Martin Johns
Martin Johns
Professor of Computer Science, TU Braunschweig
Verified email at - Homepage
Cited by
Cited by
25 million flows later: large-scale detection of DOM-based XSS
S Lekies, B Stock, M Johns
Proceedings of the 2013 ACM SIGSAC conference on Computer & communications …, 2013
Security testing: A survey
M Felderer, M Büchler, M Johns, AD Brucker, R Breu, A Pretschner
Advances in Computers 101, 1-51, 2016
Plug-in privacy for smart metering billing
M Jawurek, M Johns, F Kerschbaum
International Symposium on Privacy Enhancing Technologies Symposium, 192-210, 2011
Xssds: Server-side detection of cross-site scripting attacks
M Johns, B Engelmann, J Posegga
2008 Annual Computer Security Applications Conference (ACSAC), 335-344, 2008
RequestRodeo: Client side protection against session riding
M Johns, J Winter
Proceedings of the OWASP Europe 2006 Conference, 2006
Precise client-side protection against {DOM-based}{Cross-Site} scripting
B Stock, S Lekies, T Mueller, P Spiegel, M Johns
23rd USENIX Security Symposium (USENIX Security 14), 655-670, 2014
Smart metering de-pseudonymization
M Jawurek, M Johns, K Rieck
Proceedings of the 27th annual computer security applications conference …, 2011
Hey, you have a problem: On the feasibility of {Large-Scale} web vulnerability notification
B Stock, G Pellegrino, C Rossow, M Johns, M Backes
25th USENIX Security Symposium (USENIX Security 16), 1015-1032, 2016
SessionShield: Lightweight protection against session hijacking
N Nikiforakis, W Meert, Y Younan, M Johns, W Joosen
Engineering Secure Software and Systems: Third International Symposium …, 2011
Thieves in the browser: Web-based cryptojacking in the wild
M Musch, C Wressnegger, M Johns, K Rieck
Proceedings of the 14th International Conference on Availability …, 2019
How the Web Tangled Itself: Uncovering the History of {Client-Side} Web ({In) Security}
B Stock, M Johns, M Steffens, M Backes
26th USENIX Security Symposium (USENIX Security 17), 971-987, 2017
Don't Trust The Locals: Investigating the Prevalence of Persistent Client-Side Cross-Site Scripting in the Wild.
M Steffens, C Rossow, M Johns, B Stock
CISPA, 2019
Adversarial preprocessing: Understanding and preventing {Image-Scaling} attacks in machine learning
E Quiring, D Klein, D Arp, M Johns, K Rieck
29th USENIX Security Symposium (USENIX Security 20), 1363-1380, 2020
Deemon: Detecting CSRF with dynamic analysis and property graphs
G Pellegrino, M Johns, S Koch, M Backes, C Rossow
Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017
Code-reuse attacks for the web: Breaking cross-site scripting mitigations via script gadgets
S Lekies, K Kotowicz, S Groß, EA Vela Nava, M Johns
Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications …, 2017
New Kid on the Web: A Study on the Prevalence of WebAssembly in the Wild
M Musch, C Wressnegger, M Johns, K Rieck
Detection of Intrusions and Malware, and Vulnerability Assessment: 16th …, 2019
On JavaScript Malware and related threats: Web page based attacks revisited
M Johns
Journal in Computer Virology 4 (3), 161-178, 2008
SessionSafe: Implementing XSS immune session handling
M Johns
Computer Security–ESORICS 2006: 11th European Symposium on Research in …, 2006
From facepalm to brain bender: Exploring client-side cross-site scripting
B Stock, S Pfistner, B Kaiser, S Lekies, M Johns
Proceedings of the 22nd ACM SIGSAC conference on computer and communications …, 2015
Code-injection vulnerabilities in web applications—exemplified at cross-site scripting
M Johns
Oldenbourg Wissenschaftsverlag GmbH 53 (5), 256-260, 2011
The system can't perform the operation now. Try again later.
Articles 1–20