English
Related papers

Related papers: Deemon: Detecting CSRF with Dynamic Analysis and P…

200 papers

Effective crack detection is pivotal for the structural health monitoring and inspection of buildings. This task presents a formidable challenge to computer vision techniques due to the inherently subtle nature of cracks, which often…

Computer Vision and Pattern Recognition · Computer Science 2024-01-17 Sara Shomal Zadeh , Sina Aalipour birgani , Meisam Khorshidi , Farhad Kooban

Automated GUI testing of web applications has always been considered a challenging task considering their large state space and complex interaction logic. Deep Reinforcement Learning (DRL) is a recent extension of Reinforcement Learning…

Software Engineering · Computer Science 2025-04-29 Zhiyu Gu , Chenxu Liu , Guoquan Wu , Yifei Zhang , ChenXi Yang , Zheheng Liang , Wei Chen , Jun Wei

The increasing popularity of web-based applications has led to several critical services being provided over the Internet. This has made it imperative to monitor the network traffic so as to prevent malicious attackers from depleting the…

Networking and Internet Architecture · Computer Science 2011-01-17 Jaydip Sen

ModSecurity is widely recognized as the standard open-source Web Application Firewall (WAF), maintained by the OWASP Foundation. It detects malicious requests by matching them against the Core Rule Set (CRS), identifying well-known attack…

Decentralized finance (DeFi) protocols are crypto projects developed on the blockchain to manage digital assets. Attacks on DeFi have been frequent and have resulted in losses exceeding \$77 billion. However, detection methods for malicious…

Cryptography and Security · Computer Science 2024-05-21 Wenkai Li , Xiaoqi Li , Yuqing Zhang , Zongwei Li

Advanced Persistent Threats (APTs) are a main impendence in cyber security of computer networks. In 2015, a successful breach remains undetected 146 days on average, reported by [Fi16].With our work we demonstrate a feasible and fast way to…

Databases · Computer Science 2018-02-02 Timo Schindler

Crossfire attack is a recently proposed threat designed to disconnect whole geographical areas, such as cities or states, from the Internet. Orchestrated in multiple phases, the attack uses a massively distributed botnet to generate…

Cryptography and Security · Computer Science 2018-04-23 Saurabh Misra , Mengxuan Tan , Mostafa Rezazad , Matthias R. Brust , Ngai-Man Cheung

The large-scale deployment of modern phishing attacks relies on the automatic exploitation of vulnerable websites in the wild, to maximize profit while hindering attack traceability, detection and blacklisting. To the best of our knowledge,…

Cryptography and Security · Computer Science 2017-07-04 Igino Corona , Battista Biggio , Matteo Contini , Luca Piras , Roberto Corda , Mauro Mereu , Guido Mureddu , Davide Ariu , Fabio Roli

Software vulnerabilities present a persistent security challenge, with over 25,000 new vulnerabilities reported in the Common Vulnerabilities and Exposures (CVE) database in 2024 alone. While deep learning based approaches show promise for…

Cryptography and Security · Computer Science 2025-07-23 Ahmed Lekssays , Hamza Mouhcine , Khang Tran , Ting Yu , Issa Khalil

The increasing reliance on web services has led to a rise in cybersecurity threats, particularly Cross-Site Scripting (XSS) attacks, which target client-side layers of web applications by injecting malicious scripts. Traditional Web…

Cryptography and Security · Computer Science 2025-04-14 Vahid Babaey , Arun Ravindran

With the rapid development of software and distributed computing, Cyber-Physical Systems (CPS) are widely adopted in many application areas, e.g., smart grid, autonomous automobile. It is difficult to detect defects in CPS models due to the…

Software Engineering · Computer Science 2018-07-19 Takumi Akazaki , Shuang Liu , Yoriyuki Yamagata , Yihai Duan , Jianye Hao

Many users implicitly assume that software can only be exploited after it is installed. However, recent supply-chain attacks demonstrate that application integrity must be ensured during installation itself. We introduce SIGL, a new tool…

Cryptography and Security · Computer Science 2021-06-24 Xueyuan Han , Xiao Yu , Thomas Pasquier , Ding Li , Junghwan Rhee , James Mickens , Margo Seltzer , Haifeng Chen

The pervasive nature of software vulnerabilities has emerged as a primary factor for the surge in cyberattacks. Traditional vulnerability detection methods, including rule-based, signature-based, manual review, static, and dynamic analysis,…

Software Engineering · Computer Science 2025-03-07 Md Nizam Uddin , Yihe Zhang , Xiali Hei

Protocol detection is the process of determining the application layer protocol in the context of network security monitoring, which requires a timely and precise decision to enable protocol-specific deep packet inspection. This task has…

Networking and Internet Architecture · Computer Science 2019-12-10 Jan Grashöfer , Christian Titze , Hannes Hartenstein

Web services are becoming business-critical components, often deployed with critical software bugs that can be maliciously explored. Web vulnerability scanners allow the detection of security vulnerabilities in web services by stressing the…

Cryptography and Security · Computer Science 2022-12-26 Osejobe Ehichoya , Chinwuba Christian Nnaemeka

Malicious encryption techniques continue to evolve, bypassing conventional detection mechanisms that rely on static signatures or predefined behavioral rules. Spectral analysis presents an alternative approach that transforms system…

Cryptography and Security · Computer Science 2025-03-26 Dominica Ayanara , Atticus Hillingworth , Jonathan Casselbury , Dominic Montague

Since the first publication of the "OWASP Top 10" (2004), cross-site scripting (XSS) vulnerabilities have always been among the top 5 web application security bugs. Black-box vulnerability scanners are widely used in the industry to…

Cryptography and Security · Computer Science 2014-10-17 Enrico Bazzoli , Claudio Criscione , Federico Maggi , Stefano Zanero

Web applications continue to be a favorite target for hackers due to a combination of wide adoption and rapid deployment cycles, which often lead to the introduction of high impact vulnerabilities. Static analysis tools are important to…

Cryptography and Security · Computer Science 2022-01-19 Ibéria Medeiros , Nuno Neves , Miguel Correia

Adversarial attacks expose a fundamental vulnerability in modern deep vision models by exploiting their dependence on dense, pixel-level representations that are highly sensitive to imperceptible perturbations. Traditional defense…

Computer Vision and Pattern Recognition · Computer Science 2025-11-13 Jingjie He , Weijie Liang , Zihan Shan , Matthew Caesar

Fraudulent activities on digital banking services are becoming more intricate by the day, challenging existing defenses. While older rule driven methods struggle to keep pace, even precision focused algorithms fall short when new scams are…

Cryptography and Security · Computer Science 2026-01-21 Karthikeyan V. R. , Premnath S. , Kavinraaj S. , J. Sangeetha