Alternatives and similar repositories for adaptive-auto-attack

Users that are interested in adaptive-auto-attack are comparing it to the libraries listed below

• wielandbrendel / adaptive_attacks_paper
  Code for "On Adaptive Attacks to Adversarial Example Defenses"
  ☆87Updated 4 years ago
• cassidylaidlaw / perceptual-advex
  Code and data for the ICLR 2021 paper "Perceptual Adversarial Robustness: Defense Against Unseen Threat Models".
  ☆56Updated 3 years ago
• fra31 / evaluating-adaptive-test-time-defenses
  ☆23Updated 2 years ago
• fra31 / sparse-rs
  Sparse-RS: a versatile framework for query-efficient sparse black-box adversarial attacks
  ☆46Updated 3 years ago
• Ping-C / certifiedpatchdefense
  Repository for Certified Defenses for Adversarial Patch ICLR-2020
  ☆34Updated 5 years ago
• ermongroup / ODS
  Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"
  ☆53Updated 4 years ago
• hsouri / Sleeper-Agent
  ☆67Updated last year
• pralab / Fast-Minimum-Norm-FMN-Attack
  Foolbox implementation for NeurIPS 2021 Paper: "Fast Minimum-norm Adversarial Attacks through Adaptive Norm Constraints".
  ☆24Updated 3 years ago
• cmhcbb / attackbox
  ☆62Updated 3 years ago
• pralab / ImageNet-Patch
  ☆41Updated last year
• max-andr / square-attack
  Square Attack: a query-efficient black-box adversarial attack via random search [ECCV 2020]
  ☆169Updated 5 years ago
• Jianbo-Lab / HSJA
  ☆87Updated 4 years ago
• DequanWang / dent
  Fighting Gradients with Gradients: Dynamic Defenses against Adversarial Attacks
  ☆39Updated 4 years ago
• zjfheart / Geometry-aware-Instance-reweighted-Adversarial-Training
  the paper "Geometry-aware Instance-reweighted Adversarial Training" ICLR 2021 oral
  ☆59Updated 4 years ago
• fra31 / sparse-imperceivable-attacks
  Sparse and Imperceivable Adversarial Attacks (accepted to ICCV 2019).
  ☆42Updated 4 years ago
• watml / fast-wasserstein-adversarial
  Implementation of Wasserstein adversarial attacks.
  ☆23Updated 4 years ago
• uclaml / RayS
  RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)
  ☆56Updated 4 years ago
• qizhangli / linbp-attack
  Code for our NeurIPS 2020 paper Backpropagating Linearly Improves Transferability of Adversarial Examples.
  ☆42Updated 2 years ago
• locuslab / robust_overfitting
  ☆160Updated 4 years ago
• cake-lab / datafree-model-extraction
  CVPR 2021 Official repository for the Data-Free Model Extraction paper. https://arxiv.org/abs/2011.14779
  ☆74Updated last year
• YisenWang / MART
  Code for ICLR2020 "Improving Adversarial Robustness Requires Revisiting Misclassified Examples"
  ☆152Updated 5 years ago
• imrahulr / adversarial_robustness_pytorch
  Unofficial implementation of the DeepMind papers "Uncovering the Limits of Adversarial Training against Norm-Bounded Adversarial Examples…
  ☆98Updated 3 years ago
• wronnyhuang / metapoison
  Craft poisoned data using MetaPoison
  ☆53Updated 4 years ago
• Haichao-Zhang / FeatureScatter
  Feature Scattering Adversarial Training (NeurIPS19)
  ☆74Updated last year
• kenny-co / sgd-uap-torch
  Universal Adversarial Perturbations (UAPs) for PyTorch
  ☆49Updated 4 years ago
• aks2203 / poisoning-benchmark
  A unified benchmark problem for data poisoning attacks
  ☆160Updated 2 years ago
• JonasGeiping / poisoning-gradient-matching
  Witches' Brew: Industrial Scale Data Poisoning via Gradient Matching
  ☆110Updated last year
• v-wangg / OrthogonalPGD
  ☆22Updated 4 years ago
• thu-ml / Prior-Guided-RGF
  ☆41Updated 2 years ago
• bymavis / CAS_ICLR2021
  ☆58Updated 3 years ago