An adversarial example detection tool.
- EvadeML-Zoo (Included as a folder in this project)
- thundersvm
- sklearn
- Step 0: dependencies.
We re-use code from EvadeML-Zoo repo (Thank you!) to generate adv examples etc., and thus to use it, you need to install the required dependencies.
- Step 1: Get internal values
$ python get_output.py (adv_get_output.py)
The output results will be in folder 'output' ('adv_output').
- Step 2.0: PCA
$ python PCA.py
The outputs of some layes are too large to be used to train an osvm. In this step, we use Principal Component Analysis (PCA) to reduce dimensionality. Currently, we use 5000 as the default value. This is not necessary if you have enough computing resources.
- Step 2.1: VI
$ python svm_2.1.py
All of the results will be stored in 'SVM' folder.
- Step 2.2: PI
$ python svm_2.2.py
All of the results will be stored in 'SVM_2' folder.
- Step 3: Detection
$ python svm_3.py
All of the results are stored in 'SVM_3' folder.
- We recommend thundersvm to accelerate the osvm training process.
- You can change the PCA function parameters based on your computing resources.
- We recommend tuning each PI and VI before tuning the final detector.