引用次数
引用: 1,049
H-指数: 13
I10-指数 : 16
出版物: 24
Saying 'hi!' is not enough: mining inputs for effective test generation
Luca Della Toffola , Cristian Alexandru Staicu , Michael Pradel
Proceedings of the 32nd IEEE/ACM International Conference on Automated Software Engineering 44 -49
33
2017
Freezing the Web: A Study of ReDoS Vulnerabilities in JavaScript-based Web Servers
Cristian-Alexandru Staicu , Michael Pradel
usenix security symposium 361 -376
28
2018
Leaky Images: Targeted Privacy Attacks in the Web.
Cristian-Alexandru Staicu , Michael Pradel
usenix security symposium 923 -939
2
2019
Small World with High Risks: A Study of Security Threats in the npm Ecosystem
Cristian-Alexandru Staicu , Michael Pradel , Cam Tenny , Markus Zimmermann
usenix security symposium 995 -1010
147
2019
Enhancing the Security and Privacy of Full-Stack JavaScript Web Applications
Cristian-Alexandru Staicu ,
2020
Extracting taint specifications for JavaScript libraries
Cristian-Alexandru Staicu , Martin Toldam Torp , Max Schäfer , Anders Møller
international conference on software engineering 198 -209
30
2020
Nomen est omen: exploring and exploiting similarities between argument and parameter names
Hui Liu , Qiurong Liu , Cristian-Alexandru Staicu , Michael Pradel
international conference on software engineering 1063 -1073
38
2016
Anything to Hide? Studying Minified and Obfuscated Code in the Web
Philippe Skolka , Cristian-Alexandru Staicu , Michael Pradel
the web conference 1735 -1746
14
2019
SYNODE: Understanding and Automatically Preventing Injection Attacks on NODE.JS.
Cristian-Alexandru Staicu , Michael Pradel , Benjamin Livshits
network and distributed system security symposium
38
2018
An Empirical Study of Information Flows in Real-World JavaScript
Cristian-Alexandru Staicu , Daniel Schoepe , Musard Balliu , Michael Pradel
acm workshop on programming languages and analysis for security 45 -59
32
2019
Search Based Clustering for Protecting Software with Diversified Updates
Mariano Ceccato , Paolo Falcarin , Alessandro Cabutto , Yosief Weldezghi Frezghi
symposium on search based software engineering 159 -175
6
2016
A Survey of Dynamic Analysis and Test Generation for JavaScript
Esben Andreasen , Liang Gong , Anders Møller , Michael Pradel
ACM Computing Surveys 50 ( 5) 66
32
2017
Preventing dynamic library compromise on node. js via rwx-based privilege reduction
Nikos Vasilakis , Cristian-Alexandru Staicu , Grigoris Ntousakis , Konstantinos Kallas
Smpte Journal 1821 -1838
11
2021
Silent spring: Prototype pollution leads to remote code execution in Node. js
Mikhail Shcherbakov , Musard Balliu , Cristian-Alexandru Staicu
Smpte Journal
2
2023
SandDriller: A fully-automated approach for testing language-based JavaScript sandboxes
Abdullah AlHamdan , Cristian-Alexandru Staicu
Smpte Journal
1
2023
Simscood: Systematic analysis of out-of-distribution behavior of source code models
Hossein Hajipour , Ning Yu , Cristian-Alexandru Staicu , Mario Fritz
arXiv preprint arXiv:2210.04802
3
2022
Bilingual problems: Studying the security risks incurred by native extensions in scripting languages
Cristian-Alexandru Staicu , Sazzadur Rahaman , Ágnes Kiss , Michael Backes
32nd USENIX Security Symposium (USENIX Security 23) 6133 -6150
11
2023
Samplefix: Learning to correct programs by sampling diverse fixes
Hossein Hajipour , Apratim Bhattacharyya , Cristian-Alexandru Staicu , Mario Fritz
Joint European Conference on Machine Learning and Knowledge Discovery in Databases 119 -133
19
2021
Evaluation of HIMMO with Long Identifiers, an Extension of the HIMMO Key Establishment Scheme
Cristian-Alexandru Staicu ,
University of Twente
2014
SecBench. js: An executable security benchmark suite for server-side JavaScript
Masudul Hasan Masud Bhuiyan , Adithya Srinivas Parthasarathy , Nikos Vasilakis , Michael Pradel
2023 IEEE/ACM 45th International Conference on Software Engineering (ICSE) 1059 -1070
10
2023