default search action
Alexandros Kapravelos
Person information
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2024
- [j5]Giorgos Vasiliadis
, Apostolos Karampelas, Alexandros Shevtsov
WRIT: Web Request Integrity and Attestation Against Malicious Browser Extensions. IEEE Trans. Dependable Secur. Comput. 21(4): 3082-3095 (2024) - [c38]Shaown Sarker
JSHint: Revealing API Usage to Improve Detection of Malicious JavaScript. ISC (2) 2024: 205-225 - [c37]Shaown Sarker
Automated Generation of Behavioral Signatures for Malicious Web Campaigns. ISC (2) 2024: 226-245 - [c36]Elizabeth Lin, Igibek Koishybayev, Trevor Dunlap, William Enck, Alexandros Kapravelos:
UntrustIDE: Exploiting Weaknesses in VS Code Extensions. NDSS 2024 - [c35]Aleksandr Nahapetyan, Sathvik Prasad, Kevin Childs, Adam Oest, Yeganeh Ladwig, Alexandros Kapravelos, Bradley Reaves:
On SMS Phishing Tactics and Infrastructure. SP 2024: 1-16 - [c34]Nikolaos Pantelaios, Alexandros Kapravelos:
FV8: A Forced Execution JavaScript Engine for Detecting Evasive Techniques. USENIX Security Symposium 2024 - [i11]Nikolaos Pantelaios, Alexandros Kapravelos:
Manifest V3 Unveiled: Navigating the New Era of Browser Extensions. CoRR abs/2404.08310 (2024) - [i10]Greg Tystahl, Yasemin Acar, Michel Cukier, William Enck, Christian Kästner, Alexandros Kapravelos, Dominik Wermke, Laurie A. Williams:
S3C2 Summit 2024-03: Industry Secure Supply Chain Summit. CoRR abs/2405.08762 (2024) - [i9]Nikolaos Pantelaios, Alexandros Kapravelos:
FV8: A Forced Execution JavaScript Engine for Detecting Evasive Techniques. CoRR abs/2405.13175 (2024) - [i8]Nusrat Zahan, Yasemin Acar, Michel Cukier, William Enck, Christian Kästner, Alexandros Kapravelos, Dominik Wermke, Laurie A. Williams:
S3C2 Summit 2023-11: Industry Secure Supply Chain Summit. CoRR abs/2408.16529 (2024) - 2023
- [c33]Siddharth Muralee, Igibek Koishybayev, Aleksandr Nahapetyan, Greg Tystahl, Bradley Reaves, Antonio Bianchi, William Enck, Alexandros Kapravelos, Aravind Machiry:
ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions. USENIX Security Symposium 2023: 6983-7000 - [c32]Junhua Su
Automatic Discovery of Emerging Browser Fingerprinting Techniques. WWW 2023: 2178-2188 - [i7]Mindy Tran, Yasemin Acar, Michel Cucker, William Enck, Alexandros Kapravelos, Christian Kästner, Laurie A. Williams:
S3C2 Summit 2202-09: Industry Secure Suppy Chain Summit. CoRR abs/2307.15642 (2023) - [i6]Trevor Dunlap, Yasemin Acar, Michel Cucker, William Enck, Alexandros Kapravelos, Christian Kästner, Laurie A. Williams:
S3C2 Summit 2023-02: Industry Secure Supply Chain Summit. CoRR abs/2307.16557 (2023) - [i5]William Enck, Yasemin Acar, Michel Cukier, Alexandros Kapravelos, Christian Kästner, Laurie A. Williams:
S3C2 Summit 2023-06: Government Secure Supply Chain Summit. CoRR abs/2308.06850 (2023) - 2022
- [j4]Penghui Zhang, Adam Oest, Haehyun Cho, Zhibo Sun
CrawlPhish: Large-Scale Analysis of Client-Side Cloaking Techniques in Phishing. IEEE Secur. Priv. 20(2): 10-21 (2022) - [c31]Karthika Subramani, Jordan Jueckstock, Alexandros Kapravelos, Roberto Perdisci
SoK: Workerounds - Categorizing Service Worker Attacks and Mitigations. EuroS&P 2022: 555-571 - [c30]Dashmeet Kaur Ajmani, Igibek Koishybayev
yoU aRe a Liar: //A Unified Framework for Cross-Testing URL Parsers. SP (Workshops) 2022: 51-58 - [c29]Igibek Koishybayev, Aleksandr Nahapetyan, Raima Zachariah, Siddharth Muralee, Bradley Reaves, Alexandros Kapravelos, Aravind Machiry:
Characterizing the Security of Github CI Workflows. USENIX Security Symposium 2022: 2747-2763 - [c28]Jordan Jueckstock, Peter Snyder, Shaown Sarker, Alexandros Kapravelos, Benjamin Livshits:
Measuring the Privacy vs. Compatibility Trade-off in Preventing Third-Party Stateful Tracking. WWW 2022: 710-720 - 2021
- [j3]Roberto Perdisci, Martina Lindorfer, Adam Doupé, Andrea Lanzi, Alexandros Kapravelos, Gianluca Stringhini:
Introduction to the ACSAC'19 Special Issue - Vol. 2. DTRAP 2(1): 1:1-1:2 (2021) - [c27]Seyed Ali Akhavani, Jordan Jueckstock, Junhua Su, Alexandros Kapravelos, Engin Kirda, Long Lu:
Browserprint: an Analysis of the Impact of Browser Features on Fingerprintability and Web Privacy. ISC 2021: 161-176 - [c26]Sung Ta Dinh, Haehyun Cho, Kyle Martin, Adam Oest, Kyle Zeng, Alexandros Kapravelos, Gail-Joon Ahn, Tiffany Bao, Ruoyu Wang, Adam Doupé, Yan Shoshitaishvili:
Favocado: Fuzzing the Binding Code of JavaScript Engines Using Semantically Correct Test Cases. NDSS 2021 - [c25]Penghui Zhang, Adam Oest, Haehyun Cho, Zhibo Sun
CrawlPhish: Large-scale Analysis of Client-side Cloaking Techniques in Phishing. SP 2021: 1109-1124 - [c24]Quan Chen, Peter Snyder, Ben Livshits, Alexandros Kapravelos:
Detecting Filter List Evasion with Event-Loop-Turn Granularity JavaScript Signatures. SP 2021: 1715-1729 - [c23]Pierre Laperdrix, Oleksii Starov, Quan Chen, Alexandros Kapravelos, Nick Nikiforakis:
Fingerprinting in Style: Detecting Browser Extensions via Injected Style Sheets. USENIX Security Symposium 2021: 2507-2524 - [c22]Jordan Jueckstock, Shaown Sarker, Peter Snyder, Aidan Beggs, Panagiotis Papadopoulos, Matteo Varvello, Benjamin Livshits, Alexandros Kapravelos:
Towards Realistic and ReproducibleWeb Crawl Measurements. WWW 2021: 80-91 - [c21]Quan Chen, Panagiotis Ilia
Cookie Swap Party: Abusing First-Party Cookies for Web Tracking. WWW 2021: 2117-2129 - [i4]Karthika Subramani, Jordan Jueckstock, Alexandros Kapravelos, Roberto Perdisci:
Categorizing Service Worker Attacks and Mitigations. CoRR abs/2111.07153 (2021) - 2020
- [j2]Roberto Perdisci, Martina Lindorfer, Adam Doupé, Andrea Lanzi, Alexandros Kapravelos, Gianluca Stringhini:
Introduction to the ACSAC'19 Special Issue - Part 1. DTRAP 1(4): 19e:1-19e:3 (2020) - [c20]Nikolaos Pantelaios, Nick Nikiforakis, Alexandros Kapravelos:
You've Changed: Detecting Malicious Browser Extensions through their Update Deltas. CCS 2020: 477-491 - [c19]Shaown Sarker, Jordan Jueckstock, Alexandros Kapravelos:
Hiding in Plain Site: Detecting JavaScript Obfuscation through Concealed Browser API Usage. Internet Measurement Conference 2020: 648-661 - [c18]Igibek Koishybayev, Alexandros Kapravelos:
Mininode: Reducing the Attack Surface of Node.js Applications. RAID 2020: 121-134 - [i3]Quan Chen, Peter Snyder, Ben Livshits, Alexandros Kapravelos:
Improving Web Content Blocking With Event-Loop-Turn Granularity JavaScript Signatures. CoRR abs/2005.11910 (2020) - [i2]Jordan Jueckstock, Peter Snyder, Shaown Sarker, Alexandros Kapravelos, Benjamin Livshits:
There's No Trick, Its Just a Simple Trick: A Web-Compat and Privacy Improving Approach to Third-party Web Storage. CoRR abs/2011.01267 (2020)
2010 – 2019
- 2019
- [c17]Aidan Beggs, Alexandros Kapravelos:
Wild Extensions: Discovering and Analyzing Unlisted Chrome Extensions. DIMVA 2019: 3-22 - [c16]Jordan Jueckstock, Alexandros Kapravelos:
VisibleV8: In-browser Monitoring of JavaScript in the Wild. Internet Measurement Conference 2019: 393-405 - [c15]Erik Trickel, Oleksii Starov, Alexandros Kapravelos, Nick Nikiforakis, Adam Doupé:
Everyone is Different: Client-side Diversification for Defending Against Extension Fingerprinting. USENIX Security Symposium 2019: 1679-1696 - [c14]Oleksii Starov, Pierre Laperdrix, Alexandros Kapravelos, Nick Nikiforakis:
Unnecessarily Identifiable: Quantifying the fingerprintability of browser extensions due to bloat. WWW 2019: 3244-3250 - [i1]Jordan Jueckstock, Shaown Sarker, Peter Snyder, Panagiotis Papadopoulos, Matteo Varvello, Benjamin Livshits, Alexandros Kapravelos:
The Blind Men and the Internet: Multi-Vantage Point Web Measurements. CoRR abs/1905.08767 (2019) - 2018
- [c13]Quan Chen, Alexandros Kapravelos:
Mystique: Uncovering Information Leakage from Browser Extensions. CCS 2018: 1687-1700 - 2016
- [c12]Luca Invernizzi, Kurt Thomas, Alexandros Kapravelos, Oxana Comanescu, Jean-Michel Picod, Elie Bursztein:
Cloak of Visibility: Detecting When Machines Browse a Different Web. IEEE Symposium on Security and Privacy 2016: 743-758 - 2015
- [b1]Alexandros Kapravelos:
Analyzing and Defending Against Evolving Web Threats. University of California, Santa Barbara, USA, 2015 - [c11]Kurt Thomas, Elie Bursztein, Chris Grier, Grant Ho, Nav Jagpal, Alexandros Kapravelos, Damon McCoy, Antonio Nappa
Ad Injection at Scale: Assessing Deceptive Advertisement Modifications. IEEE Symposium on Security and Privacy 2015: 151-167 - 2014
- [j1]Nick Nikiforakis, Alexandros Kapravelos, Wouter Joosen, Christopher Kruegel, Frank Piessens, Giovanni Vigna:
On the Workings and Current Practices of Web-Based Device Fingerprinting. IEEE Secur. Priv. 12(3): 28-36 (2014) - [c10]Giancarlo De Maio, Alexandros Kapravelos, Yan Shoshitaishvili, Christopher Kruegel, Giovanni Vigna:
PExy: The Other Side of Exploit Kits. DIMVA 2014: 132-151 - [c9]Apostolis Zarras
The Dark Alleys of Madison Avenue: Understanding Malicious Advertisements. Internet Measurement Conference 2014: 373-380 - [c8]Alexandros Kapravelos, Chris Grier, Neha Chachra, Christopher Kruegel, Giovanni Vigna, Vern Paxson:
Hulk: Eliciting Malicious Behavior in Browser Extensions. USENIX Security Symposium 2014: 641-654 - 2013
- [c7]Nick Nikiforakis, Alexandros Kapravelos, Wouter Joosen, Christopher Kruegel, Frank Piessens, Giovanni Vigna:
Cookieless Monster: Exploring the Ecosystem of Web-Based Device Fingerprinting. IEEE Symposium on Security and Privacy 2013: 541-555 - [c6]Alexandros Kapravelos, Yan Shoshitaishvili, Marco Cova, Christopher Kruegel, Giovanni Vigna:
Revolver: An Automated Approach to the Detection of Evasive Web-based Malware. USENIX Security Symposium 2013: 637-652 - 2012
- [c5]Nick Nikiforakis, Luca Invernizzi, Alexandros Kapravelos, Steven Van Acker, Wouter Joosen, Christopher Kruegel, Frank Piessens, Giovanni Vigna:
You are what you include: large-scale evaluation of remote javascript inclusions. CCS 2012: 736-747 - 2011
- [c4]Alexandros Kapravelos, Marco Cova, Christopher Kruegel, Giovanni Vigna:
Escape from Monkey Island: Evading High-Interaction Honeyclients. DIMVA 2011: 124-143 - 2010
- [c3]Alexandros Kapravelos, Iasonas Polakis, Elias Athanasopoulos, Sotiris Ioannidis, Evangelos P. Markatos:
D(e|i)aling with VoIP: Robust Prevention of DIAL Attacks. ESORICS 2010: 663-678
2000 – 2009
- 2009
- [c2]Ales Friedl, Sven Ubik, Alexandros Kapravelos, Michalis Polychronakis, Evangelos P. Markatos:
Realistic Passive Packet Loss Measurement for High-Speed Networks. TMA 2009: 1-7 - [c1]Nikos Armenatzoglou, Yannis Marketakis, Lito Kriara, Elias Apostolopoulos, Vicky Papavasiliou, Dimitris Kampas, Alexandros Kapravelos, Eythimis Kartsonakis, Giorgos Linardakis, Sofia Nikitaki, Antonis Bikakis
FleXConf: A Flexible Conference Assistant Using Context-Aware Notification Services. OTM Workshops 2009: 108-117
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the of the Internet Archive (if available).
Privacy notice: By enabling the option above, your browser will contact the API of archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from ,
, and
to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and
to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
OpenAlex data
Load additional information about publications from .
Privacy notice: By enabling the option above, your browser will contact the API of openalex.org to load additional information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the information given by OpenAlex.
last updated on 2024-12-02 21:27 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by: