Alexandros Kapravelos

Christian Kästner

Laurie A. Williams

CoRR, 2023

S3C2 Summit 2023-02: Industry Secure Supply Chain Summit.

[BibT_eX]

[DOI]

Christian Kästner

Laurie A. Williams

CoRR, 2023

S3C2 Summit 2202-09: Industry Secure Suppy Chain Summit.

[BibT_eX]

[DOI]

Christian Kästner

Laurie A. Williams

CoRR, 2023

Automatic Discovery of Emerging Browser Fingerprinting Techniques.

[BibT_eX]

[DOI]

Junhua Su

Proceedings of the ACM Web Conference 2023, 2023

ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions.

[BibT_eX]

[DOI]

Aravind Machiry

Proceedings of the 32nd USENIX Security Symposium, 2023

2022

CrawlPhish: Large-Scale Analysis of Client-Side Cloaking Techniques in Phishing.

[BibT_eX]

[DOI]

IEEE Secur. Priv., 2022

Measuring the Privacy vs. Compatibility Trade-off in Preventing Third-Party Stateful Tracking.

[BibT_eX]

[DOI]

Proceedings of the WWW '22: The ACM Web Conference 2022, Virtual Event, Lyon, France, April 25, 2022

Characterizing the Security of Github CI Workflows.

[BibT_eX]

[DOI]

Aravind Machiry

Proceedings of the 31st USENIX Security Symposium, 2022

yoU aRe a Liar: //A Unified Framework for Cross-Testing URL Parsers.

[BibT_eX]

[DOI]

Dashmeet Kaur Ajmani

Igibek Koishybayev

Proceedings of the 43rd IEEE Security and Privacy, 2022

SoK: Workerounds - Categorizing Service Worker Attacks and Mitigations.

[BibT_eX]

[DOI]

Karthika Subramani

Roberto Perdisci

Proceedings of the 7th IEEE European Symposium on Security and Privacy, 2022

2021

Categorizing Service Worker Attacks and Mitigations.

[BibT_eX]

[DOI]

Karthika Subramani

Roberto Perdisci

CoRR, 2021

Towards Realistic and ReproducibleWeb Crawl Measurements.

[BibT_eX]

[DOI]

Panagiotis Papadopoulos

Matteo Varvello

Proceedings of the WWW '21: The Web Conference 2021, 2021

Cookie Swap Party: Abusing First-Party Cookies for Web Tracking.

[BibT_eX]

[DOI]

Panagiotis Ilia

Michalis Polychronakis

Proceedings of the WWW '21: The Web Conference 2021, 2021

Fingerprinting in Style: Detecting Browser Extensions via Injected Style Sheets.

[BibT_eX]

[DOI]

Pierre Laperdrix

Oleksii Starov

Proceedings of the 30th USENIX Security Symposium, 2021

Detecting Filter List Evasion with Event-Loop-Turn Granularity JavaScript Signatures.

[BibT_eX]

[DOI]

Ben Livshits

Proceedings of the 42nd IEEE Symposium on Security and Privacy, 2021

Favocado: Fuzzing the Binding Code of JavaScript Engines Using Semantically Correct Test Cases.

[BibT_eX]

[DOI]

Proceedings of the 28th Annual Network and Distributed System Security Symposium, 2021

Browserprint: an Analysis of the Impact of Browser Features on Fingerprintability and Web Privacy.

[BibT_eX]

[DOI]

Seyed Ali Akhavani

Junhua Su

Engin Kirda

Long Lu

Proceedings of the Information Security - 24th International Conference, 2021

2020

There's No Trick, Its Just a Simple Trick: A Web-Compat and Privacy Improving Approach to Third-party Web Storage.

[BibT_eX]

[DOI]

CoRR, 2020

Improving Web Content Blocking With Event-Loop-Turn Granularity JavaScript Signatures.

[BibT_eX]

[DOI]

Ben Livshits

CoRR, 2020

Mininode: Reducing the Attack Surface of Node.js Applications.

[BibT_eX]

[DOI]

Igibek Koishybayev

Proceedings of the 23rd International Symposium on Research in Attacks, 2020

Hiding in Plain Site: Detecting JavaScript Obfuscation through Concealed Browser API Usage.

[BibT_eX]

[DOI]

Proceedings of the IMC '20: ACM Internet Measurement Conference, 2020

You've Changed: Detecting Malicious Browser Extensions through their Update Deltas.

[BibT_eX]

[DOI]

Nikolaos Pantelaios

Proceedings of the CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020

2019

The Blind Men and the Internet: Multi-Vantage Point Web Measurements.

[BibT_eX]

[DOI]

Panagiotis Papadopoulos

Matteo Varvello

CoRR, 2019

Unnecessarily Identifiable: Quantifying the fingerprintability of browser extensions due to bloat.

[BibT_eX]

[DOI]

Oleksii Starov

Pierre Laperdrix

Proceedings of the World Wide Web Conference, 2019

Everyone is Different: Client-side Diversification for Defending Against Extension Fingerprinting.

[BibT_eX]

[DOI]

Erik Trickel

Oleksii Starov

Adam Doupé

Proceedings of the 28th USENIX Security Symposium, 2019

VisibleV8: In-browser Monitoring of JavaScript in the Wild.

[BibT_eX]

[DOI]

Proceedings of the Internet Measurement Conference, 2019

Wild Extensions: Discovering and Analyzing Unlisted Chrome Extensions.

[BibT_eX]

[DOI]

Aidan Beggs

Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2019

2018

Mystique: Uncovering Information Leakage from Browser Extensions.

[BibT_eX]

[DOI]

Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

2016

Cloak of Visibility: Detecting When Machines Browse a Different Web.

[BibT_eX]

[DOI]

Luca Invernizzi

Kurt Thomas

Oxana Comanescu

Jean Michel Picod

Elie Bursztein

Proceedings of the IEEE Symposium on Security and Privacy, 2016

2015

Analyzing and Defending Against Evolving Web Threats.

[BibT_eX]

[DOI]

PhD thesis, 2015

Ad Injection at Scale: Assessing Deceptive Advertisement Modifications.

[BibT_eX]

[DOI]

Proceedings of the 2015 IEEE Symposium on Security and Privacy, 2015

2014

On the Workings and Current Practices of Web-Based Device Fingerprinting.

[BibT_eX]

[DOI]

IEEE Secur. Priv., 2014

Hulk: Eliciting Malicious Behavior in Browser Extensions.

[BibT_eX]

[DOI]

Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

The Dark Alleys of Madison Avenue: Understanding Malicious Advertisements.

[BibT_eX]

[DOI]

Apostolis Zarras

Proceedings of the 2014 Internet Measurement Conference, 2014

PExy: The Other Side of Exploit Kits.

[BibT_eX]

[DOI]

Giancarlo De Maio

Yan Shoshitaishvili

Christopher Kruegel

Giovanni Vigna

Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2014

2013

Revolver: An Automated Approach to the Detection of Evasive Web-based Malware.

[BibT_eX]

[DOI]

Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013, 2013

Cookieless Monster: Exploring the Ecosystem of Web-Based Device Fingerprinting.

[BibT_eX]

[DOI]

Proceedings of the 2013 IEEE Symposium on Security and Privacy, 2013

2012

You are what you include: large-scale evaluation of remote javascript inclusions.

[BibT_eX]

[DOI]

Luca Invernizzi

Proceedings of the ACM Conference on Computer and Communications Security, 2012

2011

Escape from Monkey Island: Evading High-Interaction Honeyclients.

[BibT_eX]

[DOI]

Marco Cova

Christopher Kruegel

Giovanni Vigna

Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2011

2010

D(e|i)aling with VoIP: Robust Prevention of DIAL Attacks.

[BibT_eX]

[DOI]

Iasonas Polakis

Elias Athanasopoulos

Sotiris Ioannidis

Evangelos P. Markatos

Proceedings of the Computer Security, 2010

2009

FleXConf: A Flexible Conference Assistant Using Context-Aware Notification Services.

[BibT_eX]

[DOI]

Proceedings of the On the Move to Meaningful Internet Systems: OTM 2009 Workshops, 2009

Realistic Passive Packet Loss Measurement for High-Speed Networks.

[BibT_eX]

[DOI]

Ales Friedl

Sven Ubik