Publications @ iSecLab

Recent Work

Martina Lindorfer, Matthias Neugschwandtner, Lukas Weichselbaum, Yanick Fratantonio, Victor van der Veen, Christian Platzer, Andrubis - 1,000,000 Apps Later: A View on Current Android Malware Behaviors, 3rd International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security (BADGERS), Wroclaw, Poland, September 2014
[download]
Martina Lindorfer, Stamatis Volanis, Alessandro Sisto, Matthias Neugschwandtner, Elias Athanasopoulos, Federico Maggi, Christian Platzer, Stefano Zanero, Sotiris Ioannidis, AndRadar: Fast Discovery of Android Applications in Alternative Markets, 11th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), London, UK, July 2014
[download]
Christian Platzer, Martin Stuetz, Martina Lindorfer, Skin Sheriff: A Machine Learning Solution for Detecting Explicit Images, 2nd International Workshop on Security and Forensics in Communication Systems (ASIACCS-SFCS), Kyoto, Japan, June 2014.
[download]
Markus Kammerstetter, Christian Platzer, and Wolfgang Kastner. PROSPECT - Peripheral Proxying Supported Embedded Code Testing. In 9th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2014), June 4-6, 2014, Kyoto Garden Palace, Kyoto, Japan, June 2014.
Bernhard Grill, Christian Platzer, and Juergen Eckel. A Practical Approach for Generic Bootkit Detection and Prevention. In 7th European Workshop on Systems Security (EuroSec), Amsterdam, Netherlands, April 2014.
[download]
Aleksandar Hudic, Katharina Krombholz, Thomas Otterbein, Christian Platzer, and Edgar Weippl. 10th Annual IFIP WG 11.9 International Conference on Digital Forensics, chapter Automated Analysis of Underground Marketplaces. Springer, 2014.
[download]
Sebastian Neuner, Victor van der Veen, Martina Lindorfer, Markus Huber, Georg Merzdovnik, Martin Mulazzani, Edgar Weippl, Enter Sandbox: Android Sandbox Comparison, 3rd IEEE Mobile Security Technologies Workshop (MoST), San Jose, USA, May 2014
[download]
Martina Lindorfer, Bernhard Miller, Matthias Neugschwandtner, Christian Platzer, Take a Bite - Finding the Worm in the Apple, International Conference on Information, Communications and Signal Processing (ICICS), Tainan, Taiwan, December 2013
[download]
Martina Lindorfer, Matthias Neumayr, Juan Caballero, Christian Platzer, POSTER: Cross-Platform Malware: Write Once, Infect Everywhere, ACM Conference on Computer and Communications Security (CCS), Berlin, Germany, November 2013
[download]
Istvan Haller, Asia Slowinska, Matthias Neugschwandtner, Herbert Bos, Dowsing for overflows: A guided fuzzer to find buffer boundary violations, 22nd USENIX Security Conference, Washington DC, August 2013
Matthias Neugschwandtner, Martina Lindorfer and Christian Platzer, A View to a Kill: Webview Exploitation, 6th USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), Washington DC, August 2013
[download]
Kaan Onarlioglu, Mustafa Battal, William Robertson, and Engin Kirda, Securing Legacy Firefox Extensions with SENTINEL, 10th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Berlin, Germany, July 2013
[download]
Kaan Onarlioglu, Collin Mulliner, William Robertson, Engin Kirda, PRIVEXEC: Private Execution as an Operating System Service, IEEE Security and Privacy, San Francisco, May 2013
[download]
Aldo Cassola, William Robertson, Engin Kirda, and Guevara Noubir, A Practical, Targeted, and Stealthy Attack Against WPA Enterprise Authentication, 20th Annual Network and Distributed System Security Symposium, (NDSS 2013), San Diego, CA, February 2013
[download]
Tobias Lauinger, Martin Szydlowski, Kaan Onarlioglu, Gilbert Wondracek, Engin Kirda, and Christopher Kruegel, Clickonomics: Determining the Effect of Anti-Piracy Measures for One-Click Hosting, 20th Annual Network and Distributed System Security Symposium, (NDSS 2013), San Diego, CA, February 2013
[download]
Markus Kammerstetter, Christian Platzer and Gilbert Wondracek. Vanity, Cracks and Malware: Insights into the Anti-Copy Protection Ecosystem. 19th ACM Conference on Computer and Communications Security (CCS 2012), October 2012, Raleigh, NC, USA.
[download]
Tobias Lauinger, Nikolaos Laoutaris, Pablo Rodriguez, Thorsten Strufe, Ernst Biersack, and Engin Kirda. Privacy Risks in Named Data Networking: What is the Cost of Performance? Editorial Note. ACM SIGCOMM Computer Communication Review, 42(5), October 2012
[download]
Martina Lindorfer, Alessandro Di Federico, Federico Maggi, Paolo Milani Comparetti and Stefano Zanero, Lines of Malicious Code: Insights Into the Malicious Software Industry, Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2012
[download]
Erik-Oliver Blass, William Robertson, TRESOR-HUNT: Attacking CPU-Bound Encryption, Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2012
[download]
Leyla Bilge, Davide Balzarotti, William Robertson, Engin Kirda, Christopher Kruegel, DISCLOSURE: Detecting Botnet Command and Control Servers Through Large-Scale NetFlow Analysis, Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2012
[download]
Gregoire Jacob, Christopher Kruegel, Engin Kirda, Giovanni Vigna, Protecting Users and Businesses from CRAWLers, 21st USENIX Security Conference, Bellevue, WA, August 2012
[download]
Tobias Lauinger, Engin Kirda and Pietro Michiardi, Paying for Piracy? An Analysis of One-Click Hosters' Controversial Reward Schemes, 15th International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Amsterdam, September 2012.
[download]
Manuel Egele, Andreas Moser, Christopher Kruegel, Engin Kirda, PoX: Protecting Users from Malicious Facebook Applications, Computer Communications Journal, Elsevier, 2012
[download]
Davide Canali, Andrea Lanzi, Davide Balzarotti, Mihai Christoderescu, Christopher Kruegel, Engin Kirda, A Quantitative Study of Accuracy in System Call-Based Malware Detection, International Symposium on Software Testing and Analysis (ISSTA) 2012, Minneapolis, MN, July 2012
[download]
Armin Büscher, Thorsten Holz, Tracking DDoS Attacks: Insights into the Business of Disrupting the Web, 5th Usenix Workshop on Large-Scale Exploits and Emergent Threats, San Jose, April 2012
[download]
Theodoor Scholte, William K. Robertson, Davide Balzarotti, and Engin Kirda, "Preventing Input Validation Vulnerabilities in Web Applications through Automated Type Analysis", 36th IEEE Conference on Computers, Software, and Applications (COMPSAC), Izmir, Turkey - July 2012
[download]
Gregoire Jacob, Paolo Milani, Matthias Neugschwandtner, Christopher Kruegel, Giovanni Vigna, A Static, Packer-Agnostic Filter to Detect Similar Malware Sample, 9th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), July 2012
[download]
Manuel Egele, Theodoor Scholte, Engin Kirda, Christopher Kruegel, A Survey on Automated Dynamic Malware Analysis Techniques and Tools, ACM Computing Surveys Journal, Volume 44 Issue 2, February 2012
[download]
Theodoor Scholte, Davide Balzarotti, and Engin Kirda, Have things changed now? An empirical study on input validation vulnerabilities in web applications, Computers & Security 31(3): 344-356 (2012)
[download]
Kaan Onarlioglu, Utku Ozan Yilmaz, Engin Kirda, and Davide Balzarotti, Insights into User Behavior in Dealing with Internet Attacks, 19th Annual Network and Distributed System Security Symposium, (NDSS 2012), San Diego, February 2012
[download]
Marco Balduzzi, Jonnas Zaddach, Davide Balzarotti, Engin Kirda, and Sergio Loureiro, A Security Analysis of Amazon's Elastic Compute Cloud Service, 27th ACM Symposium On Applied Computing (SAC), Security Track, Trento, Italy, March 2012
[download]
Theodoor Scholte, Davide Balzarotti, William Robertson, and Engin Kirda, An Empirical Analysis of Input Validation Mechanisms in Web Applications and Languages, 27th ACM Symposium On Applied Computing (SAC), Security Track, Trento, Italy, March 2012
[download]
Luca Invernizzi, Stefano Benvenuti, Marco Cova, Paolo Milani Comparetti, Christopher Kruegel and Giovanni Vigna, EVILSEED: A Guided Approach to Finding Malicious Web Pages, IEEE Symposium on Security & Privacy 2012
[download]
Christian Platzer, Sequence-Based Bot Detection in Massive Multiplayer Online Games, 8th International Conference on Information, Communications and Signal Processing (ICICS 2011), Singapore, 13-16th December 2011
[download] (Distinguished Paper Award)
Markus Huber and Martin Mulazzani and Manuel Leithner and Sebastian Schrittwieser and Gilbert Wondracek and Edgar R. Weippl, Social Snapshots: Digital Forensics for Online Social Networks, 27th Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2011
Matthias Neugschwandtner, Paolo Milani Comparetti, Gregoire Jacob, Christopher Kruegel, ForeCast - Skimming off the Malware Cream, 27th Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2011
[download] [techreport]
Matthias Neugschwandtner, Paolo Milani Comparetti, Christian Platzer, Detecting Malware's Failover C&C Strategies with SQUEEZE, 27th Annual Computer Security Applications Conference (ACSAC), Orlando, Florida, December 2011
[download]
Clemens Kolbitsch, Engin Kirda, and Christopher Kruegel, The Power of Procrastination: Detection and Mitigation of Execution-Stalling Malicious Code, 18th ACM Conference on Computer and Communications Security (CCS), Chicago, October 2011
[download]
Martina Lindorfer, Clemens Kolbitsch, and Paolo Milani Comparetti, Detecting Environment-Sensitive Malware, International Symposium on Recent Advances in Intrusion Detection (RAID 2011), Menlo Park, CA, September 2011
[download]
Gianluca Stringhini, Thorsten Holz, Brett Stone-Gross, Christopher Kruegel, Giovanni Vigna, BOTMAGNIFIER: Locating Spambots on the Internet, USENIX Security '11, San Fransisco, CA, August 2011
[download]
Martin Szydlowski, Ben Y. Zhao, Engin Kirda, Christopher Kruegel, BTLab: A System-Centric, Data-Driven Analysis and Measurement Platform for BitTorrent Clients, 20th International Conference on Computer Communication Networks (ICCCN 2011), Maui, HI, August 2011
[download]
Danesh Irani, Marco Balduzzi, Davide Balzarotti, Engin Kirda, Carlton Pu, Reverse Social Engineering Attacks in Online Social Networks, Eighth Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Amsterdam, Netherlands, July 2011
[download]
Manuel Egele, Andreas Moser, Christopher Kruegel, Engin Kirda, PoX: Protecting Users from Malicious Facebook Applications, 3rd IEEE International Workshop on SEcurity and SOCial Networking (SESOC), Seattle, WA, March 2011
[download]
Michael Becher, Felix C. Freiling, Johannes Hoffmann, Thorsten Holz, Sebastian Uellenbeck, Christopher Wolf, Mobile Security Catching Up? Revealing the Nuts and Bolts of the Security of Mobile Devices, IEEE Security and Privacy, Oakland, May 2011
to appear
Gianluca Stringhini, Christopher Kruegel, Giovanni Vigna, Detecting Spammers on Social Networks, 26th Annual Computer Security Applications Conference, (ACSAC 2011), Austin, December 2010 (Best Student Paper Award)
[download]
Brett Stone-Gross, Thorsten Holz, Gianluca Stringhini, and Giovanni Vigna, The Underground Economy of Spam: A Botmaster's Perspective of Coordinating Large-Scale Spam Campaigns, 4th Usenix Workshop on Large-Scale Exploits and Emergent Threats, Boston, March 2011
[download]
Nick Nikiforakis, Marco Balduzzi, Steven Van Acker, Wouter Joosen, Davide Balzarotti, Exposing the Lack of Privacy in File Hosting Services, 4th Usenix Workshop on Large-Scale Exploits and Emergent Threats, Boston, March 2011
[download]
Manuel Egele, Andreas Moser, Christopher Kruegel, Engin Kirda, PoX: Protecting Users from Malicious Facebook Applications, 3rd IEEE International Workshop on Security in Social Networks, Seattle, March 2011
[download]
Brett Stone-Gross, Marco Cova, Christopher Kruegel, Giovanni Vigna, 30th IEEE International Conference on Computer Communications (IEEE INFOCOM 2011), Shanghai, April 2011
[download]
Theodoor Scholte, Davide Balzarotti, Engin Kirda, Quo Vadis? A Study of the Evolution of Input Validation Vulnerabilities in Web Applications, Fifteenth International Conference on Financial Cryptography and Data Security '11, St. Lucia, February 2011
[download]
Leyla Bilge, Engin Kirda, Christopher Kruegel, Marco Balduzzi, EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis, 18th Annual Network and Distributed System Security Symposium, (NDSS 2011), San Diego, February 2011
[download]
Marco Balduzzi, Carmen Torrano Gimenez, Davide Balzarotti, Engin Kirda, Automated Discovery of Parameter Pollution Vulnerabilities in Web Applications, 18th Annual Network and Distributed System Security Symposium, (NDSS 2011), San Diego, February 2011 (Distinguished Paper Award)
[download]
Manuel Egele, Christopher Kruegel, Engin Kirda, Giovanni Vigna, PiOS: Detecting Privacy Leaks in iOS Applications, 18th Annual Network and Distributed System Security Symposium, (NDSS 2011), San Diego, February 2011 (Distinguished Paper Award)
[download]
Konrad Rieck, Philipp Trinius, Carsten Willems, and Thorsten Holz: Automatic Analysis of Malware Behavior using Machine Learning, Journal of Computer Security, accepted, to appear.
Kaan Onarlioglu, Leyla Bilge, Andrea Lanzi, Davide Balzarotti, Engin Kirda, G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries, 26th Annual Computer Security Applications Conference (ACSAC), Austin, Texas, December 2010
[download]
Nenad Jovanovic, Christopher Kruegel, Engin Kirda, Static analysis for detecting taint-style vulnerabilities in web applications, Journal of Computer Security, 18 (2010) 861-907, IOS Press, 2010
[download]
Andrea Lanzi, Davide Balzarotti, Christopher Kruegel, Mihai Christoderescu, Engin Kirda, AccessMiner: Using System-Centric Models for Malware Protection, 17th ACM Conference on Computer and Communications Security (CCS), Chicago, October 2010
[download]
Marco Balduzzi, Christian Platzer, Thorsten Holz, Engin Kirda, Davide Balzarotti, Christopher Kruegel, Abusing Social Networks for Automated User Profiling, International Symposium on Recent Advances in Intrusion Detection (RAID 2010), Ottowa, Canada, September 2010
[download]
Matthias Neugschwandtner, Christian Platzer, Paolo Milani Comparetti, Ulrich Bayer, dAnubis - Dynamic Device Driver Analysis Based on Virtual Machine Introspection, Seventh Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Bonn, Germany, July 2010
[download]
Hanno Fallmann, Gilbert Wondracek and Christian Platzer, Covertly Probing Underground Economy Marketplaces, Seventh Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Bonn, Germany, July 2010
[download]
Gilbert Wondracek, Thorsten Holz, Christian Platzer, Engin Kirda, Christopher Kruegel, Is the Internet for Porn? An Insight Into the Online Adult Industry, The Ninth Workshop on the Economics of Information Security (WEIS 2010), Boston, MA, June 2010
[download]
Antonio Nappa, Aristide Fattori, Marco Balduzzi, Matteo Dell'Amico, Lorenzo Cavallaro, Take a Deep Breath: a Stealthy, Resilient and Cost-Effective Botnet Using Skype, Seventh Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Bonn, Germany, July 2010
[download]
Clemens Kolbitsch, Christopher Kruegel, Engin Kirda, Extending Mondrian Memory Protection, NATO RTO IST-091 Symposium, Antalya, Turkey, April 2010
[download]
Corrado Leita, Ulrich Bayer, Engin Kirda, Exploiting diverse observation perspectives to get insights on the malware landscape, International Conference on Dependable Systems and Networks (DSN 2010), Chicago, June 2010
[download]
Tobias Lauinger, Veikko Pankakoski, Davide Balzarotti, Engin Kirda, Honeybot: Your Man in the Middle for Automated Social Engineering, 3rd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), San Jose, April 2010
[download]
Clemens Kolbitsch, Thorsten Holz, Christopher Kruegel, Engin Kirda, Inspector Gadget: Automated Extraction of Proprietary Gadgets from Malware Binaries, IEEE Security and Privacy, Oakland, May 2010
[download]
Gilbert Wondracek, Thorsten Holz, Engin Kirda, Christopher Kruegel, A Practical Attack to De-Anonymize Social Network Users, IEEE Security and Privacy, Oakland, May 2010
[download]
Paolo Milani Comparetti, Guido Salvaneschi, Clemens Kolbitsch, Christopher Kruegel, Engin Kirda, Stefano Zanero, Identifying Dormant Functionality in Malware Programs, IEEE Security and Privacy, Oakland, May 2010.
[download]
Marco Balduzzi, Manuel Egele, Davide Balzarotti, Engin Kirda, and Christopher Kruegel, A Solution for the Automated Detection of Clickjacking Attacks, ASIACCS, Beijing, China, April 2010
[download]
William Robertson, Federico Maggi, Christopher Kruegel, Giovanni Vigna, Effective Anomaly Detection with Scarce Training Data, Network and Distributed System Security Symposium (NDSS 2010), San Diego, February 2010
[download]
Davide Balzarotti, Marco Cova, Christoph Karlberger, Christopher Kruegel, Engin Kirda, and Giovanni Vigna, Efficient Detection of Split Personalities in Malware, 17th Annual Network and Distributed System Security Symposium (NDSS 2010), San Diego, February 2010
[download]
Manuel Egele, Clemens Kolbitsch, Christian Platzer, Removing web spam links from search engine results, Journal of Computer Virology, Springer Verlag, DOI 10.1007/s11416-009-0132-6, August 2009
[download]
Manuel Egele, Leyla Bilge, Engin Kirda, Christopher Kruegel, CAPTCHA Smuggling: Hijacking Web Browsing Sessions to Create CAPTCHA Farms, 25th Symposium On Applied Computing (SAC), Track on Information Security Research and Applications, Lusanne, Switzerland, March 2010
[download]
Konrad Rieck, Guido Schwenk, Tobias Limmer, Thorsten Holz, Pavel Laskov, Botzilla: Detecting the "Phoning Home" of Malicious Software, 25th Symposium On Applied Computing (SAC), Track on Information Security Research and Applications, Lusanne, Switzerland, March 2010
[download]
Andreas Dewald, Thorsten Holz, Felix C. Freiling, ADSandbox: Sandboxing JavaScript to ?ght Malicious Websites, 25th Symposium On Applied Computing (SAC), Track on Information Security Research and Applications, Lusanne, Switzerland, March 2010
[download]
Ulrich Bayer, Engin Kirda, Christopher Kruegel, Improving the Efficiency of Dynamic Malware Analysis, 25th Symposium On Applied Computing (SAC), Track on Information Security Research and Applications, Lusanne, Switzerland, March 2010
[download]
Brett Stone-Gross, Andreas Moser, Christopher Kruegel, Kevin Almaroth, Engin Kirda, FIRE: FInding Rogue nEtworks, 25th Annual Computer Security Applications Conference (ACSAC), Honolulu, December 2009
[download]
Sean Ford, Marco Cova, Christopher Kruegel, Giovanni Vigna, Analyzing and Detecting Malicious Flash Advertisements 25th Annual Computer Security Applications Conference (ACSAC), Honolulu, December 2009
[download]
Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski, Richard Kemmerer, Christopher Kruegel, and Giovanni Vigna, our Botnet is My Botnet: Analysis of a Botnet Takeover, 16th ACM Conference on Computer and Communications Security (CCS), Chicago, November 2009
[download]
Monirul Sharif, Wenke Lee, Weidong Cui, Andrea Lanzi, Secure In-VM Monitoring Using Hardware Virtualization, 16th ACM Conference on Computer and Communications Security (CCS), Chicago, IL, November 2009
[download]
Peter Wurzinger, Leyla Bilge, Thorsten Holz, Jan Goebel, Christopher Kruegel, Engin Kirda, Automatically Generating Models for Botnet Detection, 14th European Symposium on Research in Computer Security (ESORICS 2009), Saint Malo, Brittany, France, September 2009
[download]
Thorsten Holz, Markus Engelberth, Felix Freiling, Learning More About the Underground Economy: A Case-Study of Keyloggers and Dropzones, 14th European Symposium on Research in Computer Security (ESORICS 2009), Saint Malo, Brittany, France, September 2009
[download]
Andreas Stamminger, Christopher Kruegel, Giovanni Vigna, Engin Kirda, "Automated Spyware Collection and Analysis", Information Security Conference (ISC) 2009, Pisa, Italy, September 2009
[download]
Clemens Kolbitsch, Paolo Milani Comparetti, Christopher Kruegel, Engin Kirda, Xiaoyong Zhou, and Xiaofeng Wang, Effective and Efficient Malware Detection at the End Host, in USENIX Security '09, Montreal, Canada, August 2009
[download]
Engin Kirda, Nenad Jovanovich, Christopher Kruegel, Giovanni Vigna, Client-Side Cross-Site Scripting Protection, Computers and Security Journal, Elsevier, Vol: 28, No: 7
[download]
Giovanni Vigna, Fredrik Valeur, Davide Balzarotti, William Robertson, Christopher Kruegel, and Engin Kirda, Reducing errors in the anomaly-based detection of web-based attacks through the combined analysis of web requests and SQL queries, Journal of Computer Security, 17(3): 305-329, 2009
[download]
Federico Maggi, William Robertson, Christopher Kruegel, Giovanni Vigna, Protecting a Moving Target: Addressing Web Application Concept Drift, International Symposium on Recent Advances in Intrusion Detection (RAID 2009), St Malo, France, September 2009
[download]
Manuel Egele, Peter Wurzinger, Christopher Kruegel, and Engin Kirda, Defending Browsers against Drive-by Downloads: Mitigating Heap-spraying Code Injection Attacks, Sixth Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Milan, Italy, June 2009
[download]
Manuel Egele, Engin Kirda, and Christopher Kruegel, Mitigating Drive-by Download Attacks: Challenges and Open Problems, Open Research Problems in Network Security Workshop (iNetSec 2009), Zurich, April 2009
[download]
Ulrich Bayer, Imam Habibi, Davide Balzarotti, Engin Kirda, and Christopher Kruegel, Insights Into Current Malware Behavior, 2nd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), Boston, MA, April 2009
[download]
Manuel Egele, Christopher Kruegel, Engin Kirda, Removing Web Spam Links from Search Engine Results, 18th European Institute for Computer Antivirus Research (EICAR 2009) Annual Conference, Berlin, May 2009
[download]
Peter Wurzinger, Christian Platzer, Christian Ludl, Engin Kirda, and Christopher Kruegel, SWAP: Mitigating XSS Attacks using a Reverse Proxy, The 5th International Workshop on Software Engineering for Secure Systems (SESS'09), 31st International Conference on Software Engineering (ICSE), IEEE Computer Society, Vancouver, Canada, May 2009
[download]
Paolo Milani Comparetti, Gilbert Wondracek, Christopher Kruegel, and Engin Kirda, Prospex: Protocol Specification Extraction, IEEE Security and Privacy, Oakland, May 2009
[download]
Leyla Bilge, Thorsten Strufe, Davide Balzarotti, and Engin Kirda, All Your Contacts Are Belong to Us: Automated Identity Theft Attacks on Social Networks, 18th International World Wide Web Conference (WWW 2009), Madrid, April 2009
[download]
Stefan Mitterhofer, Christian Platzer, Engin Kirda, and Christopher Kruegel, Server-side Bot Detection in Massively Multiplayer Online Games, IEEE Security & Privacy, Special Issue - Online Gaming Security
[download]
Ulrich Bayer, Paolo Milani, Clemens Hlauschek, Christopher Kruegel, and Engin Kirda, Scalable, Behavior-Based Malware Clustering, 16th Annual Network and Distributed System Security Symposium (NDSS 2009), San Diego, February 2009
[download]
Julio Canto, Marc Dacier, Engin Kirda, and Corrado Leita, Large Scale Malware Collection: Lessons Learned, IEEE SRDS Workshop on Sharing Field Data and Experiment Measurements on Resilience of Distributed Computing Systems, Naples, Italy, October 2008
[download]
Guenther Starnberger, Christopher Kruegel, and Engin Kirda, Overbot - A botnet protocol based on Kademlia, 4th International Conference on Security and Privacy in Communication Networks (SecureComm), Istanbul, Turkey, September 2008
[download]
Eric Medvet, Engin Kirda, Christopher Kruegel, Visual-Similarity-Based Phishing Detection, 4th International Conference on Security and Privacy in Communication Networks (SecureComm), Istanbul, Turkey, September 2008
[download]
Sean McAllister, Engin Kirda, and Christopher Kruegel, Expanding Human Interactions for In-Depth Testing of Web Applications, 11th Symposium on Recent Advances in Intrusion Detection (RAID), Boston, MA, September 2008
[download]
Marco Cova, Christopher Kruegel, and Giovanni Vigna, There Is No Free Phish: An Analysis of "Free" and Live Phishing Kits, Usenix Workshop on Offensive Technologies (WOOT), San Jose, July 2008
[download]
Corrado Leita, V.H. Pham, Olivier Thonnard, E. Ramirez-Silva, Fabian Pouget, Engin Kirda , Marc Dacier, The Leurre.com Project: Collecting Internet Threats Information using a Worldwide Distributed Honeynet, In Proceedings of the 1st WOMBAT workshop, IEEE Computer Society, Amsterdam, April 2008
[download]
Brett Stone-Gross, David Sigal, Rob Cohn, John Morse, Kevin Almeroth, and Christopher Kruegel, VeriKey: A Dynamic Certificate Verification System for Public Key Exchanges, DIMVAi 2008, Paris, July 2008
[download]
Marco Cova, Vika Felmetsger, Davide Balzarotti, Nenad Jovanovic, Christopher Kruegel, Engin Kirda, Giovanni Vigna, Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications, IEEE Security and Privacy, Oakland, May 2008
[download]
Gilbert Wondracek, Paolo Comparetti Milani, Christopher Kruegel and Engin Kirda, Automatic Network Protocol Analysis, 15th Annual Network and Distributed System Security Symposium (NDSS 2008), San Diego, February 2008
[download]
Davide Balzarotti, William Robertson, Christopher Kruegel, and Giovanni Vigna, Improving Signature Testing Through Dynamic Data Flow Analysis, 23rd Annual Computer Security Applications Conference (ACSAC), Miami Beach, Florida, December 2007
[download]
Andreas Moser, Christopher Kruegel, and Engin Kirda, Limits of Static Analysis for Malware Detection, 23rd Annual Computer Security Applications Conference (ACSAC), Miami Beach, Florida, December 2007
[download]
Martin Szydlowski, Christopher Kruegel, and Engin Kirda, Secure Input for Web Applications, 23rd Annual Computer Security Applications Conference (ACSAC), Miami Beach, Florida, December 2007
[download]
Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, and Engin Kirda, Panorama: Capturing System-wide Information Flow for Malware Detection and Analysis, 14th ACM Conference on Computer and Communications Security, Alexandria, VA, November 2007
[download]
Christoph Karlberger, Guenter Bayler, Christopher Kruegel, and Engin Kirda, Exploiting Redundancy in Natural Language to Penetrate Bayesian Spam Filters, First USENIX Workshop on Offensive Technologies (WOOT '07), Boston, August 2007
[download]
Thomas Raffetseder, Christopher Kruegel, and Engin Kirda, Detecting System Emulators, Information Security Conference (ISC 2007), Valparaiso, Chile, October 2007 (Best Student Paper Award)
[download]
Mihai Christodorescu, Somesh Jha, and Christopher Kruegel, Mining Specifications of Malicious Behavior, 6th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering (ESEC/FSE 2007), Dubrovnik, Croatia, September 2007 (Best Paper Award)
[download]
Angelo Rosiello, Engin Kirda, Christopher Kruegel, and Fabrizio Ferrandi, A Layout-Similarity-Based Approach for Detecting Phishing Pages, IEEE International Conference on Security and Privacy in Communication Networks (SecureComm), Nice, France, September 2007
[download]
Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin, and Dawn Song, Dynamic Spyware Analysis, USENIX Annual Technical Conference, Santa Clara, CA, June 2007
[download]
Christian Ludl, Sean McAllister, Engin Kirda, and Christopher Kruegel, On the Effectiveness of Techniques to Detect Phishing Sites, Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA) 2007 Conference, Lucerne, Switzerland, July 2007
[download]
Thomas Raffetseder, Engin Kirda, and Christopher Kruegel, Building Anti-Phishing Browser Plug-Ins: An Experience Report, The 3rd International Workshop on Software Engineering for Secure Systems (SESS07), 29th International Conference on Software Engineering (ICSE), Minneapolis, IEEE Computer Society Press, May 2007
[download]
Andreas Moser, Christopher Kruegel, and Engin Kirda, Exploring Multiple Execution Paths for Malware Analysis, IEEE Symposium on Security and Privacy, Oakland, May 2007
[download]
Philipp Vogt, Florian Nentwich, Nenad Jovanovic, Christopher Kruegel, Engin Kirda and Giovanni Vigna, Cross Site Scripting Prevention with Dynamic Data Tainting and Static Analysis, 14th Annual Network and Distributed System Security Symposium (NDSS 2007), San Diego, CA, February 2007
[download]
Nenad Jovanovic, Engin Kirda and Christopher Kruegel, Preventing Cross Site Request Forgery Attacks, IEEE International Conference on Security and Privacy in Communication Networks (SecureComm), Baltimore, MD, August 2006
[download] [download technical report]
Patrick Klinkoff, Christopher Kruegel, Engin Kirda and Giovanni Vigna, Extending .NET Security to Unmanaged Code, 9th Information Security Conference (ISC 2006), Samos, Greece, September 2006
[download]
Ulrich Bayer, Andreas Moser, Christopher Kruegel, and Engin Kirda, Dynamic Analysis of Malicious Code, Journal in Computer Virology, Springer Computer Science
[download]
Engin Kirda, Christopher Kruegel, Greg Banks, Giovanni Vigna, and Richard A. Kemmerer, Behavior-Based Spyware Detection, in USENIX Security '06, Vancouver, Canada, August 2006
[download]
Nenad Jovanovic, Christopher Kruegel, and Engin Kirda, Precise Alias Analysis for Syntactic Detection of Web Application Vulnerabilities, ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, Ottowa, Canada, June 2006
[download]
Manuel Egele, Martin Szydlowski, Engin Kirda, and Christopher Kruegel, Using Static Program Analysis to Aid Intrusion Detection, Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA) 2006 Conference, Berlin, Germany, July 2006
[download]
Stefan Kals, Engin Kirda, Christopher Kruegel, and Nenad Jovanovic, SecuBat: A Web Vulnerability Scanner, The 15th International World Wide Web Conference (WWW 2006), Edinburgh, Scotland, May 2006
[download]
Ulrich Bayer, Christopher Kruegel, and Engin Kirda, TTAnalyze: A Tool for Analyzing Malware, 15th European Institute for Computer Antivirus Research (EICAR 2006) Annual Conference, Hamburg, Germany, April 2006 (Best Paper Award)
[download]
Nenad Jovanovic, Christopher Kruegel, and Engin Kirda, Pixy: A Static Analysis Tool for Detecting Web Application Vulnerabilities (Short Paper), 2006 IEEE Symposium on Security and Privacy, Oakland, CA, May 2006
[download]
Engin Kirda and Christopher Kruegel, Protecting Users against Phishing Attacks (Best of COMPSAC 2005), The Computer Journal, Oxford University Press, 2006.
[download]
Engin Kirda, Christopher Kruegel, Giovanni Vigna, and Nenad Jovanovic, Noxes: A Client-Side Solution for Mitigating Cross Site Scripting Attacks, 21st ACM Symposium on Applied Computing (SAC 2006), Security Track, Dijon, France, April 2006.
[download]
Fredrik Valeur, Giovanni Vigna, Christopher Kruegel, and Engin Kirda, An Anomaly-driven Reverse Proxy for Web Applications, 21st ACM Symposium on Applied Computing (SAC 2006), Security Track, Dijon, France, April 2006.
[download]
William Robertson, Giovanni Vigna, Christopher Kruegel and Richard Kemmerer, Using Generalization and Characterization Techniques in the Anomaly-based Detection of Web Attacks, In Proceedings of the Network and Distributed System Security Symposium (NDSS), Internet Society. USA, February 2006.
[download]
Christopher Kruegel, Engin Kirda, Darren Mutz, William Robertson, and Giovanni Vigna, Polymorphic Worm Detection Using Structural Information of Executables, 8th Symposium on Recent Advances in Intrusion Detection (RAID), Lecture Notes in Computer Science, Springer Verlag. USA, September 2005.
[download]
Christopher Kruegel, Engin Kirda, Darren Mutz, William Robertson, Giovanni Vigna, Automating Mimicry Attacks Using Static Binary Analysis, in USENIX Security '05, Baltimore, US, August 2005.
[download]
Engin Kirda and Christopher Kruegel, Protecting Users agains Phishing Attacks with AntiPhish, 29th Annual International Computer Software and Applications Conference (COMPSAC 2005), Edinburgh, Scotland, July 2005.
[download]
Christopher Kruegel, Giovanni Vigna, and William Robertson, A multi-model approach to the detection of web-based attacks, Computer Networks, Volume 48, Issue 5, Elsevier. July 2005.
[download]
Darren Mutz, Christopher Kruegel, William Robertson, Giovanni Vigna, and Richard Kemmerer, Reverse Engineering of Network Signatures, Information Technology Security Conference (AusCERT). Australia, May 2005.
[download]

Working seminar proceedings

Georg Carle, Falko Dressler, Richard A. Kemmerer, Hartmut Konig, Christopher Kruegel: Perspectives Workshop: Network Attack Detection and Defense, 2.3. - 6.3.2008 Internationales Begegnungs- und Forschungszentrum fuer Informatik (IBFI), Schloss Dagstuhl, Germany 2008
Lothar Braun, Falko Dressler, Thorsten Holz, Engin Kirda, Jan Kohlrausch, Christopher Kruegel, Tobias Limmer, Konrad Rieck, James P. G. Sterbenz: 08102 Working Group -- Requirements for Network Monitoring from an IDS Perspective, Dagstuhlseminar Proceedings, Network Attack Detection and Defense 2008
Marc Dacier, Herve Debar, Thorsten Holz, Engin Kirda, Jan Kohlrausch, Christopher Kruegel, Konrad Rieck, James P. G. Sterbenz: 8102 Working Group -- Attack Taxonomy, Dagstuhlseminar Proceedings, Network Attack Detection and Defense 2008

White Papers

Viviane Zwanger, An Introduction To Writing TDI Filter Drivers, Sophia Antipolis, March 2010.
[download]
Sylvester Keil and Clemens Kolbitsch, Stateful Fuzzing of Wireless Device Drivers in an Emulated Environment, Black Hat Japan, Tokyo, October 2007.
[download]

Technical Reports

Andrubis: Android Malware Under The Magnifying Glass (technical report)
Lukas Weichselbaum, Matthias Neugschwandtner, Martina Lindorfer, Yanick Fratantonio, Victor van der Veen, Christian Platzer, TR-ISECLAB-0414-001
[download]
Privacy Implications of Ubiquitous Caching in Named Data Networking Architectures (technical report)
Tobias Lauinger, Nikolaos Laoutaris, Pablo Rodriguez, Thorsten Strufe, Ernst Biersack, Engin Kirda, TR-iSecLab-0812-001
[download]
ForeCast - Skimming off the Malware Cream (technical report)
Matthias Neugschwandtner, Paolo Milani Comparetti, Gregoire Jacob, Christopher Kruegel, TR-iSecLab-0911-001
[download]
Abusing Social Networks for Automated User Profiling (technical report)
Marco Balduzzi, Christian Platzer, Thorsten Holz, Engin Kirda, Davide Balzarotti and Christopher Kruegel, EURECOM Research Report RR-10-233 - March 3, 2010
[download]
A Practical Attack to De-Anonymize Social Network Users
Gilbert Wondracek, Thorsten Holz, Engin Kirda, and Christopher Kruegel, TR-iSecLab-0110-001
[download]
Automatically Generating Models for Botnet Detection
Peter Wurzinger, Leyla Bilge, Thorsten Holz, Jan Goebel, Christopher Kruegel, Engin Kirda. TR-iSecLab-0609-001
[download]
Visual-Similarity-Based Phishing Detection
Eric Medved, Engin Kirda, and Christopher Kruegel. TR-iSeclab-0708-001.
[download]
Dynamic Spyware Analysis
Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin, and Dawn Song. TR-Seclab-0107-001.
[download]
Practical Security Aspects of Digital Signature Systems
Florian Nentwich, Engin Kirda, and Christopher Kruegel. TR-Seclab-0606-001.
[download]


Last Modified: Mon Apr 20 09:58:23 CEST 2015


International Secure Systems Lab www.iseclab.org