├── .gitignore
├── LICENSE
├── README.md
├── attack.py
├── data.py
├── images
    ├── ablation_study.png
    ├── adv_examples.png
    ├── algorithm_rs.png
    ├── ezgif.com-gif-maker-50-conf-small.gif
    ├── ezgif.com-gif-maker-img-53-l2-2.gif
    ├── main_results_imagenet.png
    ├── main_results_imagenet_l2_commonly_successful.png
    ├── repository_picture.png
    ├── sensitivity_wrt_p.png
    ├── success_rate_curves_full.png
    ├── table_clp_lsq.png
    ├── table_madry_mnist_l2.png
    ├── table_madry_trades_mnist_linf.png
    └── table_post_avg.png
├── logit_pairing
    └── models.py
├── madry_cifar10
    ├── LICENSE
    ├── README.md
    ├── cifar10_input.py
    ├── config.json
    ├── eval.py
    ├── fetch_model.py
    ├── model.py
    ├── model_robustml.py
    ├── pgd_attack.py
    ├── run_attack.py
    └── train.py
├── madry_mnist
    ├── LICENSE
    ├── config.json
    ├── eval.py
    ├── fetch_model.py
    ├── model.py
    ├── run_attack.py
    └── train.py
├── metrics
    ├── 2019-11-10 15:57:14 model=pt_inception dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy
    ├── 2019-11-10 15:57:14 model=pt_resnet dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy
    ├── 2019-11-10 15:57:14 model=pt_vgg dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy
    ├── square_l2_inceptionv3_queries.npy
    ├── square_l2_resnet50_queries.npy
    └── square_l2_vgg16_queries.npy
├── models.py
├── post_avg
    ├── LICENSE.txt
    ├── PADefense.py
    ├── README.md
    ├── attacks.py
    ├── postAveragedModels.py
    ├── resnetSmall.py
    ├── robustml_test_cifar10.py
    ├── robustml_test_imagenet.py
    └── visualHelper.py
└── utils.py


/.gitignore:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/.gitignore


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/README.md


--------------------------------------------------------------------------------
/attack.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/attack.py


--------------------------------------------------------------------------------
/data.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/data.py


--------------------------------------------------------------------------------
/images/ablation_study.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/ablation_study.png


--------------------------------------------------------------------------------
/images/adv_examples.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/adv_examples.png


--------------------------------------------------------------------------------
/images/algorithm_rs.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/algorithm_rs.png


--------------------------------------------------------------------------------
/images/ezgif.com-gif-maker-50-conf-small.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/ezgif.com-gif-maker-50-conf-small.gif


--------------------------------------------------------------------------------
/images/ezgif.com-gif-maker-img-53-l2-2.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/ezgif.com-gif-maker-img-53-l2-2.gif


--------------------------------------------------------------------------------
/images/main_results_imagenet.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/main_results_imagenet.png


--------------------------------------------------------------------------------
/images/main_results_imagenet_l2_commonly_successful.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/main_results_imagenet_l2_commonly_successful.png


--------------------------------------------------------------------------------
/images/repository_picture.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/repository_picture.png


--------------------------------------------------------------------------------
/images/sensitivity_wrt_p.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/sensitivity_wrt_p.png


--------------------------------------------------------------------------------
/images/success_rate_curves_full.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/success_rate_curves_full.png


--------------------------------------------------------------------------------
/images/table_clp_lsq.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/table_clp_lsq.png


--------------------------------------------------------------------------------
/images/table_madry_mnist_l2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/table_madry_mnist_l2.png


--------------------------------------------------------------------------------
/images/table_madry_trades_mnist_linf.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/table_madry_trades_mnist_linf.png


--------------------------------------------------------------------------------
/images/table_post_avg.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/images/table_post_avg.png


--------------------------------------------------------------------------------
/logit_pairing/models.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/logit_pairing/models.py


--------------------------------------------------------------------------------
/madry_cifar10/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/LICENSE


--------------------------------------------------------------------------------
/madry_cifar10/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/README.md


--------------------------------------------------------------------------------
/madry_cifar10/cifar10_input.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/cifar10_input.py


--------------------------------------------------------------------------------
/madry_cifar10/config.json:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/config.json


--------------------------------------------------------------------------------
/madry_cifar10/eval.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/eval.py


--------------------------------------------------------------------------------
/madry_cifar10/fetch_model.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/fetch_model.py


--------------------------------------------------------------------------------
/madry_cifar10/model.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/model.py


--------------------------------------------------------------------------------
/madry_cifar10/model_robustml.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/model_robustml.py


--------------------------------------------------------------------------------
/madry_cifar10/pgd_attack.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/pgd_attack.py


--------------------------------------------------------------------------------
/madry_cifar10/run_attack.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/run_attack.py


--------------------------------------------------------------------------------
/madry_cifar10/train.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_cifar10/train.py


--------------------------------------------------------------------------------
/madry_mnist/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/LICENSE


--------------------------------------------------------------------------------
/madry_mnist/config.json:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/config.json


--------------------------------------------------------------------------------
/madry_mnist/eval.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/eval.py


--------------------------------------------------------------------------------
/madry_mnist/fetch_model.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/fetch_model.py


--------------------------------------------------------------------------------
/madry_mnist/model.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/model.py


--------------------------------------------------------------------------------
/madry_mnist/run_attack.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/run_attack.py


--------------------------------------------------------------------------------
/madry_mnist/train.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/madry_mnist/train.py


--------------------------------------------------------------------------------
/metrics/2019-11-10 15:57:14 model=pt_inception dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/2019-11-10 15:57:14 model=pt_inception dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy


--------------------------------------------------------------------------------
/metrics/2019-11-10 15:57:14 model=pt_resnet dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/2019-11-10 15:57:14 model=pt_resnet dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy


--------------------------------------------------------------------------------
/metrics/2019-11-10 15:57:14 model=pt_vgg dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/2019-11-10 15:57:14 model=pt_vgg dataset=imagenet n_ex=1000 eps=12.75 p=0.05 n_iter=10000.metrics.npy


--------------------------------------------------------------------------------
/metrics/square_l2_inceptionv3_queries.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/square_l2_inceptionv3_queries.npy


--------------------------------------------------------------------------------
/metrics/square_l2_resnet50_queries.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/square_l2_resnet50_queries.npy


--------------------------------------------------------------------------------
/metrics/square_l2_vgg16_queries.npy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/metrics/square_l2_vgg16_queries.npy


--------------------------------------------------------------------------------
/models.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/models.py


--------------------------------------------------------------------------------
/post_avg/LICENSE.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/LICENSE.txt


--------------------------------------------------------------------------------
/post_avg/PADefense.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/PADefense.py


--------------------------------------------------------------------------------
/post_avg/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/README.md


--------------------------------------------------------------------------------
/post_avg/attacks.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/attacks.py


--------------------------------------------------------------------------------
/post_avg/postAveragedModels.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/postAveragedModels.py


--------------------------------------------------------------------------------
/post_avg/resnetSmall.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/resnetSmall.py


--------------------------------------------------------------------------------
/post_avg/robustml_test_cifar10.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/robustml_test_cifar10.py


--------------------------------------------------------------------------------
/post_avg/robustml_test_imagenet.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/robustml_test_imagenet.py


--------------------------------------------------------------------------------
/post_avg/visualHelper.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/post_avg/visualHelper.py


--------------------------------------------------------------------------------
/utils.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/max-andr/square-attack/HEAD/utils.py


--------------------------------------------------------------------------------