About
Publications
Authors: Giulio De Pasquale, Ilya Grishchenko, Riccardo Iesari, Gabriel Pizarro, Lorenzo Cavallaro, Christopher Kruegel, Giovanni Vigna
Published in: 33rd USENIX Security Symposium (USENIX Security 24), 2024
Abstract: ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. The project models the problem as a sequence of actions to achieve privilege escalation from initial access to a target system. Awarded the Distinguished Artifact Award.
Authors: Giulio De Pasquale, Fukutomo Nakanishi, Daniele Ferla, Lorenzo Cavallaro
Published in: IEEE Security and Privacy Workshops (SPW), 2023
Abstract: Based on Return‑Oriented Programming (ROP), ROPFuscator is a compiler‑driven software obfuscation pass, developed to protect intellectual property in software from sophisticated man‑at‑the‑end (MATE) attacks and reverse engineering attempts.
Authors: Nilo Redini, Andrea Continella, Dipanjan Das, Giulio De Pasquale, Noah Spahn, Aravind Machiry, Antonio Bianchi, Christopher Kruegel, Giovanni Vigna
Published in: IEEE Symposium on Security and Privacy (SP), 2021
Abstract: DIANE is a tool that combines static and dynamic analysis to find fuzzing triggers and uses them to fuzz IoT devices automatically
Authors: Andrea Continella, Alessandro Guagnelli, Giovanni Zingaro, Giulio De Pasquale, Alessandro Barenghi, Stefano Zanero, Federico Maggi
Published in: Proceedings of the 32nd Annual Conference on Computer Security Applications (ACSAC), 2016
Abstract: ShieldFS proposes a solution to fight ransomware attacks. It automatically creates detection models that distinguish ransomware from benign processes at runtime on the base of the filesystem activity. ShieldFS adapts these models to the filesystem usage habits observed on the protected system.