We stand with Ukraine  

Yan Shoshitaishvili

Orcid: 0000-0001-8832-1789

According to our database1, Yan Shoshitaishvili authored at least 79 papers between 2012 and 2024.

Collaborative distances:

Timeline

Legend:

Book 
In proceedings 
Article 
PhD thesis 
Dataset
Other 

Links

On csauthors.net:

Bibliography

2024
ARVO: Atlas of Reproducible Vulnerabilities for Open Source Software.
[BibTeX]
[DOI]
Xiang Mei
,
Pulkit Singh Singaria
,
Jordi Del Castillo
,
Haoran Xi
,
Abdelouahab Benchikh
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Hammond Pearce
,
Brendan Dolan-Gavitt
CoRR, 2024

The WMDP Benchmark: Measuring and Reducing Malicious Use With Unlearning.
[BibTeX]
[DOI]
Nathaniel Li
,
Alexander Pan
,
Anjali Gopal
,
Summer Yue
,
Daniel Berrios
,
Alice Gatti
,
Justin D. Li
,
Ann-Kathrin Dombrowski
,
Shashwat Goel
,
Long Phan
,
Gabriel Mukobi
,
Nathan Helm-Burger
,
Rassin Lababidi
,
Lennart Justen
,
Andrew B. Liu
,
Michael Chen
,
Isabelle Barrass
,
Oliver Zhang
,
Xiaoyuan Zhu
,
Rishub Tamirisa
,
Bhrugu Bharathi
,
Adam Khoja
,
Zhenqi Zhao
,
Ariel Herbert-Voss
,
Cort B. Breuer
,
Andy Zou
,
Mantas Mazeika
,
Zifan Wang
,
Palash Oswal
,
Weiran Liu
,
Adam A. Hunt
,
Justin Tienken-Harder
,
Kevin Y. Shih
,
Kemper Talley
,
John Guan
,
Russell Kaplan
,
Ian Steneker
,
David Campbell
,
Brad Jokubaitis
,
Alex Levinson
,
Jean Wang
,
William Qian
,
Kallol Krishna Karmakar
,
Steven Basart
,
Stephen Fitz
,
Mindy Levine
,
Ponnurangam Kumaraguru
,
Uday Kiran Tupakula
,
Vijay Varadharajan
,
Yan Shoshitaishvili
,
Jimmy Ba
,
Kevin M. Esvelt
,
Alexandr Wang
,
Dan Hendrycks
CoRR, 2024

TYGR: Type Inference on Stripped Binaries using Graph Neural Networks.
[BibTeX]
[DOI]
Chang Zhu
,
Ziyang Li
,
Anton Xue
,
Ati Priya Bajaj
,
Wil Gibbs
,
Yibo Liu
,
Rajeev Alur
,
Tiffany Bao
,
Hanjun Dai
,
Adam Doupé
,
Mayur Naik
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Aravind Machiry
Proceedings of the 33rd USENIX Security Symposium, 2024

Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation.
[BibTeX]
[DOI]
Ziyi Guo
,
Dang K. Le
,
Zhenpeng Lin
,
Kyle Zeng
,
Ruoyu Wang
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Adam Doupé
,
Xinyu Xing
Proceedings of the 33rd USENIX Security Symposium, 2024

Operation Mango: Scalable Discovery of Taint-Style Vulnerabilities in Binary Firmware Services.
[BibTeX]
[DOI]
Wil Gibbs
,
Arvind S. Raj
,
Jayakrishna Menon Vadayath
,
Hui Jun Tay
,
Justin Miller
,
Akshay Ajayan
,
Zion Leonahenahe Basque
,
Audrey Dutcher
,
Fangzhou Dong
,
Xavier J. Maso
,
Giovanni Vigna
,
Christopher Kruegel
,
Adam Doupé
,
Yan Shoshitaishvili
,
Ruoyu Wang
Proceedings of the 33rd USENIX Security Symposium, 2024

Ahoy SAILR! There is No Need to DREAM of C: A Compiler-Aware Structuring Algorithm for Binary Decompilation.
[BibTeX]
[DOI]
Zion Leonahenahe Basque
,
Ati Priya Bajaj
,
Wil Gibbs
,
Jude O'Kain
,
Derron Miao
,
Tiffany Bao
,
Adam Doupé
,
Yan Shoshitaishvili
,
Ruoyu Wang
Proceedings of the 33rd USENIX Security Symposium, 2024

"Len or index or count, anything but v1": Predicting Variable Names in Decompilation Output with Transfer Learning.
[BibTeX]
[DOI]
Kuntal Kumar Pal
,
Ati Priya Bajaj
,
Pratyay Banerjee
,
Audrey Dutcher
,
Mutsumi Nakamura
,
Zion Leonahenahe Basque
,
Himanshu Gupta
,
Saurabh Arjun Sawant
,
Ujjwala Anantheswaran
,
Yan Shoshitaishvili
,
Adam Doupé
,
Chitta Baral
,
Ruoyu Wang
Proceedings of the IEEE Symposium on Security and Privacy, 2024

"Watching over the shoulder of a professional": Why Hackers Make Mistakes and How They Fix Them.
[BibTeX]
[DOI]
Irina Ford
,
Ananta Soneji
,
Faris Bugra Kokulu
,
Jayakrishna Vadayath
,
Zion Leonahenahe Basque
,
Gaurav Vipat
,
Adam Doupé
,
Ruoyu Wang
,
Gail-Joon Ahn
,
Tiffany Bao
,
Yan Shoshitaishvili
Proceedings of the IEEE Symposium on Security and Privacy, 2024

PWN The Learning Curve: Education-First CTF Challenges.
[BibTeX]
[DOI]
Connor Nelson
,
Yan Shoshitaishvili
Proceedings of the 55th ACM Technical Symposium on Computer Science Education, 2024

DOJO: Applied Cybersecurity Education in the Browser.
[BibTeX]
[DOI]
Connor Nelson
,
Yan Shoshitaishvili
Proceedings of the 55th ACM Technical Symposium on Computer Science Education, 2024

From Victims to Defenders: An Exploration of the Phishing Attack Reporting Ecosystem.
[BibTeX]
[DOI]
Zhibo Sun
,
Faris Bugra Kokulu
,
Penghui Zhang
,
Adam Oest
,
Gianluca Stringhini
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 27th International Symposium on Research in Attacks, 2024

Browser Polygraph: Efficient Deployment of Coarse-Grained Browser Fingerprints for Web-Scale Detection of Fraud Browsers.
[BibTeX]
[DOI]
Faezeh Kalantari
,
Mehrnoosh Zaeifi
,
Yeganeh Safaei
,
Marzieh Bitaab
,
Adam Oest
,
Gianluca Stringhini
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 2024 ACM on Internet Measurement Conference, 2024

The WMDP Benchmark: Measuring and Reducing Malicious Use with Unlearning.
[BibTeX]
[DOI]
Nathaniel Li
,
Alexander Pan
,
Anjali Gopal
,
Summer Yue
,
Daniel Berrios
,
Alice Gatti
,
Justin D. Li
,
Ann-Kathrin Dombrowski
,
Shashwat Goel
,
Gabriel Mukobi
,
Nathan Helm-Burger
,
Rassin Lababidi
,
Lennart Justen
,
Andrew B. Liu
,
Michael Chen
,
Isabelle Barrass
,
Oliver Zhang
,
Xiaoyuan Zhu
,
Rishub Tamirisa
,
Bhrugu Bharathi
,
Ariel Herbert-Voss
,
Cort B. Breuer
,
Andy Zou
,
Mantas Mazeika
,
Zifan Wang
,
Palash Oswal
,
Weiran Lin
,
Adam A. Hunt
,
Justin Tienken-Harder
,
Kevin Y. Shih
,
Kemper Talley
,
John Guan
,
Ian Steneker
,
David Campbell
,
Brad Jokubaitis
,
Steven Basart
,
Stephen Fitz
,
Ponnurangam Kumaraguru
,
Kallol Krishna Karmakar
,
Uday Kiran Tupakula
,
Vijay Varadharajan
,
Yan Shoshitaishvili
,
Jimmy Ba
,
Kevin M. Esvelt
,
Alexandr Wang
,
Dan Hendrycks
Proceedings of the Forty-first International Conference on Machine Learning, 2024

SandPuppy: Deep-State Fuzzing Guided by Automatic Detection of State-Representative Variables.
[BibTeX]
[DOI]
Vivin Paliath
,
Erik Trickel
,
Tiffany Bao
,
Ruoyu Wang
,
Adam Doupé
,
Yan Shoshitaishvili
Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2024

Nothing Personal: Understanding the Spread and Use of Personally Identifiable Information in the Financial Ecosystem.
[BibTeX]
[DOI]
Mehrnoosh Zaeifi
,
Faezeh Kalantari
,
Adam Oest
,
Zhibo Sun
,
Gail-Joon Ahn
,
Yan Shoshitaishvili
,
Tiffany Bao
,
Ruoyu Wang
,
Adam Doupé
Proceedings of the Fourteenth ACM Conference on Data and Application Security and Privacy, 2024

Deep Dive into Client-Side Anti-Phishing: A Longitudinal Study Bridging Academia and Industry.
[BibTeX]
[DOI]
Rana Pourmohamad
,
Steven Wirsz
,
Adam Oest
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Adam Doupé
,
Rida A. Bazzi
Proceedings of the 19th ACM Asia Conference on Computer and Communications Security, 2024

2023
Street Rep: A Privacy-Preserving Reputation Aggregation System.
[BibTeX]
[DOI]
Christophe Hauser
,
Shirin Nilizadeh
,
Yan Shoshitaishvili
,
Ni Trieu
,
Srivatsan Ravi
,
Christopher Kruegel
,
Giovanni Vigna
IACR Cryptol. ePrint Arch., 2023

Greenhouse: Single-Service Rehosting of Linux-Based Firmware Binaries in User-Space Emulation.
[BibTeX]
[DOI]
Hui Jun Tay
,
Kyle Zeng
,
Jayakrishna Menon Vadayath
,
Arvind S. Raj
,
Audrey Dutcher
,
Tejesh Reddy
,
Wil Gibbs
,
Zion Leonahenahe Basque
,
Fangzhou Dong
,
Zack Smith
,
Adam Doupé
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Ruoyu Wang
Proceedings of the 32nd USENIX Security Symposium, 2023

Toss a Fault to Your Witcher: Applying Grey-box Coverage-Guided Mutational Fuzzing to Detect SQL and Command Injection Vulnerabilities.
[BibTeX]
[DOI]
Erik Trickel
,
Fabio Pagani
,
Chang Zhu
,
Lukas Dresel
,
Giovanni Vigna
,
Christopher Kruegel
,
Ruoyu Wang
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Beyond Phish: Toward Detecting Fraudulent e-Commerce Websites at Scale.
[BibTeX]
[DOI]
Marzieh Bitaab
,
Haehyun Cho
,
Adam Oest
,
Zhuoer Lyu
,
Wei Wang
,
Jorij Abraham
,
Ruoyu Wang
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Targeted Privacy Attacks by Fingerprinting Mobile Apps in LTE Radio Layer.
[BibTeX]
[DOI]
Jaejong Baek
,
Pradeep Kumar Duraisamy Soundrapandian
,
Sukwha Kyung
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 53rd Annual IEEE/IFIP International Conference on Dependable Systems and Network, 2023

RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections.
[BibTeX]
[DOI]
Kyle Zeng
,
Zhenpeng Lin
,
Kangjie Lu
,
Xinyu Xing
,
Ruoyu Wang
,
Adam Doupé
,
Yan Shoshitaishvili
,
Tiffany Bao
Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, 2023

2022
CrawlPhish: Large-Scale Analysis of Client-Side Cloaking Techniques in Phishing.
[BibTeX]
[DOI]
Penghui Zhang
,
Adam Oest
,
Haehyun Cho
,
Zhibo Sun
,
RC Johnson
,
Brad Wardman
,
Shaown Sarker
,
Alexandros Kapravelos
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
IEEE Secur. Priv., 2022

Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability.
[BibTeX]
[DOI]
Kyle Zeng
,
Yueqi Chen
,
Haehyun Cho
,
Xinyu Xing
,
Adam Doupé
,
Yan Shoshitaishvili
,
Tiffany Bao
Proceedings of the 31st USENIX Security Symposium, 2022

Arbiter: Bridging the Static and Dynamic Divide in Vulnerability Discovery on Binary Programs.
[BibTeX]
[DOI]
Jayakrishna Vadayath
,
Moritz Eckert
,
Kyle Zeng
,
Nicolaas Weideman
,
Gokulkrishna Praveen Menon
,
Yanick Fratantonio
,
Davide Balzarotti
,
Adam Doupé
,
Tiffany Bao
,
Ruoyu Wang
,
Christophe Hauser
,
Yan Shoshitaishvili
Proceedings of the 31st USENIX Security Symposium, 2022

Unleash the Simulacrum: Shifting Browser Realities for Robust Extension-Fingerprinting Prevention.
[BibTeX]
[DOI]
Soroush Karami
,
Faezeh Kalantari
,
Mehrnoosh Zaeifi
,
Xavier J. Maso
,
Erik Trickel
,
Panagiotis Ilia
,
Yan Shoshitaishvili
,
Adam Doupé
,
Jason Polakis
Proceedings of the 31st USENIX Security Symposium, 2022

"Flawed, but like democracy we don't have a better system": The Experts' Insights on the Peer Review Process of Evaluating Security Papers.
[BibTeX]
[DOI]
Ananta Soneji
,
Faris Bugra Kokulu
,
Carlos E. Rubio-Medrano
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

Context-Auditor: Context-sensitive Content Injection Mitigation.
[BibTeX]
[DOI]
Faezeh Kalantari
,
Mehrnoosh Zaeifi
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 25th International Symposium on Research in Attacks, 2022

Hybrid Pruning: Towards Precise Pointer and Taint Analysis.
[BibTeX]
[DOI]
Dipanjan Das
,
Priyanka Bose
,
Aravind Machiry
,
Sebastiano Mariani
,
Yan Shoshitaishvili
,
Giovanni Vigna
,
Christopher Kruegel
Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2022

Mitigating Threats Emerging from the Interaction between SDN Apps and SDN (Configuration) Datastore.
[BibTeX]
[DOI]
Sana Habib
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 2022 on Cloud Computing Security Workshop, 2022

I'm SPARTACUS, No, I'm SPARTACUS: Proactively Protecting Users from Phishing by Intentionally Triggering Cloaking Behavior.
[BibTeX]
[DOI]
Penghui Zhang
,
Zhibo Sun
,
Sukwha Kyung
,
Hans Walter Behrens
,
Zion Leonahenahe Basque
,
Haehyun Cho
,
Adam Oest
,
Ruoyu Wang
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Gail-Joon Ahn
,
Adam Doupé
Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security, 2022

ViK: practical mitigation of temporal memory safety violations through object ID inspection.
[BibTeX]
[DOI]
Haehyun Cho
,
Jinbum Park
,
Adam Oest
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the ASPLOS '22: 27th ACM International Conference on Architectural Support for Programming Languages and Operating Systems, Lausanne, Switzerland, 28 February 2022, 2022

The Convergence of Source Code and Binary Vulnerability Discovery - A Case Study.
[BibTeX]
[DOI]
Alessandro Mantovani
,
Luca Compagna
,
Yan Shoshitaishvili
,
Davide Balzarotti
Proceedings of the ASIA CCS '22: ACM Asia Conference on Computer and Communications Security, Nagasaki, Japan, 30 May 2022, 2022

2021
Having Your Cake and Eating It: An Analysis of Concession-Abuse-as-a-Service.
[BibTeX]
[DOI]
Zhibo Sun
,
Adam Oest
,
Penghui Zhang
,
Carlos E. Rubio-Medrano
,
Tiffany Bao
,
Ruoyu Wang
,
Ziming Zhao
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 30th USENIX Security Symposium, 2021

Favocado: Fuzzing the Binding Code of JavaScript Engines Using Semantically Correct Test Cases.
[BibTeX]
[DOI]
Sung Ta Dinh
,
Haehyun Cho
,
Kyle Martin
,
Adam Oest
,
Kyle Zeng
,
Alexandros Kapravelos
,
Gail-Joon Ahn
,
Tiffany Bao
,
Ruoyu Wang
,
Adam Doupé
,
Yan Shoshitaishvili
Proceedings of the 28th Annual Network and Distributed System Security Symposium, 2021

MuTent: Dynamic Android Intent Protection with Ownership-Based Key Distribution and Security Contracts.
[BibTeX]
[DOI]
Pradeep Kumar Duraisamy Soundrapandian
,
Tiffany Bao
,
Jaejong Baek
,
Yan Shoshitaishvili
,
Adam Doupé
,
Ruoyu Wang
,
Gail-Joon Ahn
Proceedings of the 54th Hawaii International Conference on System Sciences, 2021

Everything You Ever Wanted to Know About Bitcoin Mixers (But Were Afraid to Ask).
[BibTeX]
[DOI]
Jaswant Pakki
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Tiffany Bao
,
Adam Doupé
Proceedings of the Financial Cryptography and Data Security, 2021

2020
Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers.
[BibTeX]
[DOI]
Haehyun Cho
,
Jinbum Park
,
Joonwon Kang
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 14th USENIX Workshop on Offensive Technologies, 2020

PhishTime: Continuous Longitudinal Measurement of the Effectiveness of Anti-phishing Blacklists.
[BibTeX]
[DOI]
Adam Oest
,
Yeganeh Safaei
,
Penghui Zhang
,
Brad Wardman
,
Kevin Tyers
,
Yan Shoshitaishvili
,
Adam Doupé
Proceedings of the 29th USENIX Security Symposium, 2020

Karonte: Detecting Insecure Multi-binary Interactions in Embedded Firmware.
[BibTeX]
[DOI]
Nilo Redini
,
Aravind Machiry
,
Ruoyu Wang
,
Chad Spensky
,
Andrea Continella
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 2020 IEEE Symposium on Security and Privacy, 2020

SmokeBomb: effective mitigation against cache side-channel attacks on the ARM architecture.
[BibTeX]
[DOI]
Haehyun Cho
,
Jinbum Park
,
Donguk Kim
,
Ziming Zhao
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the MobiSys '20: The 18th Annual International Conference on Mobile Systems, 2020

Scam Pandemic: How Attackers Exploit Public Fear through Phishing.
[BibTeX]
[DOI]
Marzieh Bitaab
,
Haehyun Cho
,
Adam Oest
,
Penghui Zhang
,
Zhibo Sun
,
Rana Pourmohamad
,
Doowon Kim
,
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the APWG Symposium on Electronic Crime Research, 2020

Exploring Abstraction Functions in Fuzzing.
[BibTeX]
[DOI]
Christopher Salls
,
Aravind Machiry
,
Adam Doupé
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 8th IEEE Conference on Communications and Network Security, 2020

HoneyPLC: A Next-Generation Honeypot for Industrial Control Systems.
[BibTeX]
[DOI]
Efrén López-Morales
,
Carlos E. Rubio-Medrano
,
Adam Doupé
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Tiffany Bao
,
Gail-Joon Ahn
Proceedings of the CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020

2019
BinTrimmer: Towards Static Binary Debloating Through Abstract Interpretation.
[BibTeX]
[DOI]
Nilo Redini
,
Ruoyu Wang
,
Aravind Machiry
,
Yan Shoshitaishvili
,
Giovanni Vigna
,
Christopher Kruegel
Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2019

BootKeeper: Validating Software Integrity Properties on Boot Firmware Images.
[BibTeX]
[DOI]
Ronny Chevalier
,
Stefano Cristalli
,
Christophe Hauser
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Christopher Kruegel
,
Giovanni Vigna
,
Danilo Bruschi
,
Andrea Lanzi
Proceedings of the Ninth ACM Conference on Data and Application Security and Privacy, 2019

Matched and Mismatched SOCs: A Qualitative Study on Security Operations Center Issues.
[BibTeX]
[DOI]
Faris Bugra Kokulu
,
Ananta Soneji
,
Tiffany Bao
,
Yan Shoshitaishvili
,
Ziming Zhao
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, 2019

Sleak: automating address space layout derandomization.
[BibTeX]
[DOI]
Christophe Hauser
,
Jayakrishna Menon
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Giovanni Vigna
,
Christopher Kruegel
Proceedings of the 35th Annual Computer Security Applications Conference, 2019

2018
Mechanical Phish: Resilient Autonomous Hacking.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Antonio Bianchi
,
Kevin Borgolte
,
Amat Cama
,
Jacopo Corbetta
,
Francesco Disperati
,
Andrew Dutcher
,
John Grosen
,
Paul Grosen
,
Aravind Machiry
,
Christopher Salls
,
Nick Stephens
,
Ruoyu Wang
,
Giovanni Vigna
IEEE Secur. Priv., 2018

HeapHopper: Bringing Bounded Model Checking to Heap Implementation Security.
[BibTeX]
[DOI]
Moritz Eckert
,
Antonio Bianchi
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 27th USENIX Security Symposium, 2018

T-Fuzz: Fuzzing by Program Transformation.
[BibTeX]
[DOI]
Hui Peng
,
Yan Shoshitaishvili
,
Mathias Payer
Proceedings of the 2018 IEEE Symposium on Security and Privacy, 2018

A Binary Analysis Approach to Retrofit Security in Input Parsing Routines.
[BibTeX]
[DOI]
Jayakrishna Menon
,
Christophe Hauser
,
Yan Shoshitaishvili
,
Stephen Schwab
Proceedings of the 2018 IEEE Security and Privacy Workshops, 2018

Challenges and Preparedness of SDN-based Firewalls.
[BibTeX]
[DOI]
Vaibhav Hemant Dixit
,
Sukwha Kyung
,
Ziming Zhao
,
Adam Doupé
,
Yan Shoshitaishvili
,
Gail-Joon Ahn
Proceedings of the 2018 ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization, 2018

FEAST'18 - 2018 Workshop on Forming an Ecosystem around Software Transformation.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Mayur Naik
Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

CacheLight: Defeating the CacheKit Attack.
[BibTeX]
[DOI]
Mauricio Gutierrez
,
Ziming Zhao
,
Adam Doupé
,
Yan Shoshitaishvili
,
Gail-Joon Ahn
Proceedings of the 2018 Workshop on Attacks and Solutions in Hardware Security, 2018

AIM-SDN: Attacking Information Mismanagement in SDN-datastores.
[BibTeX]
[DOI]
Vaibhav Hemant Dixit
,
Adam Doupé
,
Yan Shoshitaishvili
,
Ziming Zhao
,
Gail-Joon Ahn
Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

Wi Not Calling: Practical Privacy and Availability Attacks in Wi-Fi Calling.
[BibTeX]
[DOI]
Jaejong Baek
,
Sukwha Kyung
,
Haehyun Cho
,
Ziming Zhao
,
Yan Shoshitaishvili
,
Adam Doupé
,
Gail-Joon Ahn
Proceedings of the 34th Annual Computer Security Applications Conference, 2018

2017
Building a Base for Cyber-autonomy.
[BibTeX]
[DOI]
Yan Shoshitaishvili
PhD thesis, 2017

BootStomp: On the Security of Bootloaders in Mobile Devices.
[BibTeX]
[DOI]
Nilo Redini
,
Aravind Machiry
,
Dipanjan Das
,
Yanick Fratantonio
,
Antonio Bianchi
,
Eric Gustafson
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 26th USENIX Security Symposium, 2017

Your Exploit is Mine: Automatic Shellcode Transplant for Remote Exploits.
[BibTeX]
[DOI]
Tiffany Bao
,
Ruoyu Wang
,
Yan Shoshitaishvili
,
David Brumley
Proceedings of the 2017 IEEE Symposium on Security and Privacy, 2017

Angr - The Next Generation of Binary Analysis.
[BibTeX]
[DOI]
Fish Wang
,
Yan Shoshitaishvili
Proceedings of the IEEE Cybersecurity Development, SecDev 2017, Cambridge, MA, USA, 2017

Ramblr: Making Reassembly Great Again.
[BibTeX]
[DOI]
Ruoyu Wang
,
Yan Shoshitaishvili
,
Antonio Bianchi
,
Aravind Machiry
,
John Grosen
,
Paul Grosen
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 24th Annual Network and Distributed System Security Symposium, 2017

How Shall We Play a Game?: A Game-theoretical Model for Cyber-warfare Games.
[BibTeX]
[DOI]
Tiffany Bao
,
Yan Shoshitaishvili
,
Ruoyu Wang
,
Christopher Kruegel
,
Giovanni Vigna
,
David Brumley
Proceedings of the 30th IEEE Computer Security Foundations Symposium, 2017

Rise of the HaCRS: Augmenting Autonomous Cyber Reasoning Systems with Human Assistance.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Michael Weissbacher
,
Lukas Dresel
,
Christopher Salls
,
Ruoyu Wang
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, 2017

DIFUZE: Interface Aware Fuzzing for Kernel Drivers.
[BibTeX]
[DOI]
Jake Corina
,
Aravind Machiry
,
Christopher Salls
,
Yan Shoshitaishvili
,
Shuang Hao
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, 2017

Piston: Uncooperative Remote Runtime Patching.
[BibTeX]
[DOI]
Christopher Salls
,
Yan Shoshitaishvili
,
Nick Stephens
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 33rd Annual Computer Security Applications Conference, 2017

2016
SOK: (State of) The Art of War: Offensive Techniques in Binary Analysis.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Ruoyu Wang
,
Christopher Salls
,
Nick Stephens
,
Mario Polino
,
Andrew Dutcher
,
John Grosen
,
Siji Feng
,
Christophe Hauser
,
Christopher Krügel
,
Giovanni Vigna
Proceedings of the IEEE Symposium on Security and Privacy, 2016

Taming Transactions: Towards Hardware-Assisted Control Flow Integrity Using Transactional Memory.
[BibTeX]
[DOI]
Marius Muench
,
Fabio Pagani
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
,
Davide Balzarotti
Proceedings of the Research in Attacks, Intrusions, and Defenses, 2016

Driller: Augmenting Fuzzing Through Selective Symbolic Execution.
[BibTeX]
[DOI]
Nick Stephens
,
John Grosen
,
Christopher Salls
,
Andrew Dutcher
,
Ruoyu Wang
,
Jacopo Corbetta
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 23rd Annual Network and Distributed System Security Symposium, 2016

2015
Portrait of a Privacy Invasion.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proc. Priv. Enhancing Technol., 2015

How the ELF Ruined Christmas.
[BibTeX]
[DOI]
Alessandro Di Federico
,
Amat Cama
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 24th USENIX Security Symposium, 2015

Firmalice - Automatic Detection of Authentication Bypass Vulnerabilities in Binary Firmware.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Ruoyu Wang
,
Christophe Hauser
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 22nd Annual Network and Distributed System Security Symposium, 2015

2014
Ten Years of iCTF: The Good, The Bad, and The Ugly.
[BibTeX]
[DOI]
Giovanni Vigna
,
Kevin Borgolte
,
Jacopo Corbetta
,
Adam Doupé
,
Yanick Fratantonio
,
Luca Invernizzi
,
Dhilung Kirat
,
Yan Shoshitaishvili
Proceedings of the 2014 USENIX Summit on Gaming, 2014

Do you feel lucky?: a large-scale analysis of risk-rewards trade-offs in cyber security.
[BibTeX]
[DOI]
Yan Shoshitaishvili
,
Luca Invernizzi
,
Adam Doupé
,
Giovanni Vigna
Proceedings of the Symposium on Applied Computing, 2014

Protecting Web-Based Single Sign-on Protocols against Relying Party Impersonation Attacks through a Dedicated Bi-directional Authenticated Secure Channel.
[BibTeX]
[DOI]
Yinzhi Cao
,
Yan Shoshitaishvili
,
Kevin Borgolte
,
Christopher Krügel
,
Giovanni Vigna
,
Yan Chen
Proceedings of the Research in Attacks, Intrusions and Defenses, 2014

PExy: The Other Side of Exploit Kits.
[BibTeX]
[DOI]
Giancarlo De Maio
,
Alexandros Kapravelos
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment, 2014

2013
Steal This Movie: Automatically Bypassing DRM Protection in Streaming Media Services.
[BibTeX]
[DOI]
Ruoyu Wang
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013, 2013

Revolver: An Automated Approach to the Detection of Evasive Web-based Malware.
[BibTeX]
[DOI]
Alexandros Kapravelos
,
Yan Shoshitaishvili
,
Marco Cova
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013, 2013

2012
Blacksheep: detecting compromised hosts in homogeneous crowds.
[BibTeX]
[DOI]
Antonio Bianchi
,
Yan Shoshitaishvili
,
Christopher Kruegel
,
Giovanni Vigna
Proceedings of the ACM Conference on Computer and Communications Security, 2012


  Loading...