Alternatives and similar repositories for PixelDefend:

Users that are interested in PixelDefend are comparing it to the libraries listed below

• Haichao-Zhang / FeatureScatter
  Feature Scattering Adversarial Training (NeurIPS19)
  ☆72Updated 9 months ago
• Ping-C / certifiedpatchdefense
  Repository for Certified Defenses for Adversarial Patch ICLR-2020
  ☆32Updated 4 years ago
• cassidylaidlaw / perceptual-advex
  Code and data for the ICLR 2021 paper "Perceptual Adversarial Robustness: Defense Against Unseen Threat Models".
  ☆55Updated 3 years ago
• Guneet-Dhillon / Stochastic-Activation-Pruning
  ☆19Updated 6 years ago
• dongyp13 / Adversarial-Distributional-Training
  Adversarial Distributional Training (NeurIPS 2020)
  ☆62Updated 3 years ago
• Cold-Winter / Nattack
  ☆47Updated 4 years ago
• ermongroup / ODS
  Code for "Diversity can be Transferred: Output Diversification for White- and Black-box Attacks"
  ☆53Updated 4 years ago
• ermongroup / generative_adversary
  Code for the unrestricted adversarial examples paper (NeurIPS 2018)
  ☆64Updated 5 years ago
• IBM / Autozoom-Attack
  Codes for reproducing query-efficient black-box attacks in “AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking B…
  ☆57Updated 5 years ago
• IBM / ZOO-Attack
  Codes for reproducing the black-box adversarial attacks in “ZOO: Zeroth Order Optimization based Black-box Attacks to Deep Neural Network…
  ☆56Updated 5 years ago
• alevine0 / patchSmoothing
  Code for the paper "(De)Randomized Smoothing for Certifiable Defense against Patch Attacks" by Alexander Levine and Soheil Feizi.
  ☆17Updated 2 years ago
• MadryLab / blackbox-bandits
  Code for "Prior Convictions: Black-Box Adversarial Attacks with Bandits and Priors"
  ☆63Updated 5 years ago
• cassidylaidlaw / ReColorAdv
  ReColorAdv and other attacks from the NeurIPS 2019 paper "Functional Adversarial Attacks"
  ☆37Updated 2 years ago
• thu-ml / Prior-Guided-RGF
  ☆40Updated last year
• uclaml / RayS
  RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)
  ☆56Updated 4 years ago
• zhuchen03 / ConvexPolytopePosioning
  ConvexPolytopePosioning
  ☆34Updated 5 years ago
• fra31 / fab-attack
  Code for FAB-attack
  ☆32Updated 4 years ago
• nesl / adversarial_genattack
  ☆54Updated last year
• anonymous-sushi-armadillo / fast_is_better_than_free_CIFAR10
  ☆12Updated 7 months ago
• TransEmbedBA / TREMBA
  Code for Black-Box Adversarial Attack with Transferable Model-based Embedding
  ☆57Updated 4 years ago
• ftramer / MultiRobustness
  Code for the paper "Adversarial Training and Robustness for Multiple Perturbations", NeurIPS 2019
  ☆47Updated 2 years ago
• Jianbo-Lab / HSJA
  ☆83Updated 4 years ago
• RuntianZ / macer
  MACER: MAximizing CErtified Radius (ICLR 2020)
  ☆28Updated 5 years ago
• huanzhang12 / CLEVER
  CLEVER (Cross-Lipschitz Extreme Value for nEtwork Robustness) is a robustness metric for deep neural networks
  ☆61Updated 3 years ago
• AI-secure / QEBA
  Code for CVPR2020 paper QEBA: Query-Efficient Boundary-Based Blackbox Attack
  ☆30Updated 4 years ago
• whxbergkamp / RobustDL_GAN
  ☆21Updated 5 years ago
• cmhcbb / attackbox
  ☆58Updated 3 years ago
• sunblaze-ucb / decision-boundaries
  code we used in Decision Boundary Analysis of Adversarial Examples https://openreview.net/forum?id=BkpiPMbA-
  ☆27Updated 6 years ago
• ash-aldujaili / blackbox-adv-examples-signhunter
  A repository for the query-efficient black-box attack, SignHunter
  ☆23Updated 5 years ago
• eth-sri / adaptive-auto-attack
  ☆23Updated 3 years ago