English
Related papers

Related papers: Shepherd: Enabling Automatic and Large-Scale Login…

200 papers

Modern web browsers have effectively become the new operating system for business applications, yet their security posture is often under-scrutinized. This paper presents a novel, comprehensive Browser Security Posture Analysis…

Cryptography and Security · Computer Science 2025-05-14 Avihay Cohen

Phishing detection is a critical cybersecurity task that involves the identification and neutralization of fraudulent attempts to obtain sensitive information, thereby safeguarding individuals and organizations from data breaches and…

Cryptography and Security · Computer Science 2024-08-19 Huilin Wang , Bryan Hooi

Web application pentesting is a crucial component in the offensive cybersecurity area, whose aim is to safeguard web applications and web services as the majority of the web applications are mounted in publicly accessible web environments.…

Cryptography and Security · Computer Science 2024-10-17 María Olivares-Naya , Jacobo Casado de Gracia , Alfonso Sánchez-Macián

Honeypots are decoy systems that lure attackers by presenting them with a seemingly vulnerable system. They provide an early detection mechanism as well as a method for learning how adversaries work and think. However, over the last years,…

Cryptography and Security · Computer Science 2021-09-23 Shreyas Srinivasa , Jens Myrup Pedersen , Emmanouil Vasilomanolakis

We present a study of how local frames (i.e., iframes loading content like "about:blank") are mishandled by a wide range of popular Web security and privacy tools. As a result, users of these tools remain vulnerable to the very attack…

Cryptography and Security · Computer Science 2025-07-03 Alisha Ukani , Hamed Haddadi , Alex C. Snoeren , Peter Snyder

Web traffic has evolved to include both human users and automated agents, ranging from benign web crawlers to adversarial scanners such as those capable of credential stuffing, command injection, and account hijacking at the web scale. The…

Machine Learning · Computer Science 2024-12-11 Behzad Ousat , Mahshad Shariatnasab , Esteban Schafir , Farhad Shirani Chaharsooghi , Amin Kharraz

Recently, we can observe a significant increase of the phishing attacks in the Internet. In a typical phishing attack, the attacker sets up a malicious website that looks similar to the legitimate website in order to obtain the end-users'…

Cryptography and Security · Computer Science 2025-08-14 Zijiang Yang

Intrusion detection into computer networks has become one of the most important issues in cybersecurity. Attackers keep on researching and coding to discover new vulnerabilities to penetrate information security system. In consequence…

Cryptography and Security · Computer Science 2020-12-17 Sergio Hidalgo-Espinoza , Kevin Chamorro-Cupueran , Oscar Chang-Tortolero

A large number of URLs are made public by various platforms for security analysis, archiving, and paste sharing -- such as VirusTotal, URLScan.io, Hybrid Analysis, the Wayback Machine, and RedHunt. These services may unintentionally expose…

Cryptography and Security · Computer Science 2026-02-26 Tarek Ramadan , AbdelRahman Abdou , Mohammad Mannan , Amr Youssef

This paper proposes a novel Self-Supervised Intrusion Detection (SSID) framework, which enables a fully online Deep Learning (DL) based Intrusion Detection System (IDS) that requires no human intervention or prior off-line learning. The…

Cryptography and Security · Computer Science 2024-05-16 Mert Nakıp , Erol Gelenbe

Fraudulent activities on digital banking services are becoming more intricate by the day, challenging existing defenses. While older rule driven methods struggle to keep pace, even precision focused algorithms fall short when new scams are…

Cryptography and Security · Computer Science 2026-01-21 Karthikeyan V. R. , Premnath S. , Kavinraaj S. , J. Sangeetha

Cyber attacks are often identified using system and network logs. There have been significant prior works that utilize provenance graphs and ML techniques to detect attacks, specifically advanced persistent threats, which are very difficult…

Cryptography and Security · Computer Science 2023-11-13 Sihat Afnan , Mushtari Sadia , Shahrear Iqbal , Anindya Iqbal

Website fingerprinting attack is an extensively studied technique used in a web browser to analyze traffic patterns and thus infer confidential information about users. Several website fingerprinting attacks based on machine learning and…

Cryptography and Security · Computer Science 2023-02-28 Guodong Huang , Chuan Ma , Ming Ding , Yuwen Qian , Chunpeng Ge , Liming Fang , Zhe Liu

Advanced persistent threats (APTs) are sophisticated cyber attacks that can remain undetected for extended periods, making their mitigation particularly challenging. Given their persistence, significant effort is required to detect them and…

Cryptography and Security · Computer Science 2025-02-05 Parth Atulbhai Gandhi , Prasanna N. Wudali , Yonatan Amaru , Yuval Elovici , Asaf Shabtai

Users' website browsing history contains sensitive information, like health conditions, political interests, financial situations, etc. Some recent studies have demonstrated the possibility of inferring website fingerprints based on…

Cryptography and Security · Computer Science 2021-10-05 Han Wang

Browsers often include security features to detect phishing web pages. In the past, some browsers evaluated an unknown URL for inclusion in a list of known phishing pages. However, as the number of URLs and known phishing pages continued to…

Cryptography and Security · Computer Science 2021-08-30 Pranav Maneriker , Jack W. Stokes , Edir Garcia Lazo , Diana Carutasu , Farid Tajaddodianfar , Arun Gururajan

Website Fingerprinting (WF) is a type of traffic analysis attack that enables a local passive eavesdropper to infer the victim's activity, even when the traffic is protected by a VPN or an anonymity system like Tor. Leveraging a…

Cryptography and Security · Computer Science 2022-11-15 Mohammad Saidur Rahman , Mohsen Imani , Nate Mathews , Matthew Wright

Passkeys -- discoverable WebAuthn credentials synchronised across devices are widely promoted as the future of passwordless authentication. Built on the FIDO2 standard, they eliminate shared secrets and resist phishing while offering…

Cryptography and Security · Computer Science 2026-03-23 Prince Bhardwaj , Nishanth Sastry

The widespread accessibility of the Internet has led to a surge in online fraudulent activities, underscoring the necessity of shielding users' sensitive information from cybercriminals. Phishing, a well-known cyberattack, revolves around…

Cryptography and Security · Computer Science 2024-01-17 Aditya Kulkarni , Vivek Balachandran , Dinil Mon Divakaran , Tamal Das

In recent years, large language models (LLMs) have become increasingly capable and can now interact with tools (i.e., call functions), read documents, and recursively call themselves. As a result, these LLMs can now function autonomously as…

Cryptography and Security · Computer Science 2024-02-19 Richard Fang , Rohan Bindu , Akul Gupta , Qiusi Zhan , Daniel Kang