| JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals S Khodayari, G Pellegrino 30th USENIX Security Symposium (USENIX Security'21), 2021 | 40 | 2021 |
| Cross-Origin State Inference (COSI) Attacks: Leaking Web Site States through XS-Leaks A Sudhodanan, S Khodayari, J Caballero Network and Distributed System Security Symposium (NDSS), 2020 | 25 | 2020 |
| The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies S Khodayari, G Pellegrino 43rd IEEE Symposium on Security and Privacy (S&P'22), 2022 | 22 | 2022 |
| Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks X Likaj, S Khodayari, G Pellegrino 24th International Symposium on Research in Attacks, Intrusions and Defenses …, 2021 | 17 | 2021 |
| It's (DOM) Clobbering Time: Attack Techniques, Prevalence and Defenses S Khodayari, G Pellegrini 44th IEEE Symposium on Security and Privacy (S&P'23), 2023 | 7 | 2023 |
| The Great Request Robbery: An Empirical Study of Client-side Request Hijacking Vulnerabilities on the Web S Khodayari, T Barber, G Pellegrino 45th IEEE Symposium on Security and Privacy (S&P'24), 2024 | 1 | 2024 |
Giancarlo PellegrinoCISPA Helmholtz Center for Information Security在 cispa.de 的电子邮件经过验证
