1

This paper conducted a comprehensive measurement to reveal the prevalence of undelegated DNS records.

本文对未授权的DNS记录的普遍性进行了全面的测量。

Temporal CDN-Convex Lens: A CDN-Assisted Practical Pulsing DDoS Attack.

Temporal CDN-Convex Lens: A CDN-Assisted Practical Pulsing DDoS Attack.

In this paper, we report MaginotDNS, a powerful cache poisoning attack against DNS servers that simultaneously act as recursive resolvers and forwarders (termed as CDNS).

在本文中，我们报告了MaginotDNS，这是针对同时充当递归解析器和转发器（称为CDNS）的DNS服务器的强大缓存投毒攻击。

In this paper, we present a novel framework, HostingChecker (DareShark), for detecting domain takeovers.

In this paper, we present a novel framework, HostingChecker (DareShark), for detecting domain takeovers.

Ransom attacks have attracted widespread attention from researchers, however, there have been relatively few researches on vehicles, especially for electric vehicles (EVs). Such attacks mainly accomplish their purpose by exploiting vulnerabilities of vehicle itself, but often have a narrow attack surface. In this demo with real EVs and public charging piles, we show a new approach, the Charging Pile Ransom Attack (CPRA), that can remotely ransom EVs through the charging connector between EVs and charging piles. Additionally, we design a physical plugin for charging connectors that can extend the EV models affected by the described ransom attack. In this case, the CPRA needs a preparing step to locally install the plugin on the connector.

Ransom attacks have attracted widespread attention from researchers, however, there have been relatively few researches on vehicles, especially for electric vehicles (EVs). Such attacks mainly accomplish their purpose by exploiting vulnerabilities of vehicle itself, but often have a narrow attack surface. In this demo with real EVs and public charging piles, we show a new approach, the Charging Pile Ransom Attack (CPRA), that can remotely ransom EVs through the charging connector between EVs and charging piles. Additionally, we design a physical plugin for charging connectors that can extend the EV models affected by the described ransom attack. In this case, the CPRA needs a preparing step to locally install the plugin on the connector.