Kruegel, Christopher - Department of Computer Science, University of California at Santa Barbara

• Your Botnet is My Botnet: Analysis of a Botnet Takeover Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski,
• Proceedings of the 2002 IEEE Workshop on Information Assurance and Security
• c The Author 2005. Published by Oxford University Press on behalf of The British Computer Society. All rights reserved. For Permissions, please email: journals.permissions@oupjournals.org
• Evaluating the Impact of Automated Intrusion Response Mechanisms
• Scalable, Behavior-Based Malware Clustering Ulrich Bayer
• JWBS001C-184.tex WL041/Bidgoli WL041-Bidgoli.cls June 15, 2005 10:43 Char Count= 0 Host-Based Intrusion DetectionHost-Based Intrusion Detection
• Building Anti-Phishing Browser Plug-Ins: An Experience Report Thomas Raffetseder, Engin Kirda, and Christopher Kruegel
• Exploring Multiple Execution Paths for Malware Analysis Andreas Moser, Christopher Kruegel, and Engin Kirda
• Stateful Intrusion Detection for HighSpeed Networks Christopher Kruegel Fredrik Valeur
• Protecting Users Against Phishing Attacks with AntiPhish Engin Kirda and Christopher Kruegel
• Journal of Computer Security 18 (2010) 861907 861 DOI 10.3233/JCS-2009-0385
• Detection and Analysis of Drive-by-Download Attacks and Malicious JavaScript Code
• Effective Anomaly Detection with Scarce Training Data William Robertson
• Decentralized Event Correlation for Intrusion Detection
• Anomalous System Call Detection Darren Mutz
• TTAnalyze: A Tool for Analyzing Malware Ulrich Bayer & Christopher Kruegel & Engin Kirda
• A Practical Attack to De-Anonymize Social Network Users Gilbert Wondracek Thorsten Holz
• Removing Web Spam Links from Search Engine Results Manuel Egele
• Runtime Detection of Heapbased Overflows
• On the Detection of Anomalous System Call Arguments
• Applying Mobile Agent Technology to Intrusion Detection
• Leveraging User Interactions for In-Depth Testing of Web Applications
• Alert Verification Determining the Success of Intrusion Attempts
• Dynamic Spyware Analysis Manuel Egele, Christopher Kruegel, Engin Kirda
• Automatic Network Protocol Analysis Gilbert Wondracek
• Jini Connectivity for EIB Home and Building Networks: From Design to Implementation
• Supporting Multi-Device Enabled Web Services: Challenges and Open Problems
• Cross-Site Scripting Prevention with Dynamic Data Tainting and Static Analysis
• DPS: An Architectural Style for Development of Secure Software \Lambda Pascal Fenkam, Harald Gall, Mehdi Jazayeri, Christopher Kruegel
• Int. J. Inf. Secur. (2007) 6:417428 DOI 10.1007/s10207-007-0031-0
• A New Approach for Java in Embedded Networks Wolfgang Kastner and Christopher Krugel
• Using Generalization and Characterization Techniques in the Anomaly-based Detection of Web Attacks
• Improving Signature Testing Through Dynamic Data Flow Analysis Christopher Kruegel
• Using decision trees to improve signature-based intrusion detection
• A Solution for the Automated Detection of Clickjacking Attacks
• AccessMiner: Using System-Centric Models for Malware Protection
• An efficient, IP based Solution to the 'Logical Timestamp Wrapping' Problem
• A Mobile Agent based Intrusion Detection System Christopher Kr ugel
• Topology-based detection of anomalous BGP messages
• Analyzing and Detecting Malicious Flash Advertisements Sean Ford, Marco Cova, Christopher Kruegel, and Giovanni Vigna
• Service Specific Anomaly Detection for Network Intrusion Detection
• Accurate Bu er Over ow Detection via Abstract Payload Execution
• Panorama: Capturing System-wide Information Flow for Malware Detection and Analysis
• Overbot -A botnet protocol based on Kademlia Guenther Starnberger
• Toward Automated Detection of Logic Vulnerabilities in Web Applications
• Identifying Dormant Functionality in Malware Programs Paolo Milani Comparetti, Guido Salvaneschi, Engin Kirda,
• Pixy: A Static Analysis Tool for Detecting Web Application Vulnerabilities (Short Paper)
• CAPTCHA Smuggling: Hijacking Web Browsing Sessions to Create CAPTCHA
• Limits of Static Analysis for Malware Detection Andreas Moser, Christopher Kruegel, and Engin Kirda
• Precise Alias Analysis for Static Detection of Web Application Vulnerabilities
• Abusing Social Networks for Automated User Profiling Marco Balduzzi1
• Efficient Detection of Split Personalities in Malware Davide Balzarotti1
• Protecting a Moving Target: Addressing Web Application Concept Drift
• Automated Spyware Collection and Analysis Andreas Stamminger1
• Defending Browsers against Drive-by Downloads: Mitigating Heap-spraying Code Injection Attacks
• Prospex: Protocol Specification Extraction Paolo Milani Comparetti, Gilbert Wondracek, Christopher Kruegel and Engin Kirda
• Visual-Similarity-Based Phishing Detection Eric Medvet
• Secure Input for Web Applications Martin Szydlowski, Christopher Kruegel, Engin Kirda
• Detecting System Emulators Thomas Raffetseder, Christopher Kruegel, and Engin Kirda
• Mining Specifications of Malicious Behavior Mihai Christodorescu
• A Layout-Similarity-Based Approach for Detecting Phishing Pages Angelo P. E. Rosiello
• On the Effectiveness of Techniques to Detect Phishing Sites
• Polymorphic Worm Detection Using Structural Information of Executables
• Detecting Kernel-Level Rootkits Through Binary Analysis
• Web Service Engineering with DIWE Engin Kirda
• J Comput Virol (2006) 2:6777 DOI 10.1007/s11416-006-0012-2
• 220 PIK 27 (2004) 4 FEHLT NOCH!!! K.G. Saur Verlag, Mnchen, 2004
• Is the Internet for Porn? An Insight Into the Online Adult Industry
• SWAP: Mitigating XSS Attacks using a Reverse Proxy Peter Wurzinger
• A View on Current Malware Behaviors Ulrich Bayer
• There is No Free Phish: An Analysis of "Free" and Live Phishing Kits
• Bayesian Event Classification for Intrusion Detection Christopher Kruegel Darren Mutz William Robertson Fredrik Valeur
• Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications
• Automatically Generating Models for Botnet Detection Peter Wurzinger1
• Jini --ein guter Geist f ur die Geb audesystemtechnik
• Journal of Computer Security 17 (2009) 305329 305 DOI 10.3233/JCS-2009-0321
• Detecting Spammers on Social Networks Gianluca Stringhini
• IMPROVED FIELDBUS CONTROL VIA MIDDLEWARE TECHNOLOGY
• Using Static Program Analysis to Aid Intrusion Detection
• Extending .NET Security to Unmanaged Code Patrick Klinkoff1
• Internet Security Christopher Kruegel
• Improving the Efficiency of Dynamic Malware Analysis Ulrich Bayer
• 0-8493-1985-4/05/$0.00+$1.50 2005 by CRC Press LLC
• Static Disassembly of Obfuscated Binaries Christopher Kruegel, William Robertson, Fredrik Valeur and Giovanni Vigna
• FIRE: FInding Rogue nEtworks Brett Stone-Gross, Christopher Kruegel, Kevin Almeroth
• Flexible, Mobile Agent based Intrusion Detection for Dynamic Networks
• Online Gaming 18 COPublished by the ieee COmPuter and reliability sOCieties 1540-7993/09/$25.00 2009 ieee may/June 2009
• VeriKey: A Dynamic Certificate Verification System for Public Key Exchanges
• Inspector Gadget: Automated Extraction of Proprietary Gadgets from Malware Binaries
• Behavioral and Structural Properties of Malicious Code
• Noxes: A Client-Side Solution for Mitigating Cross-Site Scripting Attacks
• Effective and Efficient Malware Detection at the End Host Clemens Kolbitsch
• Preventing Cross Site Request Forgery Attacks Nenad Jovanovic, Engin Kirda, and Christopher Kruegel
• Author's personal copy Client-side cross-site scripting protection
• SecuBat: A Web Vulnerability Scanner Stefan Kals, Engin Kirda, Christopher Kruegel, and Nenad Jovanovic
• Distributed Pattern Detection for Intrusion Detection Christopher Krugel
• Exploiting Redundancy in Natural Language to Penetrate Bayesian Spam Filters
• PoX: Protecting Users from Malicious Facebook Applications Manuel Egele, Andreas Moser, Christopher Kruegel, and Engin Kirda
• Malware Analysis 18 COPublished by the ieee COmPuter and reliability sOCieties 1540-7993/11/$26.00 2011 ieee January/February 2011
• The Underground Economy of Fake Antivirus Software Brett Stone-Gross
• JACKSTRAWS: Picking Command and Control Connections from Bot Traffic Gregoire Jacob
• MISHIMA: Multilateration of Internet hosts hidden using malicious fast-flux agents
• BOTMAGNIFIER: Locating Spambots on the Internet Gianluca Stringhini
• Prophiler: A Fast Filter for the Large-Scale Detection of Malicious Web Pages
• Escape from Monkey Island: Evading High-Interaction Honeyclients
• Peering Through the iFrame Brett Stone-Gross, Marco Cova, Christopher Kruegel, and Giovanni Vigna
• BTLab: A System-Centric, Data-Driven Analysis and Measurement Platform
• EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis Leyla Bilge
• PiOS: Detecting Privacy Leaks in iOS Applications Manuel Egele
• Shellzer: a tool for the dynamic analysis of malicious shellcode
• Dymo: Tracking Dynamic Code Identity Bob Gilbert, Richard Kemmerer, Christopher Kruegel, and Giovanni Vigna
• Silverline: Toward Data Confidentiality in Storage-Intensive Cloud Applications
• FORECAST Skimming off the Malware Cream Matthias Neugschwandtner1
• Understanding Fraudulent Activities in Online Ad Exchanges
• Fear the EAR: Discovering and Mitigating Execution After Redirect Vulnerabilities
• BareBox: Efficient Malware Analysis on Bare-Metal Dhilung Kirat
• Nexat: a history-based approach to predict attacker Casey Cipriano
• Dymo: Tracking Dynamic Code Identity Bob Gilbert, Richard Kemmerer, Christopher Kruegel, and Giovanni Vigna
• Shellzer: a tool for the dynamic analysis of malicious shellcode