Quicklinks
Decorative photo of one of the top-corners of the CISPA building
Portrait of Person: Ben Stock

Ben Stock (Faculty)
 
 Campus E9 1 | 66123 Saarbrücken | 2.09

Publications:

Title Date Date Meta
JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript 2018  2018   Aurore Fass, Robert Krawczyk, Michael Backes, Ben Stock  Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA '18)
Didn’t You Hear Me? — Towards More Successful Web Vulnerability Notifications 2018  2018   Ben Stock, Giancarlo Pellegrino, Frank Li, Michael Backes, Christian Rossow  Proceedings of the 25th Annual Symposium on Network and Distributed System Security (NDSS '18).
Efficient and Flexible Discovery of PHP Application Vulnerabilities 2017  2017   Michael Backes, Konrad Rieck, Malte Skoruppa, Ben Stock, Fabian Yamaguchi  Proceedings of the 2nd IEEE European Symposium on Security and Privacy (Euro S&P '17)
How the Web Tangled Itself: Uncovering the History of Client-Side Web (In)Security 2017  2017   Ben Stock, Martin Johns, Marius Steffens, Michael Backes  Proceedings of the 26th USENIX Security Symposium (USENIX Security '17)
On the Feasibility of TTL-based Filtering for DRDoS Mitigation 2016  2016   Michael Backes, Thorsten Holz, Christian Rossow, Teemu Rytilahti, Milivoj Simeonovski, Ben Stock  RAID 2016, 19th International Symposium on Research in Attacks, Intrusions and Defenses
Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification 2016  2016   Ben Stock, Giancarlo Pellegrino, Christian Rossow, Martin Johns, Michael Backes  Proceedings of the 25th USENIX Security Symposium (USENIX Security '16)
Kizzle: A Signature Compiler for Detecting Exploit Kits 2016  2016   Ben Stock, Benjamin Livshits, Benjamin Zorn  The 46th Annual IEEE/IFIP Conference on Dependable Systems and Networks
From Facepalm to Brain Bender: Exploring Client-Side Cross-Site Scripting 2015  2015   Ben Stock, Bernd Kaiser, Stephan Pfistner, Sebastian Lekies, Martin Johns  Proceedings of the 22nd ACM Conference on Computer and Communications Security
The Unexpected Dangers of Dynamic JavaScript 2015  2015   Sebastian Lekies, Ben Stock, Martin Wentzel, Martin Johns  24th USENIX Security Symposium (USENIX Security 15)
Precise Client-side Protection against DOM-based Cross-Site Scripting 2014  2014   Ben Stock, Sebastian Lekies, Tobias Mueller, Patrick Spiegel, Martin Johns  23rd USENIX Security Symposium (USENIX Security 14)
Protecting Users Against XSS-based Password Manager Abuse 2014  2014   Ben Stock, Martin Johns  Proceedings of the 9th ACM symposium on Information, computer and communications security
DOM-basiertes Cross-Site Scripting im Web: Reise in ein unerforschtes Land. 2014  2014   Ben Stock, Sebastian Lekies, Martin Johns  Sicherheit
25 Million Flows Later - Large-scale Detection of DOM-based XSS 2013  2013   Sebastian Lekies, Ben Stock, Martin Johns  20th ACM Conference on Computer and Communications Security Berlin 4.11.2013
Eradicating DNS Rebinding with the Extended Same-Origin Policy 2013  2013   Martin Johns, Sebastian Lekies, Ben Stock  22nd USENIX Security Symposium