Research in Attacks, Intrusions, and Defenses

VDF: Targeted Evolutionary Fuzz Testing of Virtual Devices.- Static Program Analysis as a Fuzzing Aid.- Breaking Fitness Records without Moving: Reverse Engineering and Spoofing Fitbit.- Lens on the endpoint: Hunting for malicious software through endpoint data analysis.- Redemption: Real-time Protection Against Ransomware at End-Hosts.- ILAB: An Interactive Labelling Strategy for Intrusion Detection.- Precisely and Scalably Vetting JavaScript Bridge In Android Hybrid Apps.- Filtering for Malice through the Data Ocean: Large-Scale PHA Install Detection at the Communication Service Provider Level.- Android Malware Clustering through Malicious Payload Mining.- Stealth Loader: Trace-free Program Loading for API Obfuscation.- LAZARUS: Practical Side-channel Resilient Kernel-Space Randomization.- CFI CaRE: Hardware-supported Call and Return Enforcement for Commercial Microcontrollers .- Mining on Someone Else's Dime: Mitigating Covert Mining Operations in Clouds and Enterprises.-BEADS: Automated Attack Discovery in OpenFlow-based SDN Systems.- Trapped by the UI: The Android case.- Thwarting Controlled Side Channel Attacks via Enclave Verifiable Page Faults.- Secure In-Cache Execution.- Scotch: Combining Software Guard Extensions and System Management Mode to Monitor Cloud Resource Usage.- Linking Amplification DDoS Attacks to Booter Services.- Practical and Accurate Runtime Application Protection against DoS Attacks.- Exploring the ecosystem of malicious domain registrations in the .eu TLD.