Soheil Khodayari

Orcid: 0009-0006-1052-4774

According to our database1, Soheil Khodayari authored at least 14 papers between 2020 and 2026.

Collaborative distances:
  • Dijkstra number2 of four.
  • Erdős number3 of four.

Timeline

Legend:

Book  In proceedings  Article  PhD thesis  Dataset  Other 

Links

Online presence:

On csauthors.net:

Bibliography

2026
Indirect Prompt Injection in the Wild: An Empirical Study of Prevalence, Techniques, and Objectives.
CoRR, April, 2026

2025
YuraScanner: Leveraging LLMs for Task-driven Web App Scanning.
Proceedings of the 32nd Annual Network and Distributed System Security Symposium, 2025

Do (Not) Follow the White Rabbit: Challenging the Myth of Harmless Open Redirection.
Proceedings of the 32nd Annual Network and Distributed System Security Symposium, 2025

Exploration of the Dynamics of Buy and Sale of Social Media Accounts.
Proceedings of the 2025 ACM Internet Measurement Conference, 2025

CHARON: Polyglot Code Analysis for Detecting Vulnerabilities in Scripting Languages Native Extensions.
Proceedings of the 10th IEEE European Symposium on Security and Privacy, 2025

Permission Rationales in the Web Ecosystem: An Exploration of Rationale Text and Design Patterns.
Proceedings of the 2025 CHI Conference on Human Factors in Computing Systems, 2025

In the DOM We Trust: Exploring the Hidden Dangers of Reading from the DOM on the Web.
Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security, 2025

2024
Security testing at scale: studying emerging client-side vulnerabilities in the modern web.
PhD thesis, 2024

The Great Request Robbery: An Empirical Study of Client-side Request Hijacking Vulnerabilities on the Web.
Proceedings of the IEEE Symposium on Security and Privacy, 2024

2023
It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses.
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

2022
The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies.
Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

2021
JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals.
Proceedings of the 30th USENIX Security Symposium, 2021

Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks.
Proceedings of the RAID '21: 24th International Symposium on Research in Attacks, 2021

2020
Cross-Origin State Inference (COSI) Attacks: Leaking Web Site States through XS-Leaks.
Proceedings of the 27th Annual Network and Distributed System Security Symposium, 2020


  Loading...