Xiang Li | 李想
Xiang Li | 李想
Home
Publications
Projects
Activities
Misc
Contact
Links
Light
Dark
Automatic
English
中文 (简体)
1
ResolverFuzz: Automated Discovery of DNS Resolver Vulnerabilities with Query-Response Fuzzing
In this paper, we propose
ResolverFuzz
to fuzz the resolver.
Qifan Zhang
,
Xuesong Bai
,
Xiang Li
,
Haixin Duan
,
Qi Li
,
Zhou Li
Cite
Code
Project
ResolverFuzz: Automated Discovery of DNS Resolver Vulnerabilities with Query-Response Fuzzing
在本文中,我们提出了一个全新的工具
ResolverFuzz
用来模糊测试解析器。
Qifan Zhang
,
Xuesong Bai
,
Xiang Li
,
Haixin Duan
,
Qi Li
,
Zhou Li
,
✉ Corresponding authors
Aug 14, 2024
DNS
Cite
Code
Project
TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets
This paper proposes the TuDoor Attack, by systematically exploring and exploiting logic vulnerabilities in DNS response pre-processing with malformed packets, leading to DNS cache poisoning (1s), denial-of-service, and resource consuming attacks.
Xiang Li
,
Wei Xu
,
Baojun Liu
,
Mingming Zhang
,
Zhou Li
,
Jia Zhang
,
Deliang Chang
,
Xiaofeng Zheng
,
Chuhan Wang
,
Jianjun Chen
,
Haixin Duan
,
Qi Li
Cite
Project
TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets
本论文提出了“TuDoor攻击”,通过系统地探索并利用畸形数据包中DNS响应预处理的逻辑漏洞,导致DNS缓存投毒(1秒)、拒绝服务和资源消耗攻击。
Xiang Li
,
Wei Xu
,
Baojun Liu
,
Mingming Zhang
,
Zhou Li
,
Jia Zhang
,
Deliang Chang
,
Xiaofeng Zheng
,
Chuhan Wang
,
Jianjun Chen
,
Haixin Duan
,
Qi Li
May 20, 2024
DNS
Cite
Project
BreakSPF: How Shared Infrastructures Magnify SPF Vulnerabilities Across the Internet
This paper proposes a BreakSPF attack framework, a newly discovered method for attackers to bypass the SPF protocol and launch email spoofing attacks.
Chuhan Wang
,
YASUHIRO KURANAGA
,
Yihang Wang
,
Mingming Zhang
,
Linkai Zheng
,
Xiang Li
,
Jianjun Chen
,
Haixin Duan
,
Yanzhong Lin
,
Qingfeng Pan
Cite
Project
BreakSPF: How Shared Infrastructures Magnify SPF Vulnerabilities Across the Internet
本论文提出了一个名为BreakSPF的攻击框架:攻击者新发现的一种绕过SPF协议并发起电子邮件欺骗攻击的方法。
Chuhan Wang
,
YASUHIRO KURANAGA
,
Yihang Wang
,
Mingming Zhang
,
Linkai Zheng
,
Xiang Li
,
Jianjun Chen
,
Haixin Duan
,
Yanzhong Lin
,
Qingfeng Pan
Feb 26, 2024
Email
Cite
Project
TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers
In this paper, we present the
TsuKing
attack.
Wei Xu
,
Xiang Li
,
Chaoyi Lu
,
Baojun Liu
,
Jia Zhang
,
Jianjun Chen
,
Tao Wan
,
Haixin Duan
Cite
Project
TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers
In this paper, we present the
TsuKing
attack.
Wei Xu
,
Xiang Li
,
Chaoyi Lu
,
Baojun Liu
,
Jia Zhang
,
Jianjun Chen
,
Tao Wan
,
Haixin Duan
Nov 26, 2023
DNS
Cite
Project
Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild
In this paper, we present a stealthy mining pool detection system.
Zhenrui Zhang
,
Geng Hong
,
Xiang Li
,
Zhuoqun Fu
,
Jia Zhang
,
Mingxuan Liu
,
Chuhan Wang
,
Jianjun Chen
,
Baojun Liu
,
Haixin Duan
,
Chao Zhang
,
Min Yang
Cite
Project
Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild
In this paper, we present a stealthy mining pool detection system.
Zhenrui Zhang
,
Geng Hong
,
Xiang Li
,
Zhuoqun Fu
,
Jia Zhang
,
Mingxuan Liu
,
Chuhan Wang
,
Jianjun Chen
,
Baojun Liu
,
Haixin Duan
,
Chao Zhang
,
Min Yang
Nov 26, 2023
Underground Economy
Cite
Project
»
Cite
×