English
Related papers

Related papers: TestREx: a Framework for Repeatable Exploits

200 papers

The existence of a security vulnerability in a system does not necessarily mean that it can be exploited. In this research, we introduce Autosploit -- an automated framework for evaluating the exploitability of vulnerabilities. Given a…

Cryptography and Security · Computer Science 2020-07-02 Noam Moscovich , Ron Bitton , Yakov Mallah , Masaki Inokuchi , Tomohiko Yagyu , Meir Kalech , Yuval Elovici , Asaf Shabtai

As emerging software vulnerabilities continuously threaten enterprises and Internet services, there is a critical need for improved security research capabilities. This paper introduces the Security Exploit Telemetry Collection (SETC)…

Cryptography and Security · Computer Science 2024-12-17 Ryan Holeman , John Hastings , Varghese Mathew Vaidyan

In recent years, the research community, but also the general public, has raised serious questions about the reproducibility and replicability of scientific work. Since many studies include some kind of computational work, these issues are…

Software Engineering · Computer Science 2025-03-14 Lázaro Costa , Susana Barbosa , Jácome Cunha

Cybersecurity research increasingly depends on reproducible evidence, such as traffic traces, logs, and labeled datasets, yet most public datasets remain static and offer limited support for controlled re-execution and traceability,…

Cryptography and Security · Computer Science 2026-04-07 Leonardo Bitzki , Diego Kreutz , Tiago Heinrich , Douglas Fideles , Leandro Bertholdo , Silvio Quincozes , Angelo Diniz

This paper tackles the problems of generating concrete test cases for testing whether an application is vulnerable to attacks, and of checking whether security solutions are correctly implemented. The approach proposed in the paper aims at…

Software Engineering · Computer Science 2020-07-08 Sébastien Salva , Loukmen Regainia

Vulnerability detection tools are widely adopted in software projects, yet they often overwhelm maintainers with false positives and non-actionable reports. Automated exploitation systems can help validate these reports; however, existing…

Cryptography and Security · Computer Science 2026-02-17 Amirali Sajadi , Tu Nguyen , Kostadin Damevski , Preetha Chatterjee

Many tools and libraries are readily available to build and operate distributed Web applications. While the setup of operational environments is comparatively easy, practice shows that their continuous secure operation is more difficult to…

Cryptography and Security · Computer Science 2012-07-13 Matteo Maria Casalino , Michele Mangili , Henrik Plate , Serena Elisa Ponta

In recent years, the research community has raised serious questions about the reproducibility of scientific work. In particular, since many studies include some kind of computing work, reproducibility is also a technological challenge, not…

Software Engineering · Computer Science 2023-08-03 Lázaro Costa , Susana Barbosa , Jácome Cunha

Discovering vulnerabilities in applications of real-world complexity is a daunting task: a vulnerability may affect a single line of code, and yet it compromises the security of the entire application. Even worse, vulnerabilities may…

Cryptography and Security · Computer Science 2020-12-10 Gabriele Costa , Andrea Valenza

Despite significant progress in designing powerful adversarial evasion attacks for robustness verification, the evaluation of these methods often remains inconsistent and unreliable. Many assessments rely on mismatched models, unverified…

Cryptography and Security · Computer Science 2025-07-08 Antonio Emanuele Cinà , Maura Pintor , Luca Demetrio , Ambra Demontis , Battista Biggio , Fabio Roli

Web application pentesting is a crucial component in the offensive cybersecurity area, whose aim is to safeguard web applications and web services as the majority of the web applications are mounted in publicly accessible web environments.…

Cryptography and Security · Computer Science 2024-10-17 María Olivares-Naya , Jacobo Casado de Gracia , Alfonso Sánchez-Macián

Due to the increasing complexity of distributed systems, security testing is becoming increasingly critical in insuring reliability of such systems in relation to their security requirements. . To challenge this issue, we rely in this…

Cryptography and Security · Computer Science 2014-10-22 Mohamed H. E. Aouadi , Khalifa Toumi , Ana Cavalli

This paper describes an implemented system which is designed to support the deployment of applications offering distributed services, comprising a number of distributed components. This is achieved by creating high level placement and…

Distributed, Parallel, and Cluster Computing · Computer Science 2010-06-24 Alan Dearle , Graham Kirby , Andrew McCarthy , Juan-Carlos Diaz y Carballo

UI testing is tedious and time-consuming due to the manual effort required. Recent research has explored opportunities for reusing existing UI tests from an app to automatically generate new tests for other apps. However, the evaluation of…

Software Engineering · Computer Science 2020-11-04 Yixue Zhao , Justin Chen , Adriana Sejfia , Marcelo Schmitt Laser , Jie Zhang , Federica Sarro , Mark Harman , Nenad Medvidovic

Functionality-correct repository setup aims to configure execution environments (e.g., dependencies, build scripts) to successfully execute a repository's documented features. It presents significant challenges due to diverse,…

Software Engineering · Computer Science 2026-05-28 Zihang Zhou , Ziqian Ren , Yukai Wu , Yingjie Xiong , Wei Zhou , Chao Peng , Dong Zhang , Bingheng Yan , Xuanhe Zhou , Fan Wu

With the rapid advancement of information technology, the complexity of applications continues to increase, and the cybersecurity challenges we face are also escalating. This paper aims to investigate the methods and practices of system…

Cryptography and Security · Computer Science 2026-02-02 Chunyi Zhang , Jin Zeng , Xiaoqi Li

Aligning autonomous agents with human intent remains a central challenge in modern AI. A key manifestation of this challenge is reward hacking, whereby agents appear successful under the evaluation signal while violating the intended…

Machine Learning · Computer Science 2026-05-21 Amit Roth , Ankur Samanta , Matan Halevy , Yoav Levine , Yonathan Efroni

This paper presents an approach to provide strong assurance of the secure execution of distributed event-driven applications on shared infrastructures, while relying on a small Trusted Computing Base. We build upon and extend security…

Cryptography and Security · Computer Science 2023-06-30 Gianluca Scopelliti , Sepideh Pouyanrad , Job Noorman , Fritz Alder , Christoph Baumann , Frank Piessens , Jan Tobias Mühlberg

Android Framework is a layer of software that exists in every Android system managing resources of all Android apps. A vulnerability in Android Framework can lead to severe hacks, such as destroying user data and leaking private…

Cryptography and Security · Computer Science 2016-11-04 Lannan Luo , Qiang Zeng , Chen Cao , Kai Chen , Jian Liu , Limin Liu , Neng Gao , Min Yang , Xinyu Xing , Peng Liu

Todays industrial control systems consist of tightly coupled components allowing adversaries to exploit security attack surfaces from the information technology side, and, thus, also get access to automation devices residing at the…

Software Engineering · Computer Science 2023-06-26 Mukund Bhole , Wolfgang Kastner , Thilo Sauter
‹ Prev 1 2 3 10 Next ›