@inproceedings{sec2018-rampart,
author = {Meng, Wei and Qian, Chenxiong and Hao, Shuang and Borgolte, Kevin and Vigna, Giovanni and Kruegel, Christopher and Lee, Wenke},
booktitle = {Proceedings of the 27th USENIX Security Symposium},
month = {aug},
publisher = {USENIX},
series = {USENIX Security},
title = {Rampart: Protecting Web Applications from CPU-Exhaustion Denial-of-Service Attacks},
year = {2018}
}
@inproceedings{sp2018-dnssec-ipv6,
author = {Borgolte, Kevin and Hao, Shuang and Fiebig, Tobias and Vigna, Giovanni},
booktitle = {Proceedings of the 39th IEEE Symposium on Security \& Privacy},
month = {may},
series = {S\&P},
title = {Enumerating Active IPv6 Hosts for Large-scale Security Scans via DNSSEC-signed Reverse Zones},
year = {2018}
}
@inproceedings{pam2018-rdns,
author = {Fiebig, Tobias and Borgolte, Kevin and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni and Feldmann, Anja},
booktitle = {Proceedings of the 19th Passive and Active Measurement Conference},
month = {mar},
series = {PAM},
title = {In rDNS We Trust: Revisiting a Common Data-Source's Reliability},
year = {2018}
}
@inproceedings{ndss2018-cloud-strife,
author = {Borgolte, Kevin and Fiebig, Tobias and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 25th Network and Distributed Systems Security Symposium},
month = {feb},
publisher = {ISOC},
series = {NDSS},
title = {Cloud Strife: Mitigating the Security Risks of Domain-Validated Certificates},
year = {2018}
}
@inproceedings{pam2017-nxdomain,
author = {Fiebig, Tobias and Borgolte, Kevin and Hao, Shuang and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 18th Passive and Active Measurement Conference},
month = {mar},
series = {PAM},
title = {Something From Nothing (There): Collecting Global IPv6 Datasets From DNS},
year = {2017}
}
@inproceedings{ccs2015-drops-for-stuff,
author = {Hao, Shuang and Borgolte, Kevin and Nikiforakis, Nick and Stringhini, Gianluca and Egele, Manuel and Eubanks, Michael and Krebs, Brian and Vigna, Giovanni},
booktitle = {Proceedings of the 22nd ACM Conference on Computer and Communications Security},
month = {nov},
publisher = {ACM},
series = {CCS},
title = {Drops for Stuff: An Analysis of Reshipping Mule Scams},
year = {2015}
}
@inproceedings{sec2015-meerkat,
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 24th USENIX Security Symposium},
month = {aug},
publisher = {USENIX},
series = {USENIX Security},
title = {Meerkat: Detecting Website Defacements through Image-based Object Recognition},
year = {2015}
}
@inproceedings{raid2014-websso,
author = {Cao, Yinzhi and Shoshitaishvili, Yan and Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni and Chen, Yan},
booktitle = {Proceedings of the 17th International Symposium on Research in Attacks, Intrusions and Defense},
month = {sep},
publisher = {Springer},
series = {RAID},
title = {Protecting Web Single Sign-on against Relying Party Impersonation Attacks through a Bi-directional Secure Channel with Authentication},
year = {2014}
}
@inproceedings{3gse2014-10-years-ictf-good-bad-and-ugly,
author = {Vigna, Giovanni and Borgolte, Kevin and Corbetta, Jacopo and Doupé, Adam and Fratantonio, Yanick and Invernizzi, Luca and Kirat, Dhilung and Shoshitaishvili, Yan},
booktitle = {Proceedings of the 1st USENIX Summit on Gaming, Games and Gamification in Security Education},
month = {aug},
organization = {USENIX},
series = {3GSE},
title = {Ten Years of iCTF: The Good, The Bad, and The Ugly},
year = {2014}
}
@inproceedings{www2014dev-relevant-change-detection,
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 23rd International World Wide Web Conference Companion},
month = {apr},
note = {Developers Track},
publisher = {IW3C2},
series = {WWW},
title = {Relevant Change Detection: A Framework for the Precise Extraction of Modified and Novel Web-based Content as a Filtering Technique for Analysis Engines},
year = {2014}
}
@inproceedings{ccs2013-delta,
author = {Borgolte, Kevin and Kruegel, Christopher and Vigna, Giovanni},
booktitle = {Proceedings of the 20th ACM Conference on Computer and Communications Security},
month = {nov},
publisher = {ACM},
series = {CCS},
title = {Delta: Automatic Identification of Unknown Web-based Infection Campaigns},
year = {2013}
}
@article{phrack2017-shellphish,
author = {Bianchi, Antonio and Borgolte, Kevin and Corbetta, Jacopo and Disperati, Francesco and Dutcher, Andrew and Grosen, John and Grosen, Paul and Machiry, Aravind and Salls, Christopher and Shoshitaishvili, Yan and Stephens, Nick and Vigna, Giovanni and Wang, Ruoyu},
journal = {Phrack},
month = {jan},
note = {(Authors listed alphabetically)},
number = {70},
title = {Cyber Grand Shellphish},
url = {http://phrack.org/papers/cyber_grand_shellphish.html},
volume = {15},
year = {2017}
}
@article{tifs2015-deanon,
author = {Payer, Mathias and Huang, Ling and Gong, Neil Zhenqiang and Borgolte, Kevin and Frank, Mario},
journal = {IEEE Transactions on Information Forensics and Security},
number = {1},
title = {What You Submit is Who You Are: A Multi-Modal Approach for Deanonymizing Scientific Publications},
volume = {10},
year = {2015}
}
@article{spm2018-mechaphish,
author = {Shoshitaishvili, Yan and Bianchi, Antonio and Borgolte, Kevin and Cama, Amat and Corbetta, Jacopo and Disperati, Francesco and Dutcher, Andrew and Grosen, John and Grosen, Paul and Machiry, Aravind and Salls, Christopher and Stephens, Nick and Wang, Ruoyu and Vigna, Giovanni},
issue = {2},
journal = {IEEE Security \& Privacy - Special Issue on Hacking without Humans},
month = {march},
title = {Mechanical Phish: Resilient Autonomous Hacking},
url = {https://ieeexplore.ieee.org/document/8328966/},
volume = {16},
year = {2018}
}