@inproceedings{sec2018-rampart,
title = {{Rampart: Protecting Web Applications from CPU-Exhaustion Denial-of-Service Attacks}},
author = {Meng, Wei and Qian, Chenxiong and Hao, Shuang and Borgolte, Kevin and Vigna, Giovanni and Kruegel, Christopher and Lee, Wenke},
booktitle = {Proceedings of the 27th USENIX Security Symposium},
series = {USENIX Security},
month = {August},
year = {2018}
}
@inproceedings{sp2018-dnssec-ipv6,
title = {{Enumerating Active IPv6 Hosts for Large-scale Security Scans via DNSSEC-signed Reverse Zones}},
author = {Borgolte, Kevin and Hao, Shuang and Fiebig, Tobias and Vigna, Giovanni},
booktitle = {Proceedings of the 39th IEEE Symposium on Security \& Privacy},
series = {S\&P},
month = {May},
year = {2018}
}
@inproceedings{pam2018-rdns,
title = {{In rDNS We Trust: Revisiting a Common Data-Source's Reliability}},
author = {Fiebig, Tobias and Borgolte, Kevin and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni and Feldmann, Anja},
booktitle = {Proceedings of the 19th Passive and Active Measurement Conference},
series = {PAM},
month = {March},
year = {2018}
}
@inproceedings{ndss2018-cloud-strife,
title = {{Cloud Strife: Mitigating the Security Risks of Domain-Validated Certificates}},
author = {Borgolte, Kevin and Fiebig, Tobias and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 25th Network and Distributed Systems Security Symposium},
series = {NDSS},
month = {February},
year = {2018},
publisher = {ISOC}
}
@inproceedings{pam2017-nxdomain,
title = {{Something From Nothing (There): Collecting Global IPv6 Datasets From DNS}},
author = {Fiebig, Tobias and Borgolte, Kevin and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 18th Passive and Active Measurement Conference},
series = {PAM},
month = {March},
year = {2017}
}
@inproceedings{ccs2015-drops-for-stuff,
title = {{Drops for Stuff: An Analysis of Reshipping Mule Scams}},
author = {Hao, Shuang and Borgolte, Kevin and Nikiforakis, Nick and Stringhini, Gianluca and Egele, Manuel and Eubanks, Michael and Krebs, Brian and Vigna, Giovanni},
booktitle = {Proceedings of the 22nd ACM Conference on Computer and Communications Security},
series = {CCS},
month = {November},
year = {2015},
publisher = {ACM}
}
@inproceedings{sec2015-meerkat,
title = {{Meerkat: Detecting Website Defacements through Image-based Object Recognition}},
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 24th USENIX Security Symposium},
series = {USENIX Security},
month = {August},
year = {2015},
publisher = {USENIX}
}
@inproceedings{raid2014-websso,
title = {{Protecting Web Single Sign-on against Relying Party Impersonation Attacks through a Bi-directional Secure Channel with Authentication}},
author = {Cao, Yinzhi and Shoshitaishvili, Yan and Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni and Chen, Yan},
booktitle = {Proceedings of the 17th International Symposium on Research in Attacks, Intrusions and Defense},
series = {RAID},
month = {September},
year = {2014},
publisher = {Springer}
}
@inproceedings{3gse2014-10-years-ictf-good-bad-and-ugly,
title = {{Ten Years of iCTF: The Good, The Bad, and The Ugly}},
author = {Vigna, Giovanni and Borgolte, Kevin and Corbetta, Jacopo and Doupé, Adam and Fratantonio, Yanick and Invernizzi, Luca and Kirat, Dhilung and Shoshitaishvili, Yan},
booktitle = {Proceedings of the 1st USENIX Summit on Gaming, Games and Gamification in Security Education},
series = {3GSE},
month = {August},
year = {2014},
organization = {USENIX}
}
@inproceedings{www2014dev-relevant-change-detection,
title = {{Relevant Change Detection: A Framework for the Precise Extraction of Modified and Novel Web-based Content as a Filtering Technique for Analysis Engines}},
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 23rd International World Wide Web Conference Companion},
series = {WWW},
month = {April},
year = {2014},
note = {Developers Track},
publisher = {IW3C2}
}
@inproceedings{ccs2013-delta,
title = {{Delta: Automatic Identification of Unknown Web-based Infection Campaigns}},
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 20th ACM Conference on Computer and Communications Security},
series = {CCS},
month = {November},
year = {2013},
publisher = {ACM}
}
@article{phrack2017-shellphish,
title = {{Cyber Grand Shellphish}},
author = {Bianchi, Antonio and Borgolte, Kevin and Corbetta, Jacopo and Disperati, Francesco and Dutcher, Andrew and Grosen, John and Grosen, Paul and Machiry, Aravind and Salls, Christopher and Shoshitaishvili, Yan and Stephens, Nick and Vigna, Giovanni and Wang, Ruoyu},
month = {January},
year = {2017},
journal = {Phrack},
note = {(Authors listed alphabetically)},
number = {70},
url = {http://phrack.org/papers/cyber_grand_shellphish.html},
volume = {15}
}
@article{tifs2015-deanon,
title = {{What You Submit is Who You Are: A Multi-Modal Approach for Deanonymizing Scientific Publications}},
author = {Payer, Mathias and Huang, Ling and Gong, Neil Zhenqiang and Borgolte, Kevin and Frank, Mario},
year = {2015},
journal = {IEEE Transactions on Information Forensics and Security},
number = {1},
volume = {10}
}
@article{spm2018-mechaphish,
title = {{Mechanical Phish: Resilient Autonomous Hacking}},
author = {Shoshitaishvili, Yan and Bianchi, Antonio and Borgolte, Kevin and Cama, Amat and Corbetta, Jacopo and Disperati, Francesco and Dutcher, Andrew and Grosen, John and Grosen, Paul and Machiry, Aravind and Salls, Christopher and Stephens, Nick and Wang, Ruoyu and Vigna, Giovanni},
month = {March},
year = {2018},
issue = {2},
journal = {IEEE Security \& Privacy - Special Issue on Hacking without Humans},
url = {https://ieeexplore.ieee.org/document/8328966/},
volume = {16}
}