inspire-group / PatchGuard
Code for paper "PatchGuard: A Provably Robust Defense against Adversarial Patches via Small Receptive Fields and Masking"
☆64Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for PatchGuard
- Repository for Certified Defenses for Adversarial Patch ICLR-2020☆32Updated 4 years ago
- Code for the paper: Adversarial Training Against Location-Optimized Adversarial Patches. ECCV-W 2020.☆42Updated last year
- ☆79Updated 3 years ago
- ☆41Updated last year
- Universal Adversarial Perturbations (UAPs) for PyTorch☆46Updated 3 years ago
- Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"☆53Updated 4 years ago
- ☆55Updated 2 years ago
- Foolbox implementation for NeurIPS 2021 Paper: "Fast Minimum-norm Adversarial Attacks through Adaptive Norm Constraints".☆25Updated 2 years ago
- ATTA (Efficient Adversarial Training with Transferable Adversarial Examples)☆32Updated 4 years ago
- Code for "On Adaptive Attacks to Adversarial Example Defenses"☆85Updated 3 years ago
- Attacks Which Do Not Kill Training Make Adversarial Learning Stronger (ICML2020 Paper)☆124Updated last year
- [NeurIPS'20 Oral] DVERGE: Diversifying Vulnerabilities for Enhanced Robust Generation of Ensembles☆55Updated 2 years ago
- Paper sharing in adversary related works☆44Updated 3 weeks ago
- Code for "PatchCleanser: Certifiably Robust Defense against Adversarial Patches for Any Image Classifier"☆35Updated last year
- ☆60Updated 8 months ago
- The official implementation of CVPR 2021 paper "Simulating Unknown Target Models for Query-Efficient Black-box Attacks"☆56Updated 3 years ago
- ☆57Updated 2 years ago
- Code for Black-Box Adversarial Attack with Transferable Model-based Embedding☆56Updated 4 years ago
- Sparse and Imperceivable Adversarial Attacks (accepted to ICCV 2019).☆40Updated 4 years ago
- A united toolbox for running major robustness verification approaches for DNNs. [S&P 2023]☆87Updated last year
- Official Tensorflow implementation for "Improving Adversarial Transferability via Neuron Attribution-based Attacks" (CVPR 2022)☆33Updated last year
- ☆23Updated 2 years ago
- SaTML 2023, 1st place in CVPR’21 Security AI Challenger: Unrestricted Adversarial Attacks on ImageNet.☆23Updated last year
- Code for "Adversarial Camouflage: Hiding Physical World Attacks with Natural Styles" (CVPR 2020)☆87Updated last year
- Feature Scattering Adversarial Training (NeurIPS19)☆71Updated 5 months ago
- Adversarial Distributional Training (NeurIPS 2020)☆60Updated 3 years ago
- ☆76Updated 3 years ago
- Implementation of our ICLR 2021 paper: Policy-Driven Attack: Learning to Query for Hard-label Black-box Adversarial Examples.☆11Updated 3 years ago
- ReColorAdv and other attacks from the NeurIPS 2019 paper "Functional Adversarial Attacks"☆36Updated 2 years ago
- Code for FAB-attack☆32Updated 4 years ago