What a lovely hat
Is it made out of
tin foil
?
DBLP data
CryptoDB
Cryptobib
Giancarlo Pellegrino
Google Scholar
ORCID:
0009-0007-6223-8945
32
publications in security and cryptology related venues
Year
Venue
Title
2025
conf/ndss
YuraScanner: Leveraging LLMs for Task-driven Web App Scanning.
Aleksei Stafeev
Tim Recktenwald
Gianluca De Stefano
Soheil Khodayari
Giancarlo Pellegrino
2025
conf/ndss
Do (Not) Follow the White Rabbit: Challenging the Myth of Harmless Open Redirection.
Soheil Khodayari
Kai Glauber
Giancarlo Pellegrino
2025
conf/dsn
Less is More: Boosting Coverage of Web Crawling through Adversarial Multi-Armed Bandit.
Lorenzo Cazzaro
Stefano Calzavara
Maksim Kovalkov
Aleksei Stafeev
Giancarlo Pellegrino
2025
conf/eurosp
Exploring the Design Space for Security Warnings in Immersive Environments.
Andrea Mengascini
Rebecca Weil
Annabelle Walle
Jürgen Steimle
Giancarlo Pellegrino
2025
conf/eurosp
CHARON: Polyglot Code Analysis for Detecting Vulnerabilities in Scripting Languages Native Extensions.
Raoul Scholtes
Soheil Khodayari
Cristian-Alexandru Staicu
Giancarlo Pellegrino
2024
conf/ccs
The Big Brother's New Playground: Unmasking the Illusion of Privacy in Web Metaverses from a Malicious User's Perspective.
Andrea Mengascini
Ryan Aurelio
Giancarlo Pellegrino
2024
conf/uss
SoK: State of the Krawlers - Evaluating the Effectiveness of Crawling Algorithms for Web Security Measurements.
Aleksei Stafeev
Giancarlo Pellegrino
2024
conf/uss
SSRF vs. Developers: A Study of SSRF-Defenses in PHP Applications.
Malte Wessels
Simon Koch
Giancarlo Pellegrino
Martin Johns
2024
conf/sp
The Great Request Robbery: An Empirical Study of Client-side Request Hijacking Vulnerabilities on the Web.
Soheil Khodayari
Thomas Barber
Giancarlo Pellegrino
2024
conf/eurosp
Uncovering the Role of Support Infrastructure in Clickbait PDF Campaigns.
Giada Stivala
Gianluca De Stefano
Andrea Mengascini
Mariano Graziano
Giancarlo Pellegrino
2023
conf/sp
It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses.
Soheil Khodayari
Giancarlo Pellegrino
2023
conf/sp
The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web.
Jannis Rautenstrauch
Giancarlo Pellegrino
Ben Stock
2023
conf/acsac
From Attachments to SEO: Click Here to Learn More about Clickbait PDFs!
Giada Stivala
Sahar Abdelnabi
Andrea Mengascini
Mariano Graziano
Mario Fritz
Giancarlo Pellegrino
2022
conf/sp
The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies.
Soheil Khodayari
Giancarlo Pellegrino
2021
conf/uss
JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals.
Soheil Khodayari
Giancarlo Pellegrino
2021
conf/sp
Black Widow: Blackbox Data-driven Web Scanning.
Benjamin Eriksson
Giancarlo Pellegrino
Andrei Sabelfeld
2020
conf/sp
SentiNet: Detecting Localized Universal Attacks Against Deep Learning Systems.
Edward Chou
Florian Tramèr
Giancarlo Pellegrino
2020
conf/sp
Automatic Uncovering of Hidden Behaviors From Input Validation in Mobile Apps.
Qingchuan Zhao
Chaoshun Zuo
Brendan Dolan-Gavitt
Giancarlo Pellegrino
Zhiqiang Lin
2020
conf/ndss
Deceptive Previews: A Study of the Link Preview Trustworthiness in Social Platforms.
Giada Stivala
Giancarlo Pellegrino
2019
conf/ccs
AdVersarial: Perceptual Ad Blocking meets Adversarial Machine Learning.
Florian Tramèr
Pascal Dupré
Gili Rusak
Giancarlo Pellegrino
Dan Boneh
2019
conf/sp
Fidelius: Protecting User Secrets from Compromised Browsers.
Saba Eskandarian
Jonathan Cogan
Sawyer Birnbaum
Peh Chang Wei Brandon
Dillon Franke
Forest Fraser
Gaspar Garcia Jr.
Eric Gong
Hung T. Nguyen
Taresh K. Sethi
Vishal Subbiah
Michael Backes
Giancarlo Pellegrino
Dan Boneh
2019
conf/ndss
Geo-locating Drivers: A Study of Sensitive Data Leakage in Ride-Hailing Services.
Qingchuan Zhao
Chaoshun Zuo
Giancarlo Pellegrino
Zhiqiang Lin
2018
conf/sp
The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.
Marten Oltrogge
Erik Derr
Christian Stransky
Yasemin Acar
Sascha Fahl
Christian Rossow
Giancarlo Pellegrino
Sven Bugiel
Michael Backes
2018
conf/eurosp
Formally Reasoning about the Cost and Efficacy of Securing the Email Infrastructure.
Patrick Speicher
Marcel Steinmetz
Robert Künnemann
Milivoj Simeonovski
Giancarlo Pellegrino
Jörg Hoffmann
Michael Backes
2018
conf/ndss
Didn't You Hear Me? - Towards More Successful Web Vulnerability Notifications.
Ben Stock
Giancarlo Pellegrino
Frank Li
Michael Backes
Christian Rossow
2017
conf/ccs
Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs.
Giancarlo Pellegrino
Martin Johns
Simon Koch
Michael Backes
Christian Rossow
2016
conf/ccs
POSTER: Mapping the Landscape of Large-Scale Vulnerability Notifications.
Ben Stock
Giancarlo Pellegrino
Christian Rossow
Martin Johns
Michael Backes
2016
conf/uss
Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification.
Ben Stock
Giancarlo Pellegrino
Christian Rossow
Martin Johns
Michael Backes
2015
conf/uss
In the Compression Hornet's Nest: A Security Study of Data Compression in Network Services.
Giancarlo Pellegrino
Davide Balzarotti
Stefan Winter
Neeraj Suri
2014
conf/ndss
Toward Black-Box Detection of Logic Flaws in Web Applications.
Giancarlo Pellegrino
Davide Balzarotti
2013
journals/compsec
An authentication flaw in browser-based Single Sign-On protocols: Impact and remediations.
Alessandro Armando
Roberto Carbone
Luca Compagna
Jorge Cuéllar
Giancarlo Pellegrino
Alessandro Sorniotti
2011
conf/sec
From Multiple Credentials to Browser-Based Single Sign-On: Are We More Secure?
Alessandro Armando
Roberto Carbone
Luca Compagna
Jorge Cuéllar
Giancarlo Pellegrino
Alessandro Sorniotti
Coauthors
Aleksei Stafeev
(3)
Alessandro Armando
(2)
Alessandro Sorniotti
(2)
Andrea Mengascini
(4)
Andrei Sabelfeld
(1)
Annabelle Walle
(1)
Ben Stock
(4)
Benjamin Eriksson
(1)
Brendan Dolan-Gavitt
(1)
Chaoshun Zuo
(2)
Christian Rossow
(5)
Christian Stransky
(1)
Cristian-Alexandru Staicu
(1)
Dan Boneh
(2)
Davide Balzarotti
(2)
Dillon Franke
(1)
Edward Chou
(1)
Eric Gong
(1)
Erik Derr
(1)
Florian Tramèr
(2)
Forest Fraser
(1)
Frank Li
(1)
Gaspar Garcia Jr.
(1)
Giada Stivala
(3)
Giancarlo Pellegrino
(32)
Gianluca De Stefano
(2)
Gili Rusak
(1)
Hung T. Nguyen
(1)
Jannis Rautenstrauch
(1)
Jonathan Cogan
(1)
Jörg Hoffmann
(1)
Jorge Cuéllar
(2)
Jürgen Steimle
(1)
Kai Glauber
(1)
Lorenzo Cazzaro
(1)
Luca Compagna
(2)
Maksim Kovalkov
(1)
Malte Wessels
(1)
Marcel Steinmetz
(1)
Mariano Graziano
(2)
Mario Fritz
(1)
Marten Oltrogge
(1)
Martin Johns
(4)
Michael Backes
(7)
Milivoj Simeonovski
(1)
Neeraj Suri
(1)
Pascal Dupré
(1)
Patrick Speicher
(1)
Peh Chang Wei Brandon
(1)
Qingchuan Zhao
(2)
Raoul Scholtes
(1)
Rebecca Weil
(1)
Robert Künnemann
(1)
Roberto Carbone
(2)
Ryan Aurelio
(1)
Saba Eskandarian
(1)
Sahar Abdelnabi
(1)
Sascha Fahl
(1)
Sawyer Birnbaum
(1)
Simon Koch
(2)
Soheil Khodayari
(7)
Stefan Winter
(1)
Stefano Calzavara
(1)
Sven Bugiel
(1)
Taresh K. Sethi
(1)
Thomas Barber
(1)
Tim Recktenwald
(1)
Vishal Subbiah
(1)
Yasemin Acar
(1)
Zhiqiang Lin
(2)
Filters
Crypto
Eurocrypt
Asiacrypt
Public Key Cryptography
Theory of Cryptography
Journal of Cryptology
Transactions on Symmetric Cryptology
Transactions on Cryptographic Hardware and Embedded Computing
Communications in Cryptology
Fast Software Encryption
Cryptographic Hardware and Embedded Computing Conference
Usenix Security
IEEE Security and Privacy
ACM CCS
Network and Distributed System Security
Financial cryptography
Cryptographer's Track at RSA Conference (CT-RSA)
ESORICS
IEEE Transactions on Information Forensics and Security
Computers & Security
Journal of Information Security and Applications
IEEE Conference on Blockchains and Cryptocurrency (ICBC)
Asia CCS
European Security & privacy
Symposium on Useful Privacy and Security
Privacy Enhancing Technologies
Security and Privacy in Communication Networks
Cryptology and Network Security
Annual Computer Security Applications Conference
Dependable Systems and Networks
IEEE Computer Security Foundations Workshop
IEEE Conference and Communications and Network Security
International Conference on Applied Cryptography and Network Security
Selected Areas in Cryptology
International Conference on Information Security and Cryptology (ICISC)
International Conference on Information and Communication (ICICS)
IFIP International Information Security Conference (SEC)
Conference on Security and Privacy in Wireless and Mobile Networks (WISEC)
IEEE International Symposium on Hardware Oriented Security and Trust
New Security Paradigms Workshop
Information Hiding and Multimedia Security Workshop
Australasian Conference on Information Security and Privacy
AfricaCrypt
LatinCrypt
International Conference on Cyber Security and Resilience
Asia Joint Conference on information Security
International Conference on information Security Applications
ACM Asia Public-Key Cryptography Workshop
International Workshop on Lightweight Cryptography for Security and Privacy
Workshop on Fault Detection and Tolerance in Cryptography
International Conference on Blockchain Technology and Emerging Technologies
Provable Security
Cloud Computing Security Workshop (CCSW)
International Workshop on Security (IWSEC)
International Conference on Information System Security (ICISS)
Select all
Unselect all
Years:
to