Adversarial Attack

An Adversarial Attack is a technique to find a perturbation that changes the prediction of a machine learning model. The perturbation can be very small and imperceptible to human eyes.

Source: Recurrent Attention Model with Log-Polar Mapping is Robust against Adversarial Attacks

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 251–300 of 1808 papers

Title	Date	Tasks	Status	Hype
BadHash: Invisible Backdoor Attacks against Deep Hashing with Clean Label	Jul 1, 2022	Adversarial AttackBackdoor Attack	CodeCode Available	1
Towards Resistant Audio Adversarial Examples	Oct 14, 2020	Adversarial Attackspeech-recognition	CodeCode Available	1
Towards Transferable Targeted 3D Adversarial Attack in the Physical World	Dec 15, 2023	Adversarial AttackNeRF	CodeCode Available	1
Towards Transferable Unrestricted Adversarial Examples with Minimum Changes	Jan 4, 2022	Adversarial Attack	CodeCode Available	1
AVA: Inconspicuous Attribute Variation-based Adversarial Attack bypassing DeepFake Detection	Dec 14, 2023	Adversarial AttackAttribute	CodeCode Available	1
High Frequency Component Helps Explain the Generalization of Convolutional Neural Networks	May 28, 2019	Adversarial AttackVocal Bursts Intensity Prediction	CodeCode Available	1
A Word is Worth A Thousand Dollars: Adversarial Attack on Tweets Fools Stock Prediction	Jan 16, 2022	Adversarial AttackCombinatorial Optimization	CodeCode Available	1
Augmented Lagrangian Adversarial Attacks	Nov 24, 2020	Adversarial AttackComputational Efficiency	CodeCode Available	1
Audio Jailbreak Attacks: Exposing Vulnerabilities in SpeechGPT in a White-Box Framework	May 24, 2025	Adversarial AttackSpeech Tokenization	CodeCode Available	1
A Unified Framework for Adversarial Attack and Defense in Constrained Feature Space	Dec 2, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
A Word is Worth A Thousand Dollars: Adversarial Attack on Tweets Fools Stock Predictions	May 1, 2022	Adversarial AttackCombinatorial Optimization	CodeCode Available	1
An Extensive Study on Adversarial Attack against Pre-trained Models of Code	Nov 13, 2023	Adversarial Attack	CodeCode Available	1
AGKD-BML: Defense Against Adversarial Attack by Attention Guided Knowledge Distillation and Bi-directional Metric Learning	Aug 13, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
AdvDrop: Adversarial Attack to DNNs by Dropping Information	Aug 20, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Benchmarking Adversarial Robustness on Image Classification	Jun 1, 2020	Adversarial AttackAdversarial Robustness	CodeCode Available	1
BERT-ATTACK: Adversarial Attack Against BERT Using BERT	Apr 21, 2020	Adversarial Attack	CodeCode Available	1
Boosting Adversarial Transferability via Gradient Relevance Attack	Jan 1, 2023	Adversarial Attack	CodeCode Available	1
Boosting the Adversarial Transferability of Surrogate Models with Dark Knowledge	Jun 16, 2022	Adversarial AttackFace Verification	CodeCode Available	1
Boosting the Transferability of Video Adversarial Examples via Temporal Translation	Oct 18, 2021	Adversarial AttackTranslation	CodeCode Available	1
To Think or Not to Think: Exploring the Unthinking Vulnerability in Large Reasoning Models	Feb 16, 2025	Adversarial AttackBackdoor Attack	CodeCode Available	1
An Analysis of Recent Advances in Deepfake Image Detection in an Evolving Threat Landscape	Apr 24, 2024	Adversarial AttackFace Swapping	CodeCode Available	1
Character-level White-Box Adversarial Attacks against Transformers via Attachable Subwords Substitution	Oct 31, 2022	Adversarial AttackSentence	CodeCode Available	1
AdvDiff: Generating Unrestricted Adversarial Examples using Diffusion Models	Jul 24, 2023	Adversarial AttackAdversarial Defense	CodeCode Available	1
CMUA-Watermark: A Cross-Model Universal Adversarial Watermark for Combating Deepfakes	May 23, 2021	Adversarial AttackFace Swapping	CodeCode Available	1
An Efficient Adversarial Attack for Tree Ensembles	Oct 22, 2020	Adversarial Attackvalid	CodeCode Available	1
Constrained Adaptive Attack: Effective Adversarial Attack Against Deep Neural Networks for Tabular Data	Jun 2, 2024	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Controlling Whisper: Universal Acoustic Adversarial Attacks to Control Speech Foundation Models	Jul 5, 2024	Adversarial AttackAutomatic Speech Recognition	CodeCode Available	1
Cooling-Shrinking Attack: Blinding the Tracker with Imperceptible Noises	Mar 21, 2020	Adversarial Attack	CodeCode Available	1
A Perturbation-Constrained Adversarial Attack for Evaluating the Robustness of Optical Flow	Mar 24, 2022	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Defending and Harnessing the Bit-Flip Based Adversarial Weight Attack	Jun 1, 2020	Adversarial AttackBinarization	CodeCode Available	1
Defending Your Voice: Adversarial Attack on Voice Conversion	May 18, 2020	Adversarial AttackVoice Conversion	CodeCode Available	1
Defensive Distillation based Adversarial Attacks Mitigation Method for Channel Estimation using Deep Learning Models in Next-Generation Wireless Networks	Aug 12, 2022	Adversarial Attack	CodeCode Available	1
Adversarial Attacks on ML Defense Models Competition	Oct 15, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Differentiable JPEG: The Devil is in the Details	Sep 13, 2023	Adversarial AttackQuantization	CodeCode Available	1
Amplitude-Phase Recombination: Rethinking Robustness of Convolutional Neural Networks in Frequency Domain	Aug 19, 2021	Adversarial AttackData Augmentation	CodeCode Available	1
AutoDAN: Interpretable Gradient-Based Adversarial Attacks on Large Language Models	Oct 23, 2023	Adversarial AttackBlocking	CodeCode Available	1
BASAR:Black-box Attack on Skeletal Action Recognition	Mar 9, 2021	Action RecognitionActivity Recognition	CodeCode Available	1
Anti-Adversarially Manipulated Attributions for Weakly and Semi-Supervised Semantic Segmentation	Mar 16, 2021	Adversarial AttackObject	CodeCode Available	1
DropAttack: A Masked Weight Adversarial Training Method to Improve Generalization of Neural Networks	Aug 29, 2021	Adversarial AttackAdversarial Defense	CodeCode Available	1
An Adaptive Model Ensemble Adversarial Attack for Boosting Adversarial Transferability	Aug 5, 2023	Adversarial Attack	CodeCode Available	1
An integrated Auto Encoder-Block Switching defense approach to prevent adversarial attacks	Mar 11, 2022	Adversarial AttackBIG-bench Machine Learning	CodeCode Available	1
Certifying LLM Safety against Adversarial Prompting	Sep 6, 2023	Adversarial AttackLanguage Modelling	CodeCode Available	1
Ensemble everything everywhere: Multi-scale aggregation for adversarial robustness	Aug 8, 2024	Adversarial AttackAdversarial Robustness	CodeCode Available	1
epsilon-Mesh Attack: A Surface-based Adversarial Point Cloud Attack for Facial Expression Recognition	Mar 11, 2024	Adversarial AttackFacial Expression Recognition	CodeCode Available	1
Fooling the Image Dehazing Models by First Order Gradient	Mar 30, 2023	Adversarial AttackImage Dehazing	CodeCode Available	1
Fast and Low-Cost Genomic Foundation Models via Outlier Removal	May 1, 2025	Adversarial AttackAdversarial Robustness	CodeCode Available	1
Disrupting Diffusion: Token-Level Attention Erasure Attack against Diffusion-based Customization	May 31, 2024	Adversarial AttackImage Generation	CodeCode Available	1
FCA: Learning a 3D Full-coverage Vehicle Camouflage for Multi-view Physical Adversarial Attack	Sep 15, 2021	Adversarial Attackobject-detection	CodeCode Available	1
Hide in Thicket: Generating Imperceptible and Rational Adversarial Perturbations on 3D Point Clouds	Mar 8, 2024	3D Point Cloud ClassificationAdversarial Attack	CodeCode Available	1
On the Adversarial Robustness of Camera-based 3D Object Detection	Jan 25, 2023	3D Object DetectionAdversarial Attack	CodeCode Available	1

Show:10 25 50

← PrevPage 6 of 37Next →

All datasets CIFAR-10 CIFAR-100

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	Xu et al.	Attack: PGD20	78.68	—	Unverified
2	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	78.13	—	Unverified
3	TRADES-ANCRA/ResNet18	Attack: AutoAttack	59.7	—	Unverified
4	AdvTraining [madry2018]	Attack: PGD20	48.44	—	Unverified
5	TRADES [zhang2019b]	Attack: PGD20	45.9	—	Unverified
6	XU-Net	Robust Accuracy	1	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	51.28	—	Unverified
2	multi-resolution self-ensembles	Attack: AutoAttack	47.85	—	Unverified