## Generating Adversarial Examples
Zhizheng Wang

In [3]:
import numpy as np
import pickle
from util import * 

In [4]:
def generate_image_for_class(model, target_class):
    """
    This function Generates a random image that will be classified
    as class target_class by the neural network.
    
    Parameters:
    ------------------------------------
    model: neural network model object
    target_class: integer, target_class to which the network classifies the image
    alpha: each pixel in the image is initialized by sampling from
    uniform distribution over (-alpha, alpha)
    """
    
    alpha = 0.1
    lr = 0.1 #learning rate
    num_iterations=1000 #num of iterations
    
    x_adv = np.random.uniform(-alpha, alpha, size=(1,28*28))
    
    for c in range(num_iterations):
        y_probs = model.forward(x_adv)
        predicted_label = np.argmax(y_probs, axis=1)
        gradient = model.grad_wrt_input(x_adv, np.array([target_class]))[0]
        x_adv = x_adv - lr * gradient
        if predicted_label[0] == target_class: # Break when target_class is the same as predicted_class
            break      
    
    x_adv = x_adv.reshape(28,28)
    label = predicted_label
    filename = f'targeted_random_img_class_{target_class}.png'
    #visualize_example param: (img, y_probs, b_unnormalize=T or F, label, filename)    
    visualize_example(x_adv, y_probs[0], True, label, filename)
    
    return x_adv

def main():
    # Load the trained model
    model = None
    with open('trained_model.pkl', 'rb') as fid:
        model = pickle.load(fid)
    # now you can use the model class
    for target_class in range(10): # 0 - 10
        x_adv = generate_image_for_class(model, target_class)
        
if __name__ == "__main__":
    main()    