Adversarial Attack

An Adversarial Attack is a technique to find a perturbation that changes the prediction of a machine learning model. The perturbation can be very small and imperceptible to human eyes.

Source: Recurrent Attention Model with Log-Polar Mapping is Robust against Adversarial Attacks

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 151–200 of 1808 papers

Title	Date	Tasks	Status	Hype
Black-box Adversarial Example Generation with Normalizing Flows	Jul 6, 2020	Adversarial Attack	CodeCode Available	1
Boosting Adversarial Transferability via Gradient Relevance Attack	Jan 1, 2023	Adversarial Attack	CodeCode Available	1
Adversarial Attack and Defense in Deep Ranking	Jun 7, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Boosting the Transferability of Adversarial Attacks with Reverse Adversarial Perturbation	Oct 12, 2022	Adversarial Attack	CodeCode Available	1
Adversarial Attack and Defense of Structured Prediction Models	Oct 4, 2020	Adversarial AttackDependency Parsing	CodeCode Available	1
Bridge the Gap Between CV and NLP! A Gradient-based Textual Adversarial Attack Framework	Oct 28, 2021	Adversarial AttackLanguage Modelling	CodeCode Available	1
Adversarial Attack and Defense of YOLO Detectors in Autonomous Driving Scenarios	Feb 10, 2022	Adversarial AttackAdversarial Defense	CodeCode Available	1
CgAT: Center-Guided Adversarial Training for Deep Hashing-Based Retrieval	Apr 18, 2022	Adversarial AttackAdversarial Defense	CodeCode Available	1
Guardians of Image Quality: Benchmarking Defenses Against Adversarial Attacks on Image Quality Metrics	Aug 2, 2024	Adversarial AttackAdversarial Purification	CodeCode Available	1
Adversarial Self-Supervised Contrastive Learning	Jun 13, 2020	Adversarial AttackContrastive Learning	CodeCode Available	1
Composite Adversarial Attacks	Dec 10, 2020	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Constrained Adaptive Attack: Effective Adversarial Attack Against Deep Neural Networks for Tabular Data	Jun 2, 2024	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Adversarial Attack and Defense Strategies for Deep Speaker Recognition Systems	Aug 18, 2020	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Cooling-Shrinking Attack: Blinding the Tracker with Imperceptible Noises	Mar 21, 2020	Adversarial Attack	CodeCode Available	1
CyberLLMInstruct: A New Dataset for Analysing Safety of Fine-Tuned LLMs Using Cyber Security Data	Mar 12, 2025	Adversarial AttackMalware Analysis	CodeCode Available	1
Deep Feature Space Trojan Attack of Neural Networks by Controlled Detoxification	Dec 21, 2020	Adversarial AttackBackdoor Attack	CodeCode Available	1
AdvDrop: Adversarial Attack to DNNs by Dropping Information	Aug 20, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
3D Gaussian Splat Vulnerabilities	May 30, 2025	3DGSAdversarial Attack	CodeCode Available	1
Adversarial Examples in Deep Learning for Multivariate Time Series Regression	Sep 24, 2020	Adversarial AttackDeep Learning	CodeCode Available	1
Defensive Distillation based Adversarial Attacks Mitigation Method for Channel Estimation using Deep Learning Models in Next-Generation Wireless Networks	Aug 12, 2022	Adversarial Attack	CodeCode Available	1
Ad2Attack: Adaptive Adversarial Attack on Real-Time UAV Tracking	Mar 3, 2022	Adversarial AttackObject Tracking	CodeCode Available	1
Differentiable JPEG: The Devil is in the Details	Sep 13, 2023	Adversarial AttackQuantization	CodeCode Available	1
Adversarial GLUE: A Multi-Task Benchmark for Robustness Evaluation of Language Models	Nov 4, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
An Efficient Adversarial Attack for Tree Ensembles	Oct 22, 2020	Adversarial Attackvalid	CodeCode Available	1
Anti-Adversarially Manipulated Attributions for Weakly and Semi-Supervised Semantic Segmentation	Mar 16, 2021	Adversarial AttackObject	CodeCode Available	1
Disrupting Diffusion: Token-Level Attention Erasure Attack against Diffusion-based Customization	May 31, 2024	Adversarial AttackImage Generation	CodeCode Available	1
DropAttack: A Masked Weight Adversarial Training Method to Improve Generalization of Neural Networks	Aug 29, 2021	Adversarial AttackAdversarial Defense	CodeCode Available	1
Adversarial Immunization for Certifiable Robustness on Graphs	Jul 19, 2020	Adversarial AttackBilevel Optimization	CodeCode Available	1
High Frequency Component Helps Explain the Generalization of Convolutional Neural Networks	May 28, 2019	Adversarial AttackVocal Bursts Intensity Prediction	CodeCode Available	1
Efficient Training of Robust Decision Trees Against Adversarial Examples	Dec 18, 2020	Adversarial Attack	CodeCode Available	1
epsilon-Mesh Attack: A Surface-based Adversarial Point Cloud Attack for Facial Expression Recognition	Mar 11, 2024	Adversarial AttackFacial Expression Recognition	CodeCode Available	1
Adversarial Laser Beam: Effective Physical-World Attack to DNNs in a Blink	Mar 11, 2021	Adversarial Attack	CodeCode Available	1
Adversarial Attack on Attackers: Post-Process to Mitigate Black-Box Score-Based Query Attacks	May 24, 2022	Adversarial Attack	CodeCode Available	1
Adversarial Learning for Robust Deep Clustering	Dec 1, 2020	Adversarial AttackClustering	CodeCode Available	1
Adversarial Attack on Community Detection by Hiding Individuals	Jan 22, 2020	Adversarial AttackCommunity Detection	CodeCode Available	1
Adversarial Vulnerability of Randomized Ensembles	Jun 14, 2022	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Amplitude-Phase Recombination: Rethinking Robustness of Convolutional Neural Networks in Frequency Domain	Aug 19, 2021	Adversarial AttackData Augmentation	CodeCode Available	1
FCA: Learning a 3D Full-coverage Vehicle Camouflage for Multi-view Physical Adversarial Attack	Sep 15, 2021	Adversarial Attackobject-detection	CodeCode Available	1
CausalAdv: Adversarial Robustness through the Lens of Causality	Jun 11, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Fluent dreaming for language models	Jan 24, 2024	Adversarial AttackLanguage Modeling	CodeCode Available	1
AdvDiff: Generating Unrestricted Adversarial Examples using Diffusion Models	Jul 24, 2023	Adversarial AttackAdversarial Defense	CodeCode Available	1
Adv-Makeup: A New Imperceptible and Transferable Attack on Face Recognition	May 7, 2021	Adversarial AttackFace Generation	CodeCode Available	1
Fusing Event-based and RGB camera for Robust Object Detection in Adverse Conditions	Mar 30, 2022	3D Object DetectionAdversarial Attack	CodeCode Available	1
GE-AdvGAN: Improving the transferability of adversarial samples by gradient editing-based adversarial generative model	Jan 11, 2024	Adversarial Attack	CodeCode Available	1
Adversarial Attack on Graph Neural Networks as An Influence Maximization Problem	Jun 21, 2021	Adversarial Attack	CodeCode Available	1
Adversarial Magnification to Deceive Deepfake Detection through Super Resolution	Jul 2, 2024	Adversarial AttackDeepFake Detection	CodeCode Available	1
Geometric Adversarial Attacks and Defenses on 3D Point Clouds	Dec 10, 2020	Adversarial AttackAdversarial Defense	CodeCode Available	1
Adversarial Mask: Real-World Universal Adversarial Attack on Face Recognition Model	Nov 21, 2021	Adversarial AttackFace Recognition	CodeCode Available	1
AdvFlow: Inconspicuous Black-box Adversarial Attacks using Normalizing Flows	Jul 15, 2020	Adversarial Attack	CodeCode Available	1
AGKD-BML: Defense Against Adversarial Attack by Attention Guided Knowledge Distillation and Bi-directional Metric Learning	Aug 13, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1

Show:10 25 50

← PrevPage 4 of 37Next →

All datasets CIFAR-10 CIFAR-100

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	Xu et al.	Attack: PGD20	78.68	—	Unverified
2	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	78.13	—	Unverified
3	TRADES-ANCRA/ResNet18	Attack: AutoAttack	59.7	—	Unverified
4	AdvTraining [madry2018]	Attack: PGD20	48.44	—	Unverified
5	TRADES [zhang2019b]	Attack: PGD20	45.9	—	Unverified
6	XU-Net	Robust Accuracy	1	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	51.28	—	Unverified
2	multi-resolution self-ensembles	Attack: AutoAttack	47.85	—	Unverified