Adversarial Attack

An Adversarial Attack is a technique to find a perturbation that changes the prediction of a machine learning model. The perturbation can be very small and imperceptible to human eyes.

Source: Recurrent Attention Model with Log-Polar Mapping is Robust against Adversarial Attacks

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 501–550 of 1808 papers

Title	Date	Tasks	Status	Score
Query-Efficient Black-box Adversarial Examples (superceded)	Dec 19, 2017	Adversarial Attack	CodeCode Available	5
Certified Defenses against Adversarial Examples	Jan 29, 2018	Adversarial AttackAdversarial Defense	CodeCode Available	5
A principled approach for generating adversarial images under non-smooth dissimilarity metrics	Aug 5, 2019	Adversarial Attack	CodeCode Available	5
A practical approach to evaluating the adversarial distance for machine learning classifiers	Sep 5, 2024	Adversarial AttackAdversarial Robustness	CodeCode Available	5
From Adversarial Arms Race to Model-centric Evaluation: Motivating a Unified Automatic Robustness Evaluation Framework	May 29, 2023	Adversarial Attack	CodeCode Available	5
Rob-GAN: Generator, Discriminator, and Adversarial Attacker	Jul 27, 2018	Adversarial AttackGenerative Adversarial Network	CodeCode Available	5
Real-Time Adversarial Attacks	May 31, 2019	Adversarial AttackBIG-bench Machine Learning	CodeCode Available	5
GenAttack: Practical Black-box Attacks with Gradient-Free Optimization	May 28, 2018	Adversarial AttackAdversarial Robustness	CodeCode Available	5
Geometry-Aware Generation of Adversarial Point Clouds	Dec 24, 2019	Adversarial AttackFairness	CodeCode Available	5
Cheating Automatic Short Answer Grading: On the Adversarial Usage of Adjectives and Adverbs	Jan 20, 2022	Adversarial Attackautomatic short answer grading	CodeCode Available	5
Robustness for Non-Parametric Classification: A Generic Attack and Defense	Jun 7, 2019	Adversarial AttackAdversarial Defense	CodeCode Available	5
3D Gaussian Splatting Driven Multi-View Robust Physical Adversarial Camouflage Generation	Jul 2, 2025	3DGSAdversarial Attack	CodeCode Available	5
Forging and Removing Latent-Noise Diffusion Watermarks Using a Single Image	Apr 27, 2025	Adversarial Attack	CodeCode Available	5
Foiling Explanations in Deep Neural Networks	Nov 27, 2022	Adversarial AttackExplainable artificial intelligence	CodeCode Available	5
FMM-Attack: A Flow-based Multi-modal Adversarial Attack on Video-based LLMs	Mar 20, 2024	Adversarial Attack	CodeCode Available	5
Any Target Can be Offense: Adversarial Example Generation via Generalized Latent Infection	Jul 17, 2024	Adversarial Attack	CodeCode Available	5
FenceBox: A Platform for Defeating Adversarial Examples with Data Augmentation Techniques	Dec 3, 2020	Adversarial AttackData Augmentation	CodeCode Available	5
FireBERT: Hardening BERT-based classifiers against adversarial attack	Aug 10, 2020	Adversarial Attack	CodeCode Available	5
Adversarial Attack and Defense on Graph Data: A Survey	Dec 26, 2018	Adversarial Attackimage-classification	CodeCode Available	5
Federated Zeroth-Order Optimization using Trajectory-Informed Surrogate Gradients	Aug 8, 2023	Adversarial AttackFederated Learning	CodeCode Available	5
Transferability Bound Theory: Exploring Relationship between Adversarial Transferability and Flatness	Nov 10, 2023	Adversarial AttackDiversity	CodeCode Available	5
Another Dead End for Morphological Tags? Perturbed Inputs and Parsing	May 24, 2023	Adversarial Attack	CodeCode Available	5
Adversarial Diffusion Attacks on Graph-based Traffic Prediction Models	Apr 19, 2021	Adversarial AttackManagement	CodeCode Available	5
Adversarial Defense via Data Dependent Activation Function and Total Variation Minimization	Sep 23, 2018	Adversarial AttackAdversarial Defense	CodeCode Available	5
Feature Space Perturbations Yield More Transferable Adversarial Examples	Jun 1, 2019	Adversarial Attack	CodeCode Available	5
Gotta Catch 'Em All: Using Honeypots to Catch Adversarial Attacks on Neural Networks	Apr 18, 2019	Adversarial AttackAdversarial Attack Detection	CodeCode Available	5
Visual explanation of black-box model: Similarity Difference and Uniqueness (SIDU) method	Jan 26, 2021	Adversarial AttackExplainable artificial intelligence	CodeCode Available	5
Fast Adversarial CNN-based Perturbation Attack of No-Reference Image Quality Metrics	Apr 11, 2023	Adversarial AttackNo-Reference Image Quality Assessment	CodeCode Available	5
Angelic Patches for Improving Third-Party Object Detector Performance	Jan 1, 2023	Adversarial AttackObject	CodeCode Available	5
Exploring the Vulnerability of Natural Language Processing Models via Universal Adversarial Texts	Dec 1, 2021	Adversarial Attacktext-classification	CodeCode Available	5
Extending Adversarial Attacks to Produce Adversarial Class Probability Distributions	Apr 14, 2020	Adversarial AttackEmotion Classification	CodeCode Available	5
A New Ensemble Adversarial Attack Powered by Long-term Gradient Memories	Nov 18, 2019	Adversarial Attack	CodeCode Available	5
Fashion-Guided Adversarial Attack on Person Segmentation	Apr 17, 2021	Adversarial AttackHuman Instance Segmentation	CodeCode Available	5
Fast Inference of Removal-Based Node Influence	Mar 13, 2024	Adversarial Attackcounterfactual	CodeCode Available	5
Explainable Graph Neural Networks Under Fire	Jun 10, 2024	Adversarial Attack	CodeCode Available	5
An Empirical Investigation of Randomized Defenses against Adversarial Attacks	Sep 12, 2019	Adversarial AttackGeneral Classification	CodeCode Available	5
Explaining Adversarial Robustness of Neural Networks from Clustering Effect Perspective	Jan 1, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	5
Expanding Scope: Adapting English Adversarial Attacks to Chinese	Jun 8, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	5
Explainable and Safe Reinforcement Learning for Autonomous Air Mobility	Nov 24, 2022	Adversarial AttackDeep Reinforcement Learning	CodeCode Available	5
Exact Adversarial Attack to Image Captioning via Structured Output Learning with Latent Variables	May 10, 2019	Adversarial AttackImage Captioning	CodeCode Available	5
EvoBA: An Evolution Strategy as a Strong Baseline forBlack-Box Adversarial Attacks	Jul 12, 2021	Adversarial Attack	CodeCode Available	5
Survey on Adversarial Attack and Defense for Medical Image Analysis: Methods and Challenges	Mar 24, 2023	Adversarial AttackMedical Diagnosis	CodeCode Available	5
Exacerbating Algorithmic Bias through Fairness Attacks	Dec 16, 2020	Adversarial AttackBIG-bench Machine Learning	CodeCode Available	5
Excess Capacity and Backdoor Poisoning	Sep 2, 2021	Adversarial AttackBackdoor Attack	CodeCode Available	5
Exploiting vulnerabilities of deep neural networks for privacy protection	Jul 19, 2020	Adversarial AttackQuantization	CodeCode Available	5
Physics-constrained Attack against Convolution-based Human Motion Prediction	Jun 21, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	5
A Classification-Guided Approach for Adversarial Attacks against Neural Machine Translation	Aug 29, 2023	Adversarial AttackMachine Translation	CodeCode Available	5
Evaluating and Understanding the Robustness of Adversarial Logit Pairing	Jul 26, 2018	Adversarial Attack	CodeCode Available	5
Adversarial Attack Vulnerability of Medical Image Analysis Systems: Unexplored Factors	Jun 11, 2020	Adversarial AttackMedical Image Analysis	CodeCode Available	5
EvadeDroid: A Practical Evasion Attack on Machine Learning for Black-box Android Malware Detection	Oct 7, 2021	Adversarial AttackAndroid Malware Detection	CodeCode Available	5

Show:10 25 50

← PrevPage 11 of 37Next →

All datasets CIFAR-10 CIFAR-100

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	Xu et al.	Attack: PGD20	78.68	—	Unverified
2	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	78.13	—	Unverified
3	TRADES-ANCRA/ResNet18	Attack: AutoAttack	59.7	—	Unverified
4	AdvTraining [madry2018]	Attack: PGD20	48.44	—	Unverified
5	TRADES [zhang2019b]	Attack: PGD20	45.9	—	Unverified
6	XU-Net	Robust Accuracy	1	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	51.28	—	Unverified
2	multi-resolution self-ensembles	Attack: AutoAttack	47.85	—	Unverified