microsoft / PixelDefend

Related projects ⓘ

Alternatives and complementary repositories for PixelDefend

• Ping-C / certifiedpatchdefense
  Repository for Certified Defenses for Adversarial Patch ICLR-2020
  ☆32Updated 4 years ago
• uclaml / RayS
  RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)
  ☆56Updated 4 years ago
• ermongroup / ODS
  Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"
  ☆53Updated 4 years ago
• Cold-Winter / Nattack
  ☆46Updated 3 years ago
• IBM / Autozoom-Attack
  Codes for reproducing query-efficient black-box attacks in “AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking B…
  ☆57Updated 4 years ago
• TransEmbedBA / TREMBA
  Code for Black-Box Adversarial Attack with Transferable Model-based Embedding
  ☆57Updated 4 years ago
• dongyp13 / Adversarial-Distributional-Training
  Adversarial Distributional Training (NeurIPS 2020)
  ☆61Updated 3 years ago
• cassidylaidlaw / perceptual-advex
  Code and data for the ICLR 2021 paper "Perceptual Adversarial Robustness: Defense Against Unseen Threat Models".
  ☆54Updated 2 years ago
• MadryLab / blackbox-bandits
  Code for "Prior Convictions: Black-Box Adversarial Attacks with Bandits and Priors"
  ☆63Updated 4 years ago
• nesl / adversarial_genattack
  ☆53Updated last year
• Jianbo-Lab / HSJA
  ☆79Updated 3 years ago
• qizhangli / linbp-attack
  Code for our NeurIPS 2020 paper Backpropagating Linearly Improves Transferability of Adversarial Examples.
  ☆42Updated last year
• thu-ml / Prior-Guided-RGF
  ☆40Updated last year
• Harry24k / catastrophic-overfitting
  Understanding Catastrophic Overfitting in Single-step Adversarial Training [AAAI 2021]
  ☆28Updated 2 years ago
• microsoft / denoised-smoothing
  Provably defending pretrained classifiers including the Azure, Google, AWS, and Clarifai APIs
  ☆96Updated 3 years ago
• shizhouxing / Fast-Certified-Robust-Training
  [NeurIPS 2021] Fast Certified Robust Training with Short Warmup
  ☆23Updated last year
• huanzhang12 / CROWN-IBP
  Certified defense to adversarial examples using CROWN and IBP. Also includes GPU implementation of CROWN verification algorithm (in PyTor…
  ☆93Updated 3 years ago
• DequanWang / dent
  Fighting Gradients with Gradients: Dynamic Defenses against Adversarial Attacks
  ☆37Updated 3 years ago
• alevine0 / patchSmoothing
  Code for the paper "(De)Randomized Smoothing for Certifiable Defense against Patch Attacks" by Alexander Levine and Soheil Feizi.
  ☆17Updated 2 years ago
• Haichao-Zhang / FeatureScatter
  Feature Scattering Adversarial Training (NeurIPS19)
  ☆71Updated 5 months ago
• csdongxian / skip-connections-matter
  Codes for ICLR 2020 paper "Skip Connections Matter: On the Transferability of Adversarial Examples Generated with ResNets"
  ☆70Updated 4 years ago
• IBM / ZOO-Attack
  Codes for reproducing the black-box adversarial attacks in “ZOO: Zeroth Order Optimization based Black-box Attacks to Deep Neural Network…
  ☆55Updated 5 years ago
• YisenWang / MART
  Code for ICLR2020 "Improving Adversarial Robustness Requires Revisiting Misclassified Examples"
  ☆144Updated 4 years ago
• zjfheart / Geometry-aware-Instance-reweighted-Adversarial-Training
  the paper "Geometry-aware Instance-reweighted Adversarial Training" ICLR 2021 oral
  ☆57Updated 3 years ago
• Guneet-Dhillon / Stochastic-Activation-Pruning
  ☆19Updated 6 years ago
• AI-secure / QEBA
  Code for CVPR2020 paper QEBA: Query-Efficient Boundary-Based Blackbox Attack
  ☆29Updated 3 years ago
• sunblaze-ucb / decision-boundaries
  code we used in Decision Boundary Analysis of Adversarial Examples https://openreview.net/forum?id=BkpiPMbA-
  ☆27Updated 6 years ago
• locuslab / robust_overfitting
  ☆153Updated 3 years ago
• inspire-group / PatchCleanser
  Code for "PatchCleanser: Certifiably Robust Defense against Adversarial Patches for Any Image Classifier"
  ☆36Updated last year
• bymavis / CAS_ICLR2021
  ☆55Updated 2 years ago