Deception techniques in computer security: A research perspective
A recent trend both in academia and industry is to explore the use of deception techniques
to achieve proactive attack detection and defense—to the point of marketing intrusion …
to achieve proactive attack detection and defense—to the point of marketing intrusion …
The art, science, and engineering of fuzzing: A survey
Among the many software testing techniques available today, fuzzing has remained highly
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
[PDF][PDF] Characterization and Comparison of DDoS Attack Tools and Traffic Generators: A Review.
Abstract Distributed Denial of Service (DDoS) attack imposes a severe threat to the
extensively used Internet based services like e-commerce, e-banking, transportation …
extensively used Internet based services like e-commerce, e-banking, transportation …
One Size Does Not Fit All: Uncovering and Exploiting Cross Platform Discrepant {APIs} in {WeChat}
The past few years have witnessed a boom of mobile super apps, which are the apps
offering multiple services such as e-commerce, e-learning, and e-government via miniapps …
offering multiple services such as e-commerce, e-learning, and e-government via miniapps …
Towards measuring supply chain attacks on package managers for interpreted languages
R Duan, O Alrawi, RP Kasturi, R Elder… - arXiv preprint arXiv …, 2020 - arxiv.org
Package managers have become a vital part of the modern software development process.
They allow developers to reuse third-party code, share their own code, minimize their …
They allow developers to reuse third-party code, share their own code, minimize their …
Reading the tea leaves: A comparative analysis of threat intelligence
The term" threat intelligence" has swiftly become a staple buzzword in the computer security
industry. The entirely reasonable premise is that, by compiling up-to-date information about …
industry. The entirely reasonable premise is that, by compiling up-to-date information about …
A survey on automated dynamic malware analysis evasion and counter-evasion: Pc, mobile, and web
Automated dynamic malware analysis systems are important in combating the proliferation
of modern malware. Unfortunately, malware can often easily detect and evade these …
of modern malware. Unfortunately, malware can often easily detect and evade these …
A deep learning approach for detecting malicious JavaScript code
Y Wang, W Cai, P Wei - Security and Communication Networks, 2016 - Wiley Online Library
Malicious JavaScript code in webpages on the Internet is an emergent security issue
because of its universality and potentially severe impact. Because of its obfuscation and …
because of its universality and potentially severe impact. Because of its obfuscation and …
Xhound: Quantifying the fingerprintability of browser extensions
O Starov, N Nikiforakis - 2017 IEEE Symposium on Security …, 2017 - ieeexplore.ieee.org
In recent years, researchers have shown that unwanted web tracking is on the rise, as
advertisers are trying to capitalize on users' online activity, using increasingly intrusive and …
advertisers are trying to capitalize on users' online activity, using increasingly intrusive and …
Ad injection at scale: Assessing deceptive advertisement modifications
Today, web injection manifests in many forms, but fundamentally occurs when malicious and
unwanted actors tamper directly with browser sessions for their own profit. In this work we …
unwanted actors tamper directly with browser sessions for their own profit. In this work we …