Lei Zhang

Google Scholar ORCID: 0000-0002-9298-2536
15 publications in security and cryptology related venues
Year
Venue
Title
2025
conf/ndss
Misdirection of Trust: Demystifying the Abuse of Dedicated URL Shortening Service.
Zhibo Zhang Lei Zhang Zhangyue Zhang Geng Hong Yuan Zhang Min Yang
2025
conf/uss
Beyond Exploit Scanning: A Functional Change-Driven Approach to Remote Software Version Identification.
Jinsong Chen Mengying Wu Geng Hong Baichao An Mingxuan Liu Lei Zhang Baojun Liu Haixin Duan Min Yang
2025
conf/uss
Careless Retention and Management: Understanding and Detecting Data Retention Denial-of-Service Vulnerabilities in Java Web Containers.
Keke Lian Lei Zhang Haoran Zhao Yinzhi Cao Yongheng Liu Fute Sun Yuan Zhang Min Yang
2025
conf/uss
Effective Directed Fuzzing with Hierarchical Scheduling for Web Vulnerability Detection.
Zihan Lin Yuan Zhang Jiarun Dai Xinyou Huang Bocheng Xiang Guangliang Yang Letian Yuan Lei Zhang Tian Chen Min Yang
2025
conf/uss
XSSky: Detecting XSS Vulnerabilities through Local Path-Persistent Fuzzing.
Youkun Shi Yuan Zhang Tianhao Bai Feng Xue Jiarun Dai Fengyu Liu Lei Zhang Xiapu Luo Min Yang
2025
conf/uss
ChainFuzz: Exploiting Upstream Vulnerabilities in Open-Source Supply Chains.
Peng Deng Lei Zhang Yuchuan Meng Zhemin Yang Yuan Zhang Zhemin Yang
2025
conf/uss
Towards Automatic Detection and Exploitation of Java Web Application Vulnerabilities via Concolic Execution guided by Cross-thread Object Manipulation.
Xinyou Huang Lei Zhang Yongheng Liu Peng Deng Yinzhi Cao Yuan Zhang Min Yang
2024
journals/tifs
The Dark Forest: Understanding Security Risks of Cross-Party Delegated Resources in Mobile App-in-App Ecosystems.
Zhibo Zhang Lei Zhang Guangliang Yang Yanjun Chen Jiahao Xu Min Yang
2024
conf/sp
Efficient Detection of Java Deserialization Gadget Chains via Bottom-up Gadget Search and Dataflow-aided Payload Construction.
Bofei Chen Lei Zhang Xinyou Huang Yinzhi Cao Keke Lian Yuan Zhang Min Yang
2023
conf/ccs
NestFuzz: Enhancing Fuzzing with Comprehensive Understanding of Input Processing Logic.
Peng Deng Zhemin Yang Lei Zhang Guangliang Yang Wenzheng Hong Yuan Zhang Min Yang
2022
conf/uss
Identity Confusion in WebView-based Mobile App-in-app Ecosystems.
Lei Zhang Zhibo Zhang Ancong Liu Yinzhi Cao Xiaohan Zhang Yanjun Chen Yuan Zhang Guangliang Yang Min Yang
2022
conf/sp
Exploit the Last Straw That Breaks Android Systems.
Lei Zhang Keke Lian Haoyu Xiao Zhibo Zhang Peng Liu Yuan Zhang Min Yang Haixin Duan
2020
conf/sp
TextExerciser: Feedback-driven Text Input Exercising for Android Applications.
Yuyu He Lei Zhang Zhemin Yang Yinzhi Cao Keke Lian Shuai Li Wei Yang Zhibo Zhang Min Yang Yuan Zhang Haixin Duan
2018
conf/ccs
How You Get Shot in the Back: A Systematical Study about Cryptojacking in the Real World.
Geng Hong Zhemin Yang Sen Yang Lei Zhang Yuhong Nan Zhibo Zhang Min Yang Yuan Zhang Zhiyun Qian Hai-Xin Duan
2018
conf/ccs
Invetter: Locating Insecure Input Validations in Android Services.
Lei Zhang Zhemin Yang Yuyu He Zhenyu Zhang Zhiyun Qian Geng Hong Yuan Zhang Min Yang

Coauthors

Ancong Liu (1)
Baichao An (1)
Baojun Liu (1)
Bocheng Xiang (1)
Bofei Chen (1)
Feng Xue (1)
Fengyu Liu (1)
Fute Sun (1)
Geng Hong (4)
Guangliang Yang (4)
Hai-Xin Duan (1)
Haixin Duan (3)
Haoran Zhao (1)
Haoyu Xiao (1)
Jiahao Xu (1)
Jiarun Dai (2)
Jinsong Chen (1)
Keke Lian (4)
Lei Zhang (15)
Letian Yuan (1)
Mengying Wu (1)
Min Yang (14)
Mingxuan Liu (1)
Peng Deng (3)
Peng Liu (1)
Sen Yang (1)
Shuai Li (1)
Tian Chen (1)
Tianhao Bai (1)
Wei Yang (1)
Wenzheng Hong (1)
Xiaohan Zhang (1)
Xiapu Luo (1)
Xinyou Huang (3)
Yanjun Chen (2)
Yinzhi Cao (5)
Yongheng Liu (2)
Youkun Shi (1)
Yuan Zhang (13)
Yuchuan Meng (1)
Yuhong Nan (1)
Yuyu He (2)
Zhangyue Zhang (1)
Zhemin Yang (6)
Zhenyu Zhang (1)
Zhibo Zhang (6)
Zhiyun Qian (2)
Zihan Lin (1)
Filters
Select all Unselect all
Years:  to