# Attacking the Pretrained KWS Model
This notebook uses the pre-trained [micro_speech](https://github.com/tensorflow/tensorflow/tree/v2.4.1/tensorflow/lite/micro/examples/micro_speech) example for [TensorFlow Lite for MicroControllers](https://www.tensorflow.org/lite/microcontrollers/overview) 20 kB [Simple Audio Recognition](https://www.tensorflow.org/tutorials/sequences/audio_recognition) model and tricks it by playing malicious static sounding audio that triggers the model for "yes."

### Load the pretrained Tensorflow Lite for Microcontrollers model
In case you modifed the default model file, simply run the below cell to dowload the staff's copy!

In [1]:
!wget --no-check-certificate --content-disposition https://github.com/tinyMLx/colabs/blob/master/KWS_yes_no.cc?raw=true

--2024-10-19 07:27:41--  https://github.com/tinyMLx/colabs/blob/master/KWS_yes_no.cc?raw=true
Resolving github.com (github.com)... 140.82.113.4
Connecting to github.com (github.com)|140.82.113.4|:443... connected.
HTTP request sent, awaiting response... 302 Found
Location: https://github.com/tinyMLx/colabs/raw/refs/heads/master/KWS_yes_no.cc [following]
--2024-10-19 07:27:41--  https://github.com/tinyMLx/colabs/raw/refs/heads/master/KWS_yes_no.cc
Reusing existing connection to github.com:443.
HTTP request sent, awaiting response... 302 Found
Location: https://raw.githubusercontent.com/tinyMLx/colabs/refs/heads/master/KWS_yes_no.cc [following]
--2024-10-19 07:27:41--  https://raw.githubusercontent.com/tinyMLx/colabs/refs/heads/master/KWS_yes_no.cc
Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 185.199.108.133, 185.199.109.133, 185.199.110.133, ...
Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|185.199.108.133|:443... connected.
HTTP request sent,

In [2]:
# print out the model contents
!cat 'KWS_yes_no.cc'

unsigned char g_model[] = {
  0x20, 0x00, 0x00, 0x00, 0x54, 0x46, 0x4c, 0x33, 0x00, 0x00, 0x00, 0x00,
  0x00, 0x00, 0x12, 0x00, 0x1c, 0x00, 0x04, 0x00, 0x08, 0x00, 0x0c, 0x00,
  0x10, 0x00, 0x14, 0x00, 0x00, 0x00, 0x18, 0x00, 0x12, 0x00, 0x00, 0x00,
  0x03, 0x00, 0x00, 0x00, 0x94, 0x48, 0x00, 0x00, 0x34, 0x42, 0x00, 0x00,
  0x1c, 0x42, 0x00, 0x00, 0x3c, 0x00, 0x00, 0x00, 0x04, 0x00, 0x00, 0x00,
  0x01, 0x00, 0x00, 0x00, 0x0c, 0x00, 0x00, 0x00, 0x08, 0x00, 0x0c, 0x00,
  0x04, 0x00, 0x08, 0x00, 0x08, 0x00, 0x00, 0x00, 0x08, 0x00, 0x00, 0x00,
  0x0b, 0x00, 0x00, 0x00, 0x13, 0x00, 0x00, 0x00, 0x6d, 0x69, 0x6e, 0x5f,
  0x72, 0x75, 0x6e, 0x74, 0x69, 0x6d, 0x65, 0x5f, 0x76, 0x65, 0x72, 0x73,
  0x69, 0x6f, 0x6e, 0x00, 0x0c, 0x00, 0x00, 0x00, 0xd4, 0x41, 0x00, 0x00,
  0xb4, 0x41, 0x00, 0x00, 0x24, 0x03, 0x00, 0x00, 0xf4, 0x02, 0x00, 0x00,
  0xec, 0x02, 0x00, 0x00, 0xe4, 0x02, 0x00, 0x00, 0xc4, 0x02, 0x00, 0x00,
  0xbc, 0x02, 0x00, 0x00, 0x2c, 0x00, 0x00, 0x00, 0x24, 0x00, 0x00, 0x00,
  0x1c, 0x

To download the model:
1. On the left of the UI click on the folder icon
2. Click on the three dots to the right of the ```KWS_yes_no.cc``` file and select download

### Deploy the model
Go back to the KWS pre-trained model deployment reading. Follow the steps to deploy the application to your Arduino -- make sure to use the above model file if you modified the default example.

### Attacking the Model
First test the model by saying "yes" and "no" and make sure that it is working. Next play the audio clip below to see the static trigger a "yes."

In [3]:
from IPython.display import HTML, Audio
from scipy.io import wavfile
!wget --no-check-certificate --content-disposition https://github.com/tinyMLx/colabs/blob/master/attack.wav?raw=true
sr_attack, audio_attack = wavfile.read('attack.wav')
Audio(audio_attack, rate=sr_attack)

--2024-10-19 07:28:27--  https://github.com/tinyMLx/colabs/blob/master/attack.wav?raw=true
Resolving github.com (github.com)... 140.82.114.4
Connecting to github.com (github.com)|140.82.114.4|:443... connected.
HTTP request sent, awaiting response... 302 Found
Location: https://github.com/tinyMLx/colabs/raw/refs/heads/master/attack.wav [following]
--2024-10-19 07:28:27--  https://github.com/tinyMLx/colabs/raw/refs/heads/master/attack.wav
Reusing existing connection to github.com:443.
HTTP request sent, awaiting response... 302 Found
Location: https://raw.githubusercontent.com/tinyMLx/colabs/refs/heads/master/attack.wav [following]
--2024-10-19 07:28:27--  https://raw.githubusercontent.com/tinyMLx/colabs/refs/heads/master/attack.wav
Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 185.199.108.133, 185.199.109.133, 185.199.110.133, ...
Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|185.199.108.133|:443... connected.
HTTP request sent, awaiting respo