Adversarial Attack

An Adversarial Attack is a technique to find a perturbation that changes the prediction of a machine learning model. The perturbation can be very small and imperceptible to human eyes.

Source: Recurrent Attention Model with Log-Polar Mapping is Robust against Adversarial Attacks

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 251–300 of 1808 papers

Title	Date	Tasks	Status	Hype	Score
An Orthogonal Classifier for Improving the Adversarial Robustness of Neural Networks	May 19, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
Towards Resistant Audio Adversarial Examples	Oct 14, 2020	Adversarial Attackspeech-recognition	CodeCode Available	1	5
Towards Transferable Targeted 3D Adversarial Attack in the Physical World	Dec 15, 2023	Adversarial AttackNeRF	CodeCode Available	1	5
Towards Transferable Unrestricted Adversarial Examples with Minimum Changes	Jan 4, 2022	Adversarial Attack	CodeCode Available	1	5
An Extensive Study on Adversarial Attack against Pre-trained Models of Code	Nov 13, 2023	Adversarial Attack	CodeCode Available	1	5
High Frequency Component Helps Explain the Generalization of Convolutional Neural Networks	May 28, 2019	Adversarial AttackVocal Bursts Intensity Prediction	CodeCode Available	1	5
Exploring Effective Data for Surrogate Training Towards Black-Box Attack	Jan 1, 2022	Adversarial AttackDiversity	CodeCode Available	1	5
Fast and Low-Cost Genomic Foundation Models via Outlier Removal	May 1, 2025	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
A Word is Worth A Thousand Dollars: Adversarial Attack on Tweets Fools Stock Prediction	Jan 16, 2022	Adversarial AttackCombinatorial Optimization	CodeCode Available	1	5
Anti-Adversarially Manipulated Attributions for Weakly and Semi-Supervised Semantic Segmentation	Mar 16, 2021	Adversarial AttackObject	CodeCode Available	1	5
Boosting the Transferability of Video Adversarial Examples via Temporal Translation	Oct 18, 2021	Adversarial AttackTranslation	CodeCode Available	1	5
An integrated Auto Encoder-Block Switching defense approach to prevent adversarial attacks	Mar 11, 2022	Adversarial AttackBIG-bench Machine Learning	CodeCode Available	1	5
An Analysis of Recent Advances in Deepfake Image Detection in an Evolving Threat Landscape	Apr 24, 2024	Adversarial AttackFace Swapping	CodeCode Available	1	5
AdvDrop: Adversarial Attack to DNNs by Dropping Information	Aug 20, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
A Perturbation-Constrained Adversarial Attack for Evaluating the Robustness of Optical Flow	Mar 24, 2022	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
A Pilot Study of Query-Free Adversarial Attack against Stable Diffusion	Mar 29, 2023	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
A Review of Adversarial Attack and Defense for Classification Methods	Nov 18, 2021	Adversarial AttackClassification	CodeCode Available	1	5
FCA: Learning a 3D Full-coverage Vehicle Camouflage for Multi-view Physical Adversarial Attack	Sep 15, 2021	Adversarial Attackobject-detection	CodeCode Available	1	5
AdvDiff: Generating Unrestricted Adversarial Examples using Diffusion Models	Jul 24, 2023	Adversarial AttackAdversarial Defense	CodeCode Available	1	5
Fluent dreaming for language models	Jan 24, 2024	Adversarial AttackLanguage Modeling	CodeCode Available	1	5
A Survey On Universal Adversarial Attack	Mar 2, 2021	Adversarial AttackSurvey	CodeCode Available	1	5
Attacking Video Recognition Models with Bullet-Screen Comments	Oct 29, 2021	Adversarial AttackAdversarial Attack on Video Classification	CodeCode Available	1	5
An Efficient Adversarial Attack for Tree Ensembles	Oct 22, 2020	Adversarial Attackvalid	CodeCode Available	1	5
Frequency Domain Model Augmentation for Adversarial Attack	Jul 12, 2022	Adversarial AttackDiversity	CodeCode Available	1	5
Attack as the Best Defense: Nullifying Image-to-image Translation GANs via Limit-aware Adversarial Attack	Oct 6, 2021	Adversarial AttackFace Swapping	CodeCode Available	1	5
R&R: Metric-guided Adversarial Sentence Generation	Apr 17, 2021	Adversarial AttackGeneral Classification	CodeCode Available	1	5
Attacking Recommender Systems with Augmented User Profiles	May 17, 2020	Adversarial AttackGenerative Adversarial Network	CodeCode Available	1	5
Exploiting the Index Gradients for Optimization-Based Jailbreaking on Large Language Models	Dec 11, 2024	Adversarial Attack	CodeCode Available	1	5
A Unified Framework for Adversarial Attack and Defense in Constrained Feature Space	Dec 2, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
AVA: Inconspicuous Attribute Variation-based Adversarial Attack bypassing DeepFake Detection	Dec 14, 2023	Adversarial AttackAttribute	CodeCode Available	1	5
Augmented Lagrangian Adversarial Attacks	Nov 24, 2020	Adversarial AttackComputational Efficiency	CodeCode Available	1	5
Audio Jailbreak Attacks: Exposing Vulnerabilities in SpeechGPT in a White-Box Framework	May 24, 2025	Adversarial AttackSpeech Tokenization	CodeCode Available	1	5
Adversarial Attacks on ML Defense Models Competition	Oct 15, 2021	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
Guided Adversarial Attack for Evaluating and Enhancing Adversarial Defenses	Nov 30, 2020	Adversarial AttackAdversarial Defense	CodeCode Available	1	5
Amplitude-Phase Recombination: Rethinking Robustness of Convolutional Neural Networks in Frequency Domain	Aug 19, 2021	Adversarial AttackData Augmentation	CodeCode Available	1	5
AutoDAN: Interpretable Gradient-Based Adversarial Attacks on Large Language Models	Oct 23, 2023	Adversarial AttackBlocking	CodeCode Available	1	5
3D Adversarial Attacks Beyond Point Cloud	Apr 25, 2021	Adversarial Attack	CodeCode Available	1	5
A Word is Worth A Thousand Dollars: Adversarial Attack on Tweets Fools Stock Predictions	May 1, 2022	Adversarial AttackCombinatorial Optimization	CodeCode Available	1	5
Adversarial Training with Fast Gradient Projection Method against Synonym Substitution based Text Attacks	Aug 9, 2020	Adversarial AttackImage Classification	CodeCode Available	1	5
An Adaptive Model Ensemble Adversarial Attack for Boosting Adversarial Transferability	Aug 5, 2023	Adversarial Attack	CodeCode Available	1	5
Fooling Detection Alone is Not Enough: First Adversarial Attack against Multiple Object Tracking	May 27, 2019	Adversarial AttackAutonomous Driving	CodeCode Available	1	5
BASAR:Black-box Attack on Skeletal Action Recognition	Mar 9, 2021	Action RecognitionActivity Recognition	CodeCode Available	1	5
Human-in-the-Loop Generation of Adversarial Texts: A Case Study on Tibetan Script	Dec 17, 2024	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
Motion-Excited Sampler: Video Adversarial Attack with Sparked Prior	Mar 17, 2020	Adversarial AttackVideo Classification	CodeCode Available	1	5
Fooling the Image Dehazing Models by First Order Gradient	Mar 30, 2023	Adversarial AttackImage Dehazing	CodeCode Available	1	5
Improving Adversarial Transferability with Gradient Refining	May 11, 2021	Adversarial AttackDiversity	CodeCode Available	1	5
Beta-CROWN: Efficient Bound Propagation with Per-neuron Split Constraints for Complete and Incomplete Neural Network Robustness Verification	Mar 11, 2021	Adversarial Attack	CodeCode Available	1	5
Renofeation: A Simple Transfer Learning Method for Improved Adversarial Robustness	Feb 7, 2020	Adversarial AttackAdversarial Robustness	CodeCode Available	1	5
IoU Attack: Towards Temporally Coherent Black-Box Adversarial Attack for Visual Object Tracking	Mar 27, 2021	Adversarial Attackimage-classification	CodeCode Available	1	5
Pick-Object-Attack: Type-Specific Adversarial Attack for Object Detection	Jun 5, 2020	Adversarial AttackImage Captioning	CodeCode Available	1	5

Show:10 25 50

← PrevPage 6 of 37Next →

All datasets CIFAR-10 CIFAR-100

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	Xu et al.	Attack: PGD20	78.68	—	Unverified
2	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	78.13	—	Unverified
3	TRADES-ANCRA/ResNet18	Attack: AutoAttack	59.7	—	Unverified
4	AdvTraining [madry2018]	Attack: PGD20	48.44	—	Unverified
5	TRADES [zhang2019b]	Attack: PGD20	45.9	—	Unverified
6	XU-Net	Robust Accuracy	1	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	3-ensemble of multi-resolution self-ensembles	Attack: AutoAttack	51.28	—	Unverified
2	multi-resolution self-ensembles	Attack: AutoAttack	47.85	—	Unverified