Scalable detection of promotional website defacements in black hat {SEO} campaigns R Yang, X Wang, C Chi, D Wang, J He, S Pang, WC Lau 30th USENIX Security Symposium (USENIX Security 21), 3703-3720, 2021 | 19 | 2021 |
MoSSOT: An automated blackbox tester for single sign-on vulnerabilities in mobile applications S Shi, X Wang, WC Lau Proceedings of the 2019 ACM Asia Conference on Computer and Communications …, 2019 | 19 | 2019 |
Evading Web Application Firewalls with Reinforcement Learning X Wang, H Hu Technical Report, 2020 | 8 | 2020 |
Make Redirection Evil Again: URL Parser Issues in OAuth X Wang, WC Lau, R Yang, S Shi Black Hat Asia 2019, 2019 | 7* | 2019 |
PHYjacking: Physical Input Hijacking for Zero-Permission Authorization Attacks on Android X Wang, S Shi, Y Chen, WC Lau The Network and Distributed System Security Symposium (NDSS) 2022, 2022 | 5 | 2022 |
An empirical study on mobile payment credential leaks and their exploits S Shi, X Wang, K Zeng, R Yang, WC Lau Security and Privacy in Communication Networks: 17th EAI International …, 2021 | 2 | 2021 |
Fingerprint-Jacking: Practical Fingerprint Authorization Hijacking in Android Apps X Wang, Y Chen, R Yang, S Shi, WC Lau Black Hat Europe 2020, 2020 | 2 | 2020 |
Breaking and Fixing Third-Party Payment Service for Mobile Apps S Shi, X Wang, WC Lau International Conference on Applied Cryptography and Network Security, 3-26, 2021 | 1 | 2021 |
Mining and Exploiting (Mobile) Payment Credential Leaks in the Wild S Shi, X Wang, WC Lau Black Hat Asia 2021, 2021 | | 2021 |