Cross miniapp request forgery: Root causes, attacks, and vulnerability detection
A miniapp is a full-fledged app that is executed inside a mobile super app such as WeChat
or SnapChat. Being mini by nature, it often has to communicate with other miniapps to …
or SnapChat. Being mini by nature, it often has to communicate with other miniapps to …
Taintmini: Detecting flow of sensitive data in mini-programs with static taint analysis
Mini-programs, which are programs running inside mobile super apps such as WeChat,
often have access to privacy-sensitive information, such as location data and phone …
often have access to privacy-sensitive information, such as location data and phone …
CoCo: Efficient Browser Extension Vulnerability Detection via Coverage-guided, Concurrent Abstract Interpretation
Extensions complement web browsers with additional functionalities and also bring new
vulnerability venues, allowing privilege escalations from adversarial web pages to use …
vulnerability venues, allowing privilege escalations from adversarial web pages to use …
Scaling javascript abstract interpretation to detect and exploit node. js taint-style vulnerability
Taint-style vulnerabilities, such as OS command injection and path traversal, are common
and severe software weaknesses. There exists an inherent trade-off between analysis …
and severe software weaknesses. There exists an inherent trade-off between analysis …
Arcanum: detecting and evaluating the privacy risks of browser extensions on web pages and web content
Modern web browsers support rich extension ecosystems that provide users with
customized and flexible browsing experiences. Unfortunately, the flexibility of extensions …
customized and flexible browsing experiences. Unfortunately, the flexibility of extensions …
Detection of inconsistencies in privacy practices of browser extensions
All major web browsers support extensions to provide additional functionalities and enhance
users' browsing experience while the extensions can access and collect users' data during …
users' browsing experience while the extensions can access and collect users' data during …
Extending a hand to attackers: browser privilege escalation attacks via extensions
Web browsers are attractive targets of attacks, whereby attackers can steal security-and
privacy-sensitive data, such as online banking and social network credentials, from users …
privacy-sensitive data, such as online banking and social network credentials, from users …
MalWuKong: Towards Fast, Accurate, and Multilingual Detection of Malicious Code Poisoning in OSS Supply Chains
In the face of increased threats within software registries and management systems, we
address the critical need for effective malicious code detection. In this paper, we propose an …
address the critical need for effective malicious code detection. In this paper, we propose an …
HiddenCPG: large-scale vulnerable clone detection using subgraph isomorphism of code property graphs
A code property graph (CPG) is a joint representation of syntax, control flows, and data flows
of a target application. Recent studies have demonstrated the promising efficacy of …
of a target application. Recent studies have demonstrated the promising efficacy of …
WeMinT: Tainting Sensitive Data Leaks in WeChat Mini-Programs
Mini-programs (MiniApps), lightweight versions of full-featured mobile apps that run inside a
host app such as WeChat, have become increasingly popular due to their simplified and …
host app such as WeChat, have become increasingly popular due to their simplified and …