Send email Copy Email Address
Faculty

Giancarlo Pellegrino

Research Group
Empirical & Behavioral Security Security Testing Vulnerability Analysis Vulnerability Detection

Email

Address

Kaiserstraße 21
66386 St. Ingbert (Germany)

Awards (selection)

2017: Busy Beaver Award for "Cybersecurity I"

Further Information

Short Bio

Dr. Giancarlo Pellegrino is a tenure-track Faculty at CISPA Helmholtz Center for Information Security. Before that he was a visiting assistant professor at Stanford University and research group leader at CISPA as part of the CISPA-Stanford Center for Cybersecurity. He got his PhD at Eurecom in Sophia-Antipolis (France) under the supervision of Davide Balzarotti. Until August 2013, Giancarlo was a researcher associate in the Security and Trust group at the SAP research labs.

CV: Last stations

Since 2017
Faculty at CISPA Helmholtz Center for Information Security
Since 2017
Visiting Assistant Professor at Stanford University
2017 - 2018
Visiting Scholar at Stanford University
2015 - 2017
Postdoctoral Researcher at Saarland University

Publications by Giancarlo Pellegrino

Year 2023

2023-10-02

From Attachments to SEO: Click Here to Learn More about Clickbait PDFs!

Conference / Medium

ACSAC
ACSAC '23ACSAC '23: Proceedings of the 38th Annual Computer Security Applications Conference

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page
2023-10-02

From Attachments to SEO: Click Here to Learn More about Clickbait PDFs!

Conference / Medium

ACSAC
ACSAC '23ACSAC '23: Proceedings of the 38th Annual Computer Security Applications Conference

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page
2023-05-22

It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses

Conference / Medium

SP
44th IEEE Symposium on Security and Privacy44th IEEE Symposium on Security and Privacy

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page
2023-05

The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web

Conference / Medium

SP
2023 IEEE Symposium on Security and Privacy (SP)44th IEEE Symposium on Security and Privacy

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page

Year 2022

2022-05

The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies

Conference / Medium

SP
43rd IEEE Symposium on Security and Privacy (S&P '22)

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page

Year 2021

2021-10

Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks

Conference / Medium

RAID
24th International Symposium on Research in Attacks, Intrusions and Defenses (RAID ’21)

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page
2021-08

JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals

Conference / Medium

USENIX-Security
USENIX Security Symposium30th USENIX Security Symposium (USENIX Security'21)

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page
2021-05

Black Widow: Blackbox Data-driven Web Scanning

Conference / Medium

SP
proceedings of IEEE SSP 2021IEEE Symposium on Security and Privacy, Proceedings of SSP 2021

Tags
Secure Connected and Mobile Systems
Authors
Download Visit Detail Page

Year 2020

2020-05-21

SentiNet: Detecting Localized Universal Attack Against Deep Learning Systems

Conference / Medium

IEEE SPW
IEEE SPW 20203rd Deep Learning and Security Workshop (DLS 2020)

Tags
Algorithmic Foundations and Cryptography Reliable Security Guarantees
Authors
Download Visit Detail Page
2020-05

Automatic Uncovering of Hidden Behaviors from Input Validation in Mobile Apps

Conference / Medium

SP
IEEE Symposium on Security and Privacy

Tags
Reliable Security Guarantees Secure Connected and Mobile Systems
Authors
Download Visit Detail Page