antoniobarbalau / black-box-ripper
Black-Box Ripper: Copying black-box models using generative evolutionary algorithms - NIPS 2020 - Official Implementation
☆28Updated 3 years ago
Related projects: ⓘ
- ☆31Updated 2 weeks ago
- Code for the CSF 2018 paper "Privacy Risk in Machine Learning: Analyzing the Connection to Overfitting"☆38Updated 5 years ago
- ☆22Updated 2 years ago
- Privacy Risks of Securing Machine Learning Models against Adversarial Examples☆44Updated 4 years ago
- The code is for our NeurIPS 2019 paper: https://arxiv.org/abs/1910.04749☆31Updated 4 years ago
- Membership Inference Attacks and Defenses in Neural Network Pruning☆25Updated 2 years ago
- Prediction Poisoning: Towards Defenses Against DNN Model Stealing Attacks (ICLR '20)☆29Updated 3 years ago
- Official implementation of "RelaxLoss: Defending Membership Inference Attacks without Losing Utility" (ICLR 2022)☆45Updated 2 years ago
- CVPR 2021 Official repository for the Data-Free Model Extraction paper. https://arxiv.org/abs/2011.14779☆66Updated 5 months ago
- Witches' Brew: Industrial Scale Data Poisoning via Gradient Matching☆91Updated last month
- Code for "On Adaptive Attacks to Adversarial Example Defenses"☆84Updated 3 years ago
- Code and data for the ICLR 2021 paper "Perceptual Adversarial Robustness: Defense Against Unseen Threat Models".☆54Updated 2 years ago
- RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)☆54Updated 3 years ago
- ConvexPolytopePosioning☆33Updated 4 years ago
- ☆59Updated 7 months ago
- Craft poisoned data using MetaPoison☆47Updated 3 years ago
- [ICLR'21] Dataset Inference for Ownership Resolution in Machine Learning☆30Updated last year
- Certified Removal from Machine Learning Models☆62Updated 3 years ago
- Code for Auditing DPSGD☆30Updated 2 years ago
- On the effectiveness of adversarial training against common corruptions [UAI 2022]☆30Updated 2 years ago
- ☆23Updated 2 years ago
- ☆25Updated 5 years ago
- Code for the paper "Adversarial Training and Robustness for Multiple Perturbations", NeurIPS 2019☆47Updated last year
- MACER: MAximizing CErtified Radius (ICLR 2020)☆27Updated 4 years ago
- ☆25Updated 5 years ago
- Code for "Variational Model Inversion Attacks" Wang et al., NeurIPS2021☆20Updated 2 years ago
- Official Implementation of ICLR 2022 paper, ``Adversarial Unlearning of Backdoors via Implicit Hypergradient''☆49Updated last year
- Repository for Certified Defenses for Adversarial Patch ICLR-2020☆32Updated 4 years ago
- The source code for ICML2021 paper When Does Data Augmentation Help With Membership Inference Attacks?☆8Updated 3 years ago
- ☆19Updated 2 years ago