years ago
- Adversarial Distributional Training (NeurIPS 2020)☆63Updated 4 years ago
- ☆87Updated 9 months ago
- Further improve robustness of mixup-trained models in inference (ICLR 2020)☆60Updated 4 years ago
- [NeurIPS2020] The official repository of "AdvFlow: Inconspicuous Black-box Adversarial Attacks using Normalizing Flows".☆46Updated last year
- Code for the paper "MMA Training: Direct Input Space Margin Maximization through Adversarial Training"☆34Updated 5 years ago
- Guided Adversarial Attack for Evaluating and Enhancing Adversarial Defenses, NeurIPS Spotlight 2020☆27Updated 4 years ago
- Provable Robustness of ReLU networks via Maximization of Linear Regions [AISTATS 2019]☆32Updated 4 years ago