Send email Copy Email Address
Research Group

Pellegrino

Application Security

Web application software is by far one of the most critical assets of our digital life. The Application Security (AppSec, in short) research group addresses the pressing challenges of identifying, studying, and solving vulnerabilities in modern web application software, at the application and platform levels. Our current interests include the analysis of new web vulnerabilities, program analysis (static, dynamic, and hybrid) that operates at scale, application of ML/AI to web application security, and the security and privacy of future application software systems, including immersive web applications.

Email

Address

Kaiserstraße 21
66386 St. Ingbert (Germany)

Most Recent Publications

Year 2026

Conference / Medium

Usenix Security Symposium (USENIX-Security)
SoK: History Doesn't Repeat Itself, but Android Design-Level Vulnerabilities Rhyme in OpenHarmony

Conference / Medium

GI International Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA)
From Signup to Takedown: An Analysis of Malicious File Distribution in Free Hosting Providers

Conference / Medium

Annual International Conference on Mobile Systems, Applications and Services(MobiSys)
Fragile Deliveries: Inconsistencies in Android Parcel and Their Security Consequences

Conference / Medium

The Web Conference (WWW)
Real or Rogue? Detecting Malicious Miniapps with Deceptive Reporting Interface

Article

IEEE Security & Privacy The Rise of Miniapps: A New Frontier with Security Challenges in Mobile Apps