Yan Shoshitaishvili

Google Scholar
55 publications in security and cryptology related venues
Year
Venue
Title
2025
conf/ndss
SCAMMAGNIFIER: Piercing the Veil of Fraudulent Shopping Website Campaigns.
Marzieh Bitaab Alireza Karimi Zhuoer Lyu Adam Oest Dhruv Kuchhal Muhammad Saad Gail-Joon Ahn Ruoyu Wang Tiffany Bao Yan Shoshitaishvili Adam Doupé
2025
conf/uss
System Register Hijacking: Compromising Kernel Integrity By Turning System Registers Against the System.
Jennifer Miller Manas Ghandat Kyle Zeng Hongkai Chen Abdelouahab Benchikh Tiffany Bao Ruoyu Wang Adam Doupé Yan Shoshitaishvili
2024
conf/ccs
Trust, Because You Can't Verify: Privacy and Security Hurdles in Education Technology Acquisition Practices.
Easton Kelso Ananta Soneji Sazzadur Rahaman Yan Shoshitaishvili Rakibul Hasan
2024
conf/ccs
Fuzz to the Future: Uncovering Occluded Future Vulnerabilities via Robust Fuzzing.
Arvind S. Raj Wil Gibbs Fangzhou Dong Jayakrishna Menon Vadayath Michael Tompkins Steven Wirsz Yibo Liu Zhenghao Hu Chang Zhu Gokulkrishna Praveen Menon Brendan Dolan-Gavitt Adam Doupé Ruoyu Wang Yan Shoshitaishvili Tiffany Bao
2024
conf/uss
Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation.
Ziyi Guo Dang K. Le Zhenpeng Lin Kyle Zeng Ruoyu Wang Tiffany Bao Yan Shoshitaishvili Adam Doupé Xinyu Xing
2024
conf/uss
TYGR: Type Inference on Stripped Binaries using Graph Neural Networks.
Chang Zhu Ziyang Li Anton Xue Ati Priya Bajaj Wil Gibbs Yibo Liu Rajeev Alur Tiffany Bao Hanjun Dai Adam Doupé Mayur Naik Yan Shoshitaishvili Ruoyu Wang Aravind Machiry
2024
conf/uss
Operation Mango: Scalable Discovery of Taint-Style Vulnerabilities in Binary Firmware Services.
Wil Gibbs Arvind S. Raj Jayakrishna Menon Vadayath Hui Jun Tay Justin Miller Akshay Ajayan Zion Leonahenahe Basque Audrey Dutcher Fangzhou Dong Xavier J. Maso Giovanni Vigna Christopher Kruegel Adam Doupé Yan Shoshitaishvili Ruoyu Wang
2024
conf/uss
Ahoy SAILR! There is No Need to DREAM of C: A Compiler-Aware Structuring Algorithm for Binary Decompilation.
Zion Leonahenahe Basque Ati Priya Bajaj Wil Gibbs Jude O'Kain Derron Miao Tiffany Bao Adam Doupé Yan Shoshitaishvili Ruoyu Wang
2024
conf/sp
"Watching over the shoulder of a professional": Why Hackers Make Mistakes and How They Fix Them.
Irina Ford Ananta Soneji Faris Bugra Kokulu Jayakrishna Vadayath Zion Leonahenahe Basque Gaurav Vipat Adam Doupé Ruoyu Wang Gail-Joon Ahn Tiffany Bao Yan Shoshitaishvili
2024
conf/sp
"Len or index or count, anything but v1": Predicting Variable Names in Decompilation Output with Transfer Learning.
Kuntal Kumar Pal Ati Priya Bajaj Pratyay Banerjee Audrey Dutcher Mutsumi Nakamura Zion Leonahenahe Basque Himanshu Gupta Saurabh Arjun Sawant Ujjwala Anantheswaran Yan Shoshitaishvili Adam Doupé Chitta Baral Ruoyu Wang
2024
conf/asiaccs
Deep Dive into Client-Side Anti-Phishing: A Longitudinal Study Bridging Academia and Industry.
Rana Pourmohamad Steven Wirsz Adam Oest Tiffany Bao Yan Shoshitaishvili Ruoyu Wang Adam Doupé Rida A. Bazzi
2023
conf/ccs
RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections.
Kyle Zeng Zhenpeng Lin Kangjie Lu Xinyu Xing Ruoyu Wang Adam Doupé Yan Shoshitaishvili Tiffany Bao
2023
conf/uss
Greenhouse: Single-Service Rehosting of Linux-Based Firmware Binaries in User-Space Emulation.
Hui Jun Tay Kyle Zeng Jayakrishna Menon Vadayath Arvind S. Raj Audrey Dutcher Tejesh Reddy Wil Gibbs Zion Leonahenahe Basque Fangzhou Dong Zack Smith Adam Doupé Tiffany Bao Yan Shoshitaishvili Ruoyu Wang
2023
conf/sp
Toss a Fault to Your Witcher: Applying Grey-box Coverage-Guided Mutational Fuzzing to Detect SQL and Command Injection Vulnerabilities.
Erik Trickel Fabio Pagani Chang Zhu Lukas Dresel Giovanni Vigna Christopher Kruegel Ruoyu Wang Tiffany Bao Yan Shoshitaishvili Adam Doupé
2023
conf/sp
Beyond Phish: Toward Detecting Fraudulent e-Commerce Websites at Scale.
Marzieh Bitaab Haehyun Cho Adam Oest Zhuoer Lyu Wei Wang Jorij Abraham Ruoyu Wang Tiffany Bao Yan Shoshitaishvili Adam Doupé
2023
conf/dsn
Targeted Privacy Attacks by Fingerprinting Mobile Apps in LTE Radio Layer.
Jaejong Baek Pradeep Kumar Duraisamy Soundrapandian Sukwha Kyung Ruoyu Wang Yan Shoshitaishvili Adam Doupé Gail-Joon Ahn
2022
conf/ccs
I'm SPARTACUS, No, I'm SPARTACUS: Proactively Protecting Users from Phishing by Intentionally Triggering Cloaking Behavior.
Penghui Zhang Zhibo Sun Sukwha Kyung Hans Walter Behrens Zion Leonahenahe Basque Haehyun Cho Adam Oest Ruoyu Wang Tiffany Bao Yan Shoshitaishvili Gail-Joon Ahn Adam Doupé
2022
conf/uss
Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability.
Kyle Zeng Yueqi Chen Haehyun Cho Xinyu Xing Adam Doupé Yan Shoshitaishvili Tiffany Bao
2022
conf/uss
Arbiter: Bridging the Static and Dynamic Divide in Vulnerability Discovery on Binary Programs.
Jayakrishna Vadayath Moritz Eckert Kyle Zeng Nicolaas Weideman Gokulkrishna Praveen Menon Yanick Fratantonio Davide Balzarotti Adam Doupé Tiffany Bao Ruoyu Wang Christophe Hauser Yan Shoshitaishvili
2022
conf/uss
Unleash the Simulacrum: Shifting Browser Realities for Robust Extension-Fingerprinting Prevention.
Soroush Karami Faezeh Kalantari Mehrnoosh Zaeifi Xavier J. Maso Erik Trickel Panagiotis Ilia Yan Shoshitaishvili Adam Doupé Jason Polakis
2022
conf/sp
"Flawed, but like democracy we don't have a better system": The Experts' Insights on the Peer Review Process of Evaluating Security Papers.
Ananta Soneji Faris Bugra Kokulu Carlos E. Rubio-Medrano Tiffany Bao Ruoyu Wang Yan Shoshitaishvili Adam Doupé
2022
conf/ccsw-ws
Mitigating Threats Emerging from the Interaction between SDN Apps and SDN (Configuration) Datastore.
Sana Habib Tiffany Bao Yan Shoshitaishvili Adam Doupé
2022
conf/asiaccs
The Convergence of Source Code and Binary Vulnerability Discovery - A Case Study.
Alessandro Mantovani Luca Compagna Yan Shoshitaishvili Davide Balzarotti
2021
conf/uss
Having Your Cake and Eating It: An Analysis of Concession-Abuse-as-a-Service.
Zhibo Sun Adam Oest Penghui Zhang Carlos E. Rubio-Medrano Tiffany Bao Ruoyu Wang Ziming Zhao Yan Shoshitaishvili Adam Doupé Gail-Joon Ahn
2021
conf/fc
Everything You Ever Wanted to Know About Bitcoin Mixers (But Were Afraid to Ask).
Jaswant Pakki Yan Shoshitaishvili Ruoyu Wang Tiffany Bao Adam Doupé
2021
conf/sp
CrawlPhish: Large-scale Analysis of Client-side Cloaking Techniques in Phishing.
Penghui Zhang Adam Oest Haehyun Cho Zhibo Sun RC Johnson Brad Wardman Shaown Sarker Alexandros Kapravelos Tiffany Bao Ruoyu Wang Yan Shoshitaishvili Adam Doupé Gail-Joon Ahn
2021
conf/ndss
Favocado: Fuzzing the Binding Code of JavaScript Engines Using Semantically Correct Test Cases.
Sung Ta Dinh Haehyun Cho Kyle Martin Adam Oest Kyle Zeng Alexandros Kapravelos Gail-Joon Ahn Tiffany Bao Ruoyu Wang Adam Doupé Yan Shoshitaishvili
2020
conf/ccs
HoneyPLC: A Next-Generation Honeypot for Industrial Control Systems.
Efrén López-Morales Carlos E. Rubio-Medrano Adam Doupé Yan Shoshitaishvili Ruoyu Wang Tiffany Bao Gail-Joon Ahn
2020
conf/uss
PhishTime: Continuous Longitudinal Measurement of the Effectiveness of Anti-phishing Blacklists.
Adam Oest Yeganeh Safaei Penghui Zhang Brad Wardman Kevin Tyers Yan Shoshitaishvili Adam Doupé
2020
conf/sp
Karonte: Detecting Insecure Multi-binary Interactions in Embedded Firmware.
Nilo Redini Aravind Machiry Ruoyu Wang Chad Spensky Andrea Continella Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2020
conf/cns
Exploring Abstraction Functions in Fuzzing.
Christopher Salls Aravind Machiry Adam Doupé Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2019
conf/ccs
Matched and Mismatched SOCs: A Qualitative Study on Security Operations Center Issues.
Faris Bugra Kokulu Ananta Soneji Tiffany Bao Yan Shoshitaishvili Ziming Zhao Adam Doupé Gail-Joon Ahn
2019
conf/acsac
Sleak: automating address space layout derandomization.
Christophe Hauser Jayakrishna Menon Yan Shoshitaishvili Ruoyu Wang Giovanni Vigna Christopher Kruegel
2018
conf/ccs
CacheLight: Defeating the CacheKit Attack.
Mauricio Gutierrez Ziming Zhao Adam Doupé Yan Shoshitaishvili Gail-Joon Ahn
2018
conf/ccs
FEAST'18 - 2018 Workshop on Forming an Ecosystem around Software Transformation.
Yan Shoshitaishvili Mayur Naik
2018
conf/ccs
AIM-SDN: Attacking Information Mismanagement in SDN-datastores.
Vaibhav Hemant Dixit Adam Doupé Yan Shoshitaishvili Ziming Zhao Gail-Joon Ahn
2018
conf/uss
HeapHopper: Bringing Bounded Model Checking to Heap Implementation Security.
Moritz Eckert Antonio Bianchi Ruoyu Wang Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2018
conf/sp
A Binary Analysis Approach to Retrofit Security in Input Parsing Routines.
Jayakrishna Menon Christophe Hauser Yan Shoshitaishvili Stephen Schwab
2018
conf/sp
T-Fuzz: Fuzzing by Program Transformation.
Hui Peng Yan Shoshitaishvili Mathias Payer
2018
conf/acsac
Wi Not Calling: Practical Privacy and Availability Attacks in Wi-Fi Calling.
Jaejong Baek Sukwha Kyung Haehyun Cho Ziming Zhao Yan Shoshitaishvili Adam Doupé Gail-Joon Ahn
2017
conf/ccs
Rise of the HaCRS: Augmenting Autonomous Cyber Reasoning Systems with Human Assistance.
Yan Shoshitaishvili Michael Weissbacher Lukas Dresel Christopher Salls Ruoyu Wang Christopher Kruegel Giovanni Vigna
2017
conf/ccs
DIFUZE: Interface Aware Fuzzing for Kernel Drivers.
Jake Corina Aravind Machiry Christopher Salls Yan Shoshitaishvili Shuang Hao Christopher Kruegel Giovanni Vigna
2017
conf/uss
BootStomp: On the Security of Bootloaders in Mobile Devices.
Nilo Redini Aravind Machiry Dipanjan Das Yanick Fratantonio Antonio Bianchi Eric Gustafson Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2017
conf/sp
Your Exploit is Mine: Automatic Shellcode Transplant for Remote Exploits.
Tiffany Bao Ruoyu Wang Yan Shoshitaishvili David Brumley
2017
conf/ndss
Ramblr: Making Reassembly Great Again.
Ruoyu Wang Yan Shoshitaishvili Antonio Bianchi Aravind Machiry John Grosen Paul Grosen Christopher Kruegel Giovanni Vigna
2017
conf/acsac
Piston: Uncooperative Remote Runtime Patching.
Christopher Salls Yan Shoshitaishvili Nick Stephens Christopher Kruegel Giovanni Vigna
2016
conf/sp
SOK: (State of) The Art of War: Offensive Techniques in Binary Analysis.
Yan Shoshitaishvili Ruoyu Wang Christopher Salls Nick Stephens Mario Polino Andrew Dutcher John Grosen Siji Feng Christophe Hauser Christopher Krügel Giovanni Vigna
2016
conf/ndss
Driller: Augmenting Fuzzing Through Selective Symbolic Execution.
Nick Stephens John Grosen Christopher Salls Andrew Dutcher Ruoyu Wang Jacopo Corbetta Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2015
journals/popets
Portrait of a Privacy Invasion.
Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2015
conf/uss
How the ELF Ruined Christmas.
Alessandro Di Federico Amat Cama Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2015
conf/ndss
Firmalice - Automatic Detection of Authentication Bypass Vulnerabilities in Binary Firmware.
Yan Shoshitaishvili Ruoyu Wang Christophe Hauser Christopher Kruegel Giovanni Vigna
2014
conf/uss
Ten Years of iCTF: The Good, The Bad, and The Ugly.
Giovanni Vigna Kevin Borgolte Jacopo Corbetta Adam Doupé Yanick Fratantonio Luca Invernizzi Dhilung Kirat Yan Shoshitaishvili
2013
conf/uss
Revolver: An Automated Approach to the Detection of Evasive Web-based Malware.
Alexandros Kapravelos Yan Shoshitaishvili Marco Cova Christopher Kruegel Giovanni Vigna
2013
conf/uss
Steal This Movie: Automatically Bypassing DRM Protection in Streaming Media Services.
Ruoyu Wang Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna
2012
conf/ccs
Blacksheep: detecting compromised hosts in homogeneous crowds.
Antonio Bianchi Yan Shoshitaishvili Christopher Kruegel Giovanni Vigna

Coauthors

Abdelouahab Benchikh (1)
Adam Doupé (33)
Adam Oest (8)
Akshay Ajayan (1)
Alessandro Di Federico (1)
Alessandro Mantovani (1)
Alexandros Kapravelos (3)
Alireza Karimi (1)
Amat Cama (1)
Ananta Soneji (4)
Andrea Continella (1)
Andrew Dutcher (2)
Anton Xue (1)
Antonio Bianchi (4)
Aravind Machiry (6)
Arvind S. Raj (3)
Ati Priya Bajaj (3)
Audrey Dutcher (3)
Brad Wardman (2)
Brendan Dolan-Gavitt (1)
Carlos E. Rubio-Medrano (3)
Chad Spensky (1)
Chang Zhu (3)
Chitta Baral (1)
Christophe Hauser (5)
Christopher Kruegel (18)
Christopher Krügel (1)
Christopher Salls (6)
Dang K. Le (1)
David Brumley (1)
Davide Balzarotti (2)
Derron Miao (1)
Dhilung Kirat (1)
Dhruv Kuchhal (1)
Dipanjan Das (1)
Easton Kelso (1)
Efrén López-Morales (1)
Eric Gustafson (1)
Erik Trickel (2)
Fabio Pagani (1)
Faezeh Kalantari (1)
Fangzhou Dong (3)
Faris Bugra Kokulu (3)
Gail-Joon Ahn (12)
Gaurav Vipat (1)
Giovanni Vigna (20)
Gokulkrishna Praveen Menon (2)
Haehyun Cho (6)
Hanjun Dai (1)
Hans Walter Behrens (1)
Himanshu Gupta (1)
Hongkai Chen (1)
Hui Jun Tay (2)
Hui Peng (1)
Irina Ford (1)
Jacopo Corbetta (2)
Jaejong Baek (2)
Jake Corina (1)
Jason Polakis (1)
Jaswant Pakki (1)
Jayakrishna Menon (2)
Jayakrishna Menon Vadayath (3)
Jayakrishna Vadayath (2)
Jennifer Miller (1)
John Grosen (3)
Jorij Abraham (1)
Jude O'Kain (1)
Justin Miller (1)
Kangjie Lu (1)
Kevin Borgolte (1)
Kevin Tyers (1)
Kuntal Kumar Pal (1)
Kyle Martin (1)
Kyle Zeng (7)
Luca Compagna (1)
Luca Invernizzi (1)
Lukas Dresel (2)
Manas Ghandat (1)
Marco Cova (1)
Mario Polino (1)
Marzieh Bitaab (2)
Mathias Payer (1)
Mauricio Gutierrez (1)
Mayur Naik (2)
Mehrnoosh Zaeifi (1)
Michael Tompkins (1)
Michael Weissbacher (1)
Moritz Eckert (2)
Muhammad Saad (1)
Mutsumi Nakamura (1)
Nick Stephens (3)
Nicolaas Weideman (1)
Nilo Redini (2)
Panagiotis Ilia (1)
Paul Grosen (1)
Penghui Zhang (4)
Pradeep Kumar Duraisamy Soundrapandian (1)
Pratyay Banerjee (1)
Rajeev Alur (1)
Rakibul Hasan (1)
Rana Pourmohamad (1)
RC Johnson (1)
Rida A. Bazzi (1)
Ruoyu Wang (33)
Sana Habib (1)
Saurabh Arjun Sawant (1)
Sazzadur Rahaman (1)
Shaown Sarker (1)
Shuang Hao (1)
Siji Feng (1)
Soroush Karami (1)
Stephen Schwab (1)
Steven Wirsz (2)
Sukwha Kyung (3)
Sung Ta Dinh (1)
Tejesh Reddy (1)
Tiffany Bao (24)
Ujjwala Anantheswaran (1)
Vaibhav Hemant Dixit (1)
Wei Wang (1)
Wil Gibbs (5)
Xavier J. Maso (2)
Xinyu Xing (3)
Yan Shoshitaishvili (55)
Yanick Fratantonio (3)
Yeganeh Safaei (1)
Yibo Liu (2)
Yueqi Chen (1)
Zack Smith (1)
Zhenghao Hu (1)
Zhenpeng Lin (2)
Zhibo Sun (3)
Zhuoer Lyu (2)
Ziming Zhao (5)
Zion Leonahenahe Basque (6)
Ziyang Li (1)
Ziyi Guo (1)
Filters
Select all Unselect all
Years:  to