Implementations of the black-box ADMM attack algorithms in Tensorflow. It runs correctly on Python 3.6.
To evaluate the robustness of a neural network, create a model class with a predict method that will run the prediction network without softmax.
The following steps should be sufficient to get these attacks up and running on most Linux-based systems.
sudo apt-get install python3-pip
sudo pip3 install --upgrade pip
sudo pip3 install pillow scipy numpy tensorflow-gpu keras h5py
python3 train_models.py
python3 setup_inception.py
python3 test_attack.py