1

OAuth 2.0 Redirect URI Validation Falls Short Literally

Tommaso Innocenti, Matteo Golinelli, Kaan Onarlioglu, Ali Mirheidari, Bruno Crispo, Engin Kirda

Matteo Golinelli, Elham Arshad, Dmytro Kashchuk, Bruno Crispo

Web Cache Deception Escalates!

Web Cache Deception (WCD) tricks a web cache into erroneously storing sensitive content, thereby making it widely accessible on the …

Seyed Ali Mirheidari, Matteo Golinelli, Kaan Onarlioglu, Engin Kirda, Bruno Crispo

PISTIS: Trusted Computing Architecture for Low-end Embedded Systems

Michele Grisafi, Mahmoud Ammar, Marco Roveri, Bruno Crispo

Generative Adversarial Networks for Subdomain Enumeration

Subdomain enumeration is a fundamental step of many security processes (i.e., vulnerability discovery, OSINT, host enumeration, etc.). …

Luca Degani, Francesco Bergadano, Seyed Ali Mirheidari, Fabio Martinelli, Bruno Crispo