/dark-knowledge

πŸ˜ˆπŸ“š A curated library of research papers and presentations for counter-detection and web privacy enthusiasts.

image

Dark Knowledge

πŸ˜ˆπŸ“š A curated library of research papers and presentations for counter-detection and web privacy enthusiasts.

Contributing

Saw an interesting paper you think might fit? Feel free to open an issue or PR!

Contents

Year Title Topics Authors Rating
2021 Tales of FAVICONS and Caches - Persistent Tracking in Modern Browsers Favicon, Cookies Konstantinos Solomos, John Kristoff, Chris Kanich, Jason Polakis πŸ”₯πŸ”₯πŸ”₯
2021 The CNAME of the Game - Large-scale Analysis of DNS-based Tracking Evasion DNS Yana Dimova, Gunes Acar, Lukasz Olejnik, Wouter Joosen, Tom Van Goethem
2021 Your Phone is My Proxy - Detecting and Understanding Mobile Proxy Networks Proxies Xianghang Mi, Siyuan Tang, Zhengyi Li, Xiaojing Liao, Feng Qian, XiaoFeng Wang πŸ”₯πŸ”₯πŸ”₯
2020 3d Red Pill - A Guest-to-Host Escape on QEMUKVM Virtio Devices Red Pills
2020 Awakening the Web's Sleeper Agents - Misusing Service Workers for Privacy Leakage Workers
2020 BeCAPTCHA-Mouse - Synthetic Mouse Trajectories and Improved Bot Detection Captchas Alejandro Acien, Aythami Morales, Julian Fierrez, Ruben Vera-Rodriguez πŸ”₯πŸ”₯πŸ”₯
2020 Browser Fingerprint Standardization Using Rule Based Algorithm and Multi-Class Entropy Entropy, Fingerprinting
2020 Combining Behavioural Biometrics and Session Context Analytics to Enhance Risk Based Static Authentication in Web Applications Behaviour
2020 Deobfuscation, Unpacking, And Decoding of Obfuscated Malicious JavaScript For Machine Learning Models Detection Performance Improvement Deobfuscation
2020 Fingerprinting the Fingerprinters - Learning to Detect Browser Fingerprinting Behaviors Vendors
2020 Fingerprinting With Atomic Counters in Upcoming Web Graphics Compute APIs Timing Attacks
2020 FP-Crawlers - Studying the Resilience of Browser Fingerprinting to Block Crawlers Antoine Vastel, Walter Rudametkin, Romain Rouvoy, Xavier Blanc πŸ”₯πŸ”₯
2020 Guess Who - Large-Scale Data-Centric Study of the Adequacy of Browser Fingerprints for Web Authentication Fingerprinting
2020 Inside The Black Box - A Glimpse Of Google's Internal Data Free-For-All Data Analysis
2020 Leveraging Frequency Analysis for Deep Fake Image Recognition Image Recognition, ML
2020 Neither Denied nor Exposed Fixing WebRTC WebRTC Alexandros Fakis, Georgios Karopoulos, Georgios Kambourakis πŸ”₯πŸ”₯
2020 Poking a Hole in the Wall - Censorship-Resistant Internet Communications by Parasitizing on WebRTC WebRTC
2020 Remote physical device fingerprinting Fingerprinting
2020 SenCAPTCHA - A Mobile-First CAPTCHA Using Orientation Sensors Captchas Yunhe Feng, Qing Cao, Hairong Qi, Scott Ruoti
2020 Taming the Shape Shifter - Detecting Anti-Fingerprinting Browsers Babak Amin Azad, Oleksii Starov, Pierre Laperdrix, Nick Nikiforakis
2020 Timeless Timing Attacks - Exploiting Concurrency to Leak Secrets over Remote Connections Timing Attacks
2020 Using Generative Adversarial Networks to Break and Protect Text CAPTCHAs Captchas
2020 Using TLS Fingerprints for OS Identification in Encrypted Traffic TLS, TCP Martin Laőtovička, Stanislav Špaček, Petr Velan, Pavel Čeleda
2020 Web Applications Security and Privacy Privacy
2020 Web Runner Evaluating Third-Party Anti-Bot Services Vendors Babak Amin Azad, Oleksii Starov, Pierre Laperdrix, Nick Nikiforakis
2019 After You, Please - Browser Extensions Order Attacks and Countermeasures Extensions
2019 An Investigation on Information Leakage of DNS over TLS DNS, TLS
2019 Analyzing and Improving the Image Quality of StyleGAN Image Recognition, ML
2019 Browser Fingerprinting - A Survey Fingerprinting Pierre Laperdrix, Nataliia Bielova, Benoit Baudry, Gildas Avoine πŸ”₯πŸ”₯πŸ”₯
2019 Even Turing Should Sometimes Not Be Able To Tell - Mimicking Humanoid Usage Behavior for Exploratory Studies of Online Services Behaviour, ML
2019 Fourier Spectrum Discrepancies in Deep Network Generated Images ML
2019 From IP ID To Device ID and KASLR Bypass TCP
2019 Hacking Google reCAPTCHA v3 using Reinforcement Learning Captchas
2019 JavaScript Template Attacks - Automatically Inferring Host Information for Targeted Exploits
2019 Leveraging WebAssembly for Numerical JavaScript WASM
2019 Morelian Analysis for Browsers - Making Web Authentication Stronger with Canvas Fingerprinting Canvas
2019 Passive OS Fingerprinting by DNS Traffic Analysis DNS
2019 Rendered Private - Making GLSL Execution Uniform to Prevent WebGL-based Browser Fingerprinting WebGL
2019 Tracking Versus Security - Investigating the Two Facets of Browser Fingerprinting Fingerprinting
2018 Clock Around the Clock - Time-Based Device Fingerprinting Timing Attacks Iskander Sanchez-Rola, Igor Santos, Davide Balzarotti πŸ”₯πŸ”₯πŸ”₯
2018 Detecting Social Spamming on Facebook Platform Fingerprinting
2018 Fingerprinting Mobile Browsers Fingerprinting, Mobile
2018 FP-STALKER - Tracking Browser Fingerprint Evolutions Fingerprinting Antoine Vastel, Pierre Laperdrix, Walter Rudametkin, Romain Rouvoy πŸ”₯πŸ”₯πŸ”₯
2018 Hiding in The Crowd - An Analysis of the Effectiveness of Browser Fingerprinting At Large Scale Fingerprinting, Analysis
2018 JavaScript Zero - Real JavaScript and Zero Side-Channel Attacks
2018 Pride and Prejudice in Progressive Web Apps - Abusing Native App-like Features in Web Applications
2018 Rendered Insecure - GPU Side Channel Attacks are Practical WebGL, GPU
2018 Who Changed my Browser Settings Chrome Security
2018 Who Left Open the Cookie Jar - A Comprehensive Evaluation of Third-Party Cookie Policies Cookies
2017 (Cross-)Browser Fingerprinting via OS and Hardware Level Features Fingerprinting Yinzhi Cao, Song Li, Erik Wijmans
2017 Deterministic Browser Timing Attacks
2017 Fantastic Timers and Where to Find Them - High-Resolution Microarchitectural Attacks in JavaScript Timing Attacks Michael Schwarz, ClΓ©mentine Maurice, D. Gruss, S. Mangard
2017 FpRandom - Randomizing Core Browser Objects to Break Advanced Device Fingerprinting Techniques Fingerprinting
2017 Most Websites Don't Need to Vibrate - A Cost-Benefit Approach to Improving Browser Security Fingerprinting
2017 The All Seeing Eye - Web to App Intercommunication for Session Fingerprinting in Android
2017 Tracking You through DNS Traffic - Linking User Sessions by Clustering with Dirichlet Mixture Model DNS
2016 Online Tracking - A 1-million-site Measurement and Analysis Fingerprinting, Analysis Steven Englehardt, Arvind Narayanan πŸ”₯πŸ”₯πŸ”₯
2016 Browser Fingerprinting - Hraska Fingerprinting Peter HraΕ‘ka πŸ”₯πŸ”₯πŸ”₯
2016 Cloud Fingerprinting - Using Clock Skews To Determine Co-Location of Virtual Machines Timing Attacks
2016 I Am Robot - (Deep) Learning to Break Semantic Image CAPTCHAs Captchas
2016 I'm not a human - Breaking the Google reCAPTCHA Captchas
2016 Picasso - Lightweight Device Class Fingerprinting For Web Clients
2016 The Security of WebRTC WebRTC
2016 Web browser fingerprinting a framework for measuring the web browser
2015 Deterministically Deterring Timing Attacks in Deterland Timing Attacks
2015 FpGuard - Detection and Prevention of Browser Fingerprinting
2015 Mitigating browser fingerprint tracking
2015 The Clock is Still Ticking - Timing Attacks in the Modern Web Timing Attacks
2015 Tick Tock - Building Browser Red Pills from Timing Side Channels Red Pills, Timing Attacks Amin Faizkhademi, Mohammad Zulkernine, Komminist Weldemariam
2015 You Are How You Query - Deriving Behavioral Fingerprints From DNS Traffic DNS
2014 Mobile Device Identification Via Sensor Fingerprinting Mobile
2014 OS Fingerprinting and Tethering Detection in Mobile Networks Mobile Yi-Chao Chen, Yong Liao, Mario Baldi, Sung-Ju Lee, Lili Qiu
2014 The Web Never Forgets - Persistent Tracking Mechanisms in The Wild
2013 Cookieless Monster - Exploring the Ecosystem of Web-based Device Fingerprinting
2013 Mitigating Access-Driven Timing Channels in Clouds using StopWatch Timing Attacks
2012 Combining Mouse and Keystroke Dynamics Biometrics for Risk Based Authentication in Web Environments Behaviour
2012 Pixel Perfect - Fingerprinting Canvas in HTML5 Canvas Keaton Mowery, Hovav Shacham πŸ”₯πŸ”₯πŸ”₯
2010 On the Reliability of Wireless Fingerprinting using Clock Skews Timing Attacks
2009 Cache Missing For Fun and Profit Timing Attacks
2008 An Improved Clock-skew Measurement Technique for Revealing Hidden Services Timing Attacks

Todo

  • Add remaining archive
  • Break contents into topics
  • Add url linking to contents
  • Add to top picks
  • Add author names to contents
  • Upload notes into new dir for crammers