Number of items: 27.
Conference or Workshop Item (A Paper)
Khodayari, Soheil and Barber, Thomas and Pellegrino, Giancarlo
(2024)
The Great Request Robbery: An Empirical Study of Client-side Request Hijacking Vulnerabilities on the Web.
Stivala, Giada and Abdelnabi, Sahar and Mengascini, Andrea and Graziano, Mariano and Fritz, Mario and Pellegrino, Giancarlo
(2023)
From Attachments to SEO: Click Here to Learn More about Clickbait PDFs!
(In Press)
Khodayari, Soheil and Pellegrino, Giancarlo
(2023)
It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses.
(Submitted)
Rautenstrauch, Jannis and Pellegrino, Giancarlo and Stock, Ben
(2023)
The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web.
Khodayari, Soheil and Pellegrino, Giancarlo
(2022)
The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies.
Likaj, Xhelal and Khodayari, Soheil and Pellegrino, Giancarlo
(2021)
Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks.
Khodayari, Soheil and Pellegrino, Giancarlo
(2021)
JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals.
Eriksson, Benjamin and Pellegrino, Giancarlo and Sabelfeld, Andrei
(2021)
Black Widow: Blackbox Data-driven Web Scanning.
Chou, Edward and Tramer, Florian and Pellegrino, Giancarlo
(2020)
SentiNet: Detecting Localized Universal Attack Against Deep Learning Systems.
Zhao, Qingchuan and Zuo, Chaoshun and Brendan, Dolan-Gavitt and Pellegrino, Giancarlo and Lin, Zhiqiang
(2020)
Automatic Uncovering of Hidden Behaviors from Input Validation in Mobile Apps.
Koch, Simon and Sauer, Tim and Johns, Martin and Pellegrino, Giancarlo
(2020)
Raccoon: Automated Verification of Guarded Race Conditions in Web Applications.
Stivala, Giada and Pellegrino, Giancarlo
(2020)
Deceptive Previews: A Study of the Link Preview Trustworthiness in Social Platforms.
Tramèr, Florian and Dupré, Pascal and Gili, Rusak and Pellegrino, Giancarlo and Boneh, Dan
(2019)
AdVersarial: Perceptual Ad Blocking meets Adversarial Machine Learning.
Eskandarian, Saba and Cogan, Jonathan and Birnbaum, Sawyer and Brandon, Peh Chang Wei and Franke, Dillon and Fraser, Forest and Garcia, Gaspar and Gong, Eric and Nguyen, Hung T. and Sethi, Taresh K. and Subbiah, Vishal and Backes, Michael and Pellegrino, Giancarlo and Boneh, Dan
(2019)
Fidelius: Protecting User Secrets from Compromised Browsers.
Zhao, Qingchuan and Zuo, Chaoshun and Pellegrino, Giancarlo and Zhiqiang, Li
(2019)
Geo-locating Drivers: A Study of Sensitive Data Leakage in Ride-Hailing Services.
Stock, Ben and Pellegrino, Giancarlo and Li, Frank and Backes, Michael and Rossow, Christian
(2018)
Didn’t You Hear Me? — Towards More Successful Web Vulnerability Notifications.
Speicher, Patrick and Steinmetz, Marcel and Künnemann, Robert and Simeonovski, Milivoj and Pellegrino, Giancarlo and Hoffmann, Jörg and Backes, Michael
(2018)
Formally Reasoning about the Cost and Efficacy of Securing the Email Infrastructure.
Oltrogge, Marten and Derr, Erik and Stransky, Christian and Acar, Yasemin and Fahl, Sascha and Rossow, Christian and Pellegrino, Giancarlo and Bugiel, Sven and Backes, Michael
(2018)
The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.
Simeonovski, Milivoj and Pellegrino, Giancarlo and Rossow, Christian and Backes, Michael
(2017)
Who Controls the Internet? Analyzing Global Threats using Property Graph Traversals.
Pellegrino, Giancarlo and Johns, Martin and Koch, Simon and Backes, Michael and Rossow, Christian
(2017)
Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs.
Stock, Ben and Pellegrino, Giancarlo and Rossow, Christian and Johns, Martin and Backes, Michael
(2016)
Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification.
Pellegrino, Giancarlo and Catakoglu, Onur and Balzarotti, Davide and Rossow, Christian
(2016)
Uses and Abuses of Server-Side Requests.
Stock, Ben and Pellegrino, Giancarlo and Rossow, Christian and Johns, Martin and Backes, Michael
(2016)
POSTER: Mapping the Landscape of Large-Scale Vulnerability Notifications.
Pellegrino, Giancarlo and Balzarotti, Davide and Winter, Stefan and Suri, Neeraj
(2015)
In the Compression Hornet's Nest: A Security Study of Data Compression in Network Services.
Pellegrino, Giancarlo and Rossow, Christian and Ryba, Fabrice J. and Schmidt, Thomas C. and Wählisch, Matthias
(2015)
Cashing Out the Great Cannon? On Browser-Based DDoS Attacks and Economics.
Pellegrino, Giancarlo and Tschürtz, Constantin and Bodden, Eric and Rossow, Christian
(2015)
jÄk: Using Dynamic Analysis to Crawl and Test Modern Web Applications.
Other
Speicher, Patrick and Steinmetz, Marcel and Künnemann, Robert and Simeonovski, Milivoj and Pellegrino, Giancarlo and Hoffmann, Jörg and Backes, Michael
(2018)
Formally Reasoning about the Cost and Efficacy of Securing the Email Infrastructure (full version).
This list was generated on Thu Oct 10 06:54:52 2024 CEST.