Publications

Fuzzware: Scalable Embedded Systems Firmware Re-Hosting for Fuzzing

2022 - Tobias Scharnowski, Nils Bars, Moritz Schlögel, Eric Gustafson, Marius Muench, Giovanni Vigna, Christopher Kruegel, Thorsten Holz, Ali Abbasi

USE­NIX Se­cu­ri­ty Sym­po­si­um, Bos­ton, MA, USA, Au­gust 2022 [PDF]

FirmWire: Transparent Dynamic Analysis for Cellular Baseband Firmware

2022 - Grant Hernandez, Marius Muench, Dominik Maier, Alyssa Milburn, Shinjo Park, Tobias Scharnowski, Tyler Tucker, Patrick Traynor, Kevin Butler

The Network and Distributed System Security (NDSS) Symposium, San Diego, CA, USA, February 2022

The Evolution of DNS-based Email Authentication: Measuring Adoption and Finding Flaws

2021 - Dennis Tatang, Florian Zettl, Thorsten Holz

International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Donostia / San Sebastian, Spain, October 2021 ** Distinguished Paper Award ** [PDF]

Towards Automating Code-Reuse Attacks Using Synthesized Gadget Chains

2021 - Moritz Schlögel, Tim Blazytko, Julius Basler, Fabian Hemmer, Thorsten Holz

European Symposium on Research in Computer Security (ESORICS), Online, October 2021 [PDF]

Dompteur: Taming Audio Adversarial Examples

2021 - Thorsten Eisenhofer, Lea Schönherr, Joel Frank, Lars Speckemeier, Do­ro­thea Kolossa, Thorsten Holz

USENIX Security Symposium, Virtual, August 2021 [GitHub] [PDF]

Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types

2021 - Sergej Schumilo, Cornelius Aschermann, Ali Abbasi, Simon Wör­ner, Thorsten Holz

USENIX Security Symposium, Virtual, August 2021 [PDF]

Datenübertragbarkeit – Zwischen Abwarten und Umsetzen

2021 - Özlem Karasoy, Gülcan Turgut, Martin Degeling

In: Friedewald et. al, Selbstbestimmung, Privatheit und Datenschutz (Juli, 2021) [pdf]

Spotlight on Phishing: A Longitudinal Study on Phishing Awareness Trainings

2021 - Florian Quinkert, Martin Degeling, Thorsten Holz

Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Virtual, July 2021 [PDF]

Digging Deeper: An Analysis of Domain Impersonation in the Lower DNS Hierarchy

2021 - Florian Quinkert, Dennis Tatang, Thorsten Holz

Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Virtual, July 2021 [PDF]

Extended Abstract: A First Large-scale Analysis on Usage of MTA-STS

2021 - Dennis Tatang, Robin Flume, Thorsten Holz

Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Virtual, July 2021 [PDF]
Page: