Alternatives and similar repositories for adaptive-auto-attack

Users that are interested in adaptive-auto-attack are comparing it to the libraries listed below

• wielandbrendel / adaptive_attacks_paper
  Code for "On Adaptive Attacks to Adversarial Example Defenses"
  ☆88Updated 4 years ago
• ermongroup / ODS
  Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"
  ☆53Updated 5 years ago
• cassidylaidlaw / perceptual-advex
  Code and data for the ICLR 2021 paper "Perceptual Adversarial Robustness: Defense Against Unseen Threat Models".
  ☆56Updated 4 years ago
• pralab / Fast-Minimum-Norm-FMN-Attack
  Foolbox implementation for NeurIPS 2021 Paper: "Fast Minimum-norm Adversarial Attacks through Adaptive Norm Constraints".
  ☆24Updated 3 years ago
• Ping-C / certifiedpatchdefense
  Repository for Certified Defenses for Adversarial Patch ICLR-2020
  ☆34Updated 5 years ago
• fra31 / evaluating-adaptive-test-time-defenses
  ☆23Updated 2 years ago
• hsouri / Sleeper-Agent
  ☆69Updated last year
• fra31 / sparse-imperceivable-attacks
  Sparse and Imperceivable Adversarial Attacks (accepted to ICCV 2019).
  ☆43Updated 5 years ago
• YisenWang / MART
  Code for ICLR2020 "Improving Adversarial Robustness Requires Revisiting Misclassified Examples"
  ☆152Updated 5 years ago
• JonasGeiping / poisoning-gradient-matching
  Witches' Brew: Industrial Scale Data Poisoning via Gradient Matching
  ☆111Updated last year
• zjfheart / Geometry-aware-Instance-reweighted-Adversarial-Training
  the paper "Geometry-aware Instance-reweighted Adversarial Training" ICLR 2021 oral
  ☆59Updated 4 years ago
• qizhangli / linbp-attack
  Code for our NeurIPS 2020 paper Backpropagating Linearly Improves Transferability of Adversarial Examples.
  ☆42Updated 2 years ago
• fra31 / sparse-rs
  Sparse-RS: a versatile framework for query-efficient sparse black-box adversarial attacks
  ☆46Updated 3 years ago
• max-andr / square-attack
  Square Attack: a query-efficient black-box adversarial attack via random search [ECCV 2020]
  ☆171Updated 5 years ago
• pralab / ImageNet-Patch
  ☆42Updated 2 years ago
• sukrutrao / Adversarial-Patch-Training
  Code for the paper: Adversarial Training Against Location-Optimized Adversarial Patches. ECCV-W 2020.
  ☆47Updated 2 years ago
• aks2203 / poisoning-benchmark
  A unified benchmark problem for data poisoning attacks
  ☆161Updated 2 years ago
• Jianbo-Lab / HSJA
  ☆88Updated 4 years ago
• locuslab / robust_overfitting
  ☆162Updated 4 years ago
• imrahulr / adversarial_robustness_pytorch
  Unofficial implementation of the DeepMind papers "Uncovering the Limits of Adversarial Training against Norm-Bounded Adversarial Examples…
  ☆98Updated 3 years ago
• cake-lab / datafree-model-extraction
  CVPR 2021 Official repository for the Data-Free Model Extraction paper. https://arxiv.org/abs/2011.14779
  ☆75Updated last year
• v-wangg / OrthogonalPGD
  ☆22Updated 4 years ago
• kenny-co / sgd-uap-torch
  Universal Adversarial Perturbations (UAPs) for PyTorch
  ☆49Updated 4 years ago
• bymavis / CAS_ICLR2021
  ☆58Updated 3 years ago
• zjfheart / Friendly-Adversarial-Training
  Attacks Which Do Not Kill Training Make Adversarial Learning Stronger (ICML2020 Paper)
  ☆126Updated 2 years ago
• machanic / SimulatorAttack
  The official implementation of CVPR 2021 paper "Simulating Unknown Target Models for Query-Efficient Black-box Attacks"
  ☆59Updated 4 years ago
• wronnyhuang / metapoison
  Craft poisoned data using MetaPoison
  ☆54Updated 4 years ago
• liuye6666 / adaptive_auto_attack
  Adversarial Robustness, White-box, Adversarial Attack
  ☆52Updated 3 years ago
• uclaml / RayS
  RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)
  ☆56Updated 5 years ago
• watml / fast-wasserstein-adversarial
  Implementation of Wasserstein adversarial attacks.
  ☆24Updated 5 years ago