The Abuser Inside Apps: Finding the Culprit Committing Mobile Ad Fraud

Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer

FUSE: Finding File Upload Bugs via Penetration Testing

Who Spent My EOS? On the (In)Security of Resource Management of EOS.IO

Pride and Prejudice in Progressive Web Apps: Abusing Native App-like Features in Web Applications

Doppelgängers on the Dark Web: A Large-scale Assessment on Phishing Hidden Web Services

Private Investigator: Extracting Personally Identifiable Information from Large Language Models Using Optimized Prompts

Refusal Is Not an Option: Unlearning Safety Alignment of Large Language Models

TrustyMon: Practical Detection of DOM-based Cross-Site Scripting Attacks Using Trusted Types.

Evaluating Robustness of Reference-based Phishing Detectors.