default search action
Sebastian Lekies
Person information
Refine list
refinements active!
zoomed in on ?? of ?? records
view refined list in
export refined list as
2020 – today
- 2023
- [b1]Sebastian Lekies:
Client-Side Cross-Site Scripting: Exploitation, Detection, Mitigation, and Prevention. Braunschweig University of Technology, Germany, 2023 - 2022
- [c16]Manuel Karl, Marius Musch, Guoli Ma, Martin Johns
, Sebastian Lekies:
No keys to the kingdom required: a comprehensive investigation of missing authentication vulnerabilities in the wild. IMC 2022: 619-632 - 2021
- [c15]Sebastian Lekies, Damien Engels, Metodi Mitkov:
JSONPS: Secure an inherently insecure practice with this one weird trick! EuroS&P Workshops 2021: 24-31
2010 – 2019
- 2017
- [c14]Sebastian Lekies, Krzysztof Kotowicz, Samuel Groß, Eduardo A. Vela Nava, Martin Johns
Code-Reuse Attacks for the Web: Breaking Cross-Site Scripting Mitigations via Script Gadgets. CCS 2017: 1709-1723 - 2016
- [c13]Lukas Weichselbaum, Michele Spagnuolo, Sebastian Lekies, Artur Janc:
CSP Is Dead, Long Live CSP! On the Insecurity of Whitelists and the Future of Content Security Policy. CCS 2016: 1376-1387 - 2015
- [c12]Ben Stock
From Facepalm to Brain Bender: Exploring Client-Side Cross-Site Scripting. CCS 2015: 1419-1430 - [c11]Sebastian Lekies, Ben Stock, Martin Wentzel, Martin Johns:
The Unexpected Dangers of Dynamic JavaScript. USENIX Security Symposium 2015: 723-735 - 2014
- [c10]Ben Stock, Sebastian Lekies, Martin Johns:
DOM-basiertes Cross-Site Scripting im Web: Reise in ein unerforschtes Land. Sicherheit 2014: 53-64 - [c9]Ben Stock, Sebastian Lekies, Tobias Mueller, Patrick Spiegel, Martin Johns:
Precise Client-side Protection against DOM-based Cross-Site Scripting. USENIX Security Symposium 2014: 655-670 - 2013
- [c8]Sebastian Lekies, Ben Stock
25 million flows later: large-scale detection of DOM-based XSS. CCS 2013: 1193-1204 - [c7]Martin Johns
Tamper-Resistant LikeJacking Protection. RAID 2013: 265-285 - [c6]Martin Johns, Sebastian Lekies, Ben Stock:
Eradicating DNS Rebinding with the Extended Same-origin Policy. USENIX Security Symposium 2013: 621-636 - 2012
- [c5]Martin Johns
BetterAuth: web authentication revisited. ACSAC 2012: 169-178 - [c4]Sebastian Lekies, Nick Nikiforakis, Walter Tighzert, Frank Piessens, Martin Johns
DEMACRO: Defense against Malicious Cross-Domain Requests. RAID 2012: 254-273 - [c3]Sebastian Lekies, Walter Tighzert, Martin Johns:
Towards stateless, client-side driven Cross-Site Request Forgery protection for Web applications. Sicherheit 2012: 111-121 - [c2]Sebastian Lekies, Mario Heiderich:
On the Fragility and Limitations of Current Browser-Provided Clickjacking Protection Schemes. WOOT 2012: 53-63 - 2011
- [c1]Martin Johns
Biting the Hand That Serves You: A Closer Look at Client-Side Flash Proxies for Cross-Domain Requests. DIMVA 2011: 85-103
Coauthor Index
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
Unpaywalled article links
Add open access links from to the list of external document links (if available).
Privacy notice: By enabling the option above, your browser will contact the API of unpaywall.org to load hyperlinks to open access articles. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Unpaywall privacy policy.
Archived links via Wayback Machine
For web page which are no longer available, try to retrieve content from the of the Internet Archive (if available).
Privacy notice: By enabling the option above, your browser will contact the API of archive.org to check for archived content of web pages that are no longer available. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Internet Archive privacy policy.
Reference lists
Add a list of references from ,
, and
to record detail pages.
load references from crossref.org and opencitations.net
Privacy notice: By enabling the option above, your browser will contact the APIs of crossref.org, opencitations.net, and semanticscholar.org to load article reference information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the Crossref privacy policy and the OpenCitations privacy policy, as well as the AI2 Privacy Policy covering Semantic Scholar.
Citation data
Add a list of citing articles from and
to record detail pages.
load citations from opencitations.net
Privacy notice: By enabling the option above, your browser will contact the API of opencitations.net and semanticscholar.org to load citation information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the OpenCitations privacy policy as well as the AI2 Privacy Policy covering Semantic Scholar.
OpenAlex data
Load additional information about publications from .
Privacy notice: By enabling the option above, your browser will contact the API of openalex.org to load additional information. Although we do not have any reason to believe that your call will be tracked, we do not have any control over how the remote server uses your data. So please proceed with care and consider checking the information given by OpenAlex.
last updated on 2024-04-25 05:54 CEST by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by: