Alternatives and similar repositories for knn-defense

Users that are interested in knn-defense are comparing it to the libraries listed below

• rfeinman / detecting-adversarial-samples
  Code for "Detecting Adversarial Samples from Artifacts" (Feinman et al., 2017)
  ☆111Updated 7 years ago
• rakutentech / stAdv
  Spatially Transformed Adversarial Examples with TensorFlow
  ☆75Updated 6 years ago
• xingjunm / lid_adversarial_subspace_detection
  Code for paper "Characterizing Adversarial Subspaces Using Local Intrinsic Dimensionality".
  ☆125Updated 4 years ago
• sunblaze-ucb / decision-boundaries
  code we used in Decision Boundary Analysis of Adversarial Examples https://openreview.net/forum?id=BkpiPMbA-
  ☆28Updated 6 years ago
• sunblaze-ucb / blackbox-attacks
  Code used in 'Exploring the Space of Black-box Attacks on Deep Neural Networks' (https://arxiv.org/abs/1712.09491)
  ☆61Updated 7 years ago
• uvasrg / FeatureSqueezing
  Detecting Adversarial Examples in Deep Neural Networks
  ☆67Updated 7 years ago
• greentfrapp / boundary-attack
  Implementation of the Boundary Attack algorithm as described in Brendel, Wieland, Jonas Rauber, and Matthias Bethge. "Decision-Based Adve…
  ☆99Updated 4 years ago
• nesl / adversarial_genattack
  ☆56Updated 2 years ago
• ermongroup / generative_adversary
  Code for the unrestricted adversarial examples paper (NeurIPS 2018)
  ☆65Updated 6 years ago
• kkew3 / pytorch-cw2
  A rich-documented PyTorch implementation of Carlini-Wagner's L2 attack.
  ☆60Updated 7 years ago
• Ping-C / certifiedpatchdefense
  Repository for Certified Defenses for Adversarial Patch ICLR-2020
  ☆34Updated 5 years ago
• MadryLab / blackbox-bandits
  Code for "Prior Convictions: Black-Box Adversarial Attacks with Bandits and Priors"
  ☆64Updated 5 years ago
• Trevillie / MagNet
  MagNet: a Two-Pronged Defense against Adversarial Examples
  ☆100Updated 6 years ago
• huanzhang12 / CLEVER
  CLEVER (Cross-Lipschitz Extreme Value for nEtwork Robustness) is a robustness metric for deep neural networks
  ☆63Updated 4 years ago
• Jianbo-Lab / HSJA
  ☆86Updated 4 years ago
• labsix / limited-blackbox-attacks
  Code for "Black-box Adversarial Attacks with Limited Queries and Information" (http://arxiv.org/abs/1804.08598)
  ☆180Updated 3 years ago
• Gwinhen / AmI
  This repository is for NeurIPS 2018 spotlight paper "Attacks Meet Interpretability: Attribute-steered Detection of Adversarial Samples."
  ☆31Updated 3 years ago
• IBM / ZOO-Attack
  Codes for reproducing the black-box adversarial attacks in “ZOO: Zeroth Order Optimization based Black-box Attacks to Deep Neural Network…
  ☆63Updated 6 years ago
• ermongroup / ODS
  Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"
  ☆53Updated 4 years ago
• carlini / nn_breaking_detection
  Code corresponding to the paper "Adversarial Examples are not Easily Detected..."
  ☆88Updated 7 years ago
• thu-ml / Prior-Guided-RGF
  ☆41Updated 2 years ago
• giladcohen / NNIF_adv_defense
  Detection of adversarial examples using influence functions and nearest neighbors
  ☆37Updated 2 years ago
• TransEmbedBA / TREMBA
  Code for Black-Box Adversarial Attack with Transferable Model-based Embedding
  ☆58Updated 5 years ago
• Cold-Winter / Nattack
  ☆48Updated 4 years ago
• huanzhang12 / ZOO-Attack
  ZOO: Zeroth Order Optimization based Black-box Attacks to Deep Neural Networks
  ☆169Updated 4 years ago
• val-iisc / GD-UAP
  Generalized Data-free Universal Adversarial Perturbations
  ☆70Updated 6 years ago
• wielandbrendel / adaptive_attacks_paper
  Code for "On Adaptive Attacks to Adversarial Example Defenses"
  ☆86Updated 4 years ago
• fra31 / fab-attack
  Code for FAB-attack
  ☆33Updated 5 years ago
• fra31 / sparse-imperceivable-attacks
  Sparse and Imperceivable Adversarial Attacks (accepted to ICCV 2019).
  ☆41Updated 4 years ago
• thong3le / blackbox-attack
  Blackbox attacks for deep neural network models
  ☆70Updated 7 years ago