Web Security

This study analyzes the evolution of vulnerabilities in open-source ecosystems, revealing trends in growth, distribution, and critical factors influencing security risks.

The paper performs an analysis on how modern web browser respond to signed malware.

Finding methods to bypass Web Application Firewalls (WAFs) by mutating HTTP requests using fuzzing approaches

PriveShield creates isolated profiles for clients based on their browsing history, interactions with websites, and the amount of time they spend on specific websites. This allows the users to easily prevent unwanted browsing information from being shared with third parties and ad exchanges without the need for manual configuration. Our evaluation results from 54 real-world scenarios show that our extension is effective in preventing retargeted ads in 91% of those scenarios.

The evolution of increasingly more complicated web applications relies on browsers constantly adding and removing features. At the same time, some of these web services use browser fingerprinting to track and profile their users with clear disregard for their web privacy. In this paper, we perform an empirical analysis of browser features evolution and aim to evaluate browser fingerprintability.