Adversarial Attack

An Adversarial Attack is a technique to find a perturbation that changes the prediction of a machine learning model. The perturbation can be very small and imperceptible to human eyes.

Source: Recurrent Attention Model with Log-Polar Mapping is Robust against Adversarial Attacks

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 651–700 of 1808 papers

Title	Date	Tasks	Status	Score
Curls & Whey: Boosting Black-Box Adversarial Attacks	Apr 2, 2019	Adversarial AttackDiversity	CodeCode Available	5
Model-Agnostic Defense for Lane Detection against Adversarial Attack	Mar 1, 2021	Adversarial AttackAutonomous Driving	CodeCode Available	5
Adversarial and Clean Data Are Not Twins	Apr 17, 2017	Adversarial Attack	CodeCode Available	5
CT-GAT: Cross-Task Generative Adversarial Attack based on Transferability	Oct 22, 2023	Adversarial Attack	CodeCode Available	5
Rob-GAN: Generator, Discriminator, and Adversarial Attacker	Jul 27, 2018	Adversarial AttackGenerative Adversarial Network	CodeCode Available	5
Cross-lingual Cross-temporal Summarization: Dataset, Models, Evaluation	Jun 22, 2023	Adversarial AttackNegation	CodeCode Available	5
Adversarial Attacks on Gaussian Process Bandits	Oct 16, 2021	Adversarial AttackGaussian Processes	CodeCode Available	5
Forging and Removing Latent-Noise Diffusion Watermarks Using a Single Image	Apr 27, 2025	Adversarial Attack	CodeCode Available	5
From Adversarial Arms Race to Model-centric Evaluation: Motivating a Unified Automatic Robustness Evaluation Framework	May 29, 2023	Adversarial Attack	CodeCode Available	5
GenAttack: Practical Black-box Attacks with Gradient-Free Optimization	May 28, 2018	Adversarial AttackAdversarial Robustness	CodeCode Available	5
2D-Malafide: Adversarial Attacks Against Face Deepfake Detection Systems	Aug 26, 2024	Adversarial AttackDeepFake Detection	CodeCode Available	5
Neural Fingerprints for Adversarial Attack Detection	Nov 7, 2024	Adversarial AttackAdversarial Attack Detection	CodeCode Available	5
Counterfactual Explanations for Face Forgery Detection via Adversarial Removal of Artifacts	Apr 12, 2024	Adversarial Attackcounterfactual	CodeCode Available	5
Transferability Bound Theory: Exploring Relationship between Adversarial Transferability and Flatness	Nov 10, 2023	Adversarial AttackDiversity	CodeCode Available	5
3D Gaussian Splatting Driven Multi-View Robust Physical Adversarial Camouflage Generation	Jul 2, 2025	3DGSAdversarial Attack	CodeCode Available	5
Noise-based cyberattacks generating fake P300 waves in brain–computer interfaces	Jul 10, 2021	Adversarial AttackCyber Attack Investigation	CodeCode Available	5
Robustness for Non-Parametric Classification: A Generic Attack and Defense	Jun 7, 2019	Adversarial AttackAdversarial Defense	CodeCode Available	5
DVS-Attacks: Adversarial Attacks on Dynamic Vision Sensors for Spiking Neural Networks	Jul 1, 2021	Adversarial Attack	CodeCode Available	5
FMM-Attack: A Flow-based Multi-modal Adversarial Attack on Video-based LLMs	Mar 20, 2024	Adversarial Attack	CodeCode Available	5
Dynamically Disentangling Social Bias from Task-Oriented Representations with Adversarial Attack	Jun 1, 2021	Adversarial AttackRepresentation Learning	CodeCode Available	5
FenceBox: A Platform for Defeating Adversarial Examples with Data Augmentation Techniques	Dec 3, 2020	Adversarial AttackData Augmentation	CodeCode Available	5
Adversarial Attacks on Deep Neural Networks for Time Series Classification	Mar 17, 2019	Activity RecognitionAdversarial Attack	CodeCode Available	5
FireBERT: Hardening BERT-based classifiers against adversarial attack	Aug 10, 2020	Adversarial Attack	CodeCode Available	5
Foiling Explanations in Deep Neural Networks	Nov 27, 2022	Adversarial AttackExplainable artificial intelligence	CodeCode Available	5
Controversial stimuli: pitting neural networks against each other as models of human recognition	Nov 21, 2019	Adversarial Attack	CodeCode Available	5
AICAttack: Adversarial Image Captioning Attack with Attention-Based Optimization	Feb 19, 2024	Adversarial AttackImage Captioning	CodeCode Available	5
Dynamic Transformers Provide a False Sense of Efficiency	May 20, 2023	Adversarial Attack	CodeCode Available	5
EAD: Elastic-Net Attacks to Deep Neural Networks via Adversarial Examples	Sep 13, 2017	Adversarial AttackAdversarial Robustness	CodeCode Available	5
FDA: Feature Disruptive Attack	Sep 10, 2019	Adversarial Attackimage-classification	CodeCode Available	5
Accelerating Monte Carlo Bayesian Inference via Approximating Predictive Uncertainty over Simplex	May 29, 2019	Adversarial AttackBayesian Inference	CodeCode Available	5
A Hierarchical Feature Constraint to Camouflage Medical Adversarial Attacks	Dec 17, 2020	Adversarial AttackDecision Making	CodeCode Available	5
Fast Adversarial CNN-based Perturbation Attack of No-Reference Image Quality Metrics	Apr 11, 2023	Adversarial AttackNo-Reference Image Quality Assessment	CodeCode Available	5
Fast Inference of Removal-Based Node Influence	Mar 13, 2024	Adversarial Attackcounterfactual	CodeCode Available	5
Efficient and Transferable Adversarial Examples from Bayesian Neural Networks	Nov 10, 2020	Adversarial AttackBayesian Inference	CodeCode Available	5
Exploring the Vulnerability of Natural Language Processing Models via Universal Adversarial Texts	Dec 1, 2021	Adversarial Attacktext-classification	CodeCode Available	5
Efficient Black-box Adversarial Attacks via Bayesian Optimization Guided by a Function Prior	May 29, 2024	Adversarial AttackBayesian Optimization	CodeCode Available	5
Extending Adversarial Attacks to Produce Adversarial Class Probability Distributions	Apr 14, 2020	Adversarial AttackEmotion Classification	CodeCode Available	5
Explaining Adversarial Robustness of Neural Networks from Clustering Effect Perspective	Jan 1, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	5
Exploiting vulnerabilities of deep neural networks for privacy protection	Jul 19, 2020	Adversarial AttackQuantization	CodeCode Available	5
Efficient Robust Conformal Prediction via Lipschitz-Bounded Networks	Jun 5, 2025	Adversarial AttackComputational Efficiency	CodeCode Available	5
Fashion-Guided Adversarial Attack on Person Segmentation	Apr 17, 2021	Adversarial AttackHuman Instance Segmentation	CodeCode Available	5
Explainable and Safe Reinforcement Learning for Autonomous Air Mobility	Nov 24, 2022	Adversarial AttackDeep Reinforcement Learning	CodeCode Available	5
Army of Thieves: Enhancing Black-Box Model Extraction via Ensemble based sample selection	Nov 8, 2023	Active LearningAdversarial Attack	CodeCode Available	5
Excess Capacity and Backdoor Poisoning	Sep 2, 2021	Adversarial AttackBackdoor Attack	CodeCode Available	5
Expanding Scope: Adapting English Adversarial Attacks to Chinese	Jun 8, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	5
Parametric Noise Injection: Trainable Randomness to Improve Deep Neural Network Robustness against Adversarial Attack	Nov 22, 2018	Adversarial AttackAdversarial Defense	CodeCode Available	5
Explainable Graph Neural Networks Under Fire	Jun 10, 2024	Adversarial Attack	CodeCode Available	5
Feature Space Perturbations Yield More Transferable Adversarial Examples	Jun 1, 2019	Adversarial Attack	CodeCode Available	5
Artwork Protection Against Neural Style Transfer Using Locally Adaptive Adversarial Color Attack	Jan 18, 2024	Adversarial AttackStyle Transfer	CodeCode Available	5
Evaluating the Robustness of Geometry-Aware Instance-Reweighted Adversarial Training	Mar 2, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	5

Show:10 25 50

← PrevPage 14 of 37Next →

All datasets CIFAR-10 CIFAR-100

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	Xu et al.	Attack: PGD20	78.68	—	Unverified
2	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	78.13	—	Unverified
3	TRADES-ANCRA/ResNet18	Attack: AutoAttack	59.7	—	Unverified
4	AdvTraining [madry2018]	Attack: PGD20	48.44	—	Unverified
5	TRADES [zhang2019b]	Attack: PGD20	45.9	—	Unverified
6	XU-Net	Robust Accuracy	1	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	51.28	—	Unverified
2	multi-resolution self-ensembles	Attack: AutoAttack	47.85	—	Unverified