| MoSSOT: An automated blackbox tester for single sign-on vulnerabilities in mobile applications S Shi, X Wang, WC Lau Proceedings of the 2019 ACM Asia Conference on Computer and Communications …, 2019 | 19 | 2019 |
| Scalable detection of promotional website defacements in black hat {SEO} campaigns R Yang, X Wang, C Chi, D Wang, J He, S Pang, WC Lau 30th USENIX Security Symposium (USENIX Security 21), 3703-3720, 2021 | 18 | 2021 |
| Evading Web Application Firewalls with Reinforcement Learning X Wang, H Hu Technical Report, 2020 | 8 | 2020 |
| Make Redirection Evil Again: URL Parser Issues in OAuth X Wang, WC Lau, R Yang, S Shi Black Hat Asia 2019, 2019 | 7* | 2019 |
| PHYjacking: Physical Input Hijacking for Zero-Permission Authorization Attacks on Android X Wang, S Shi, Y Chen, WC Lau The Network and Distributed System Security Symposium (NDSS) 2022, 2022 | 5 | 2022 |
| An empirical study on mobile payment credential leaks and their exploits S Shi, X Wang, K Zeng, R Yang, WC Lau Security and Privacy in Communication Networks: 17th EAI International …, 2021 | 2 | 2021 |
| Fingerprint-Jacking: Practical Fingerprint Authorization Hijacking in Android Apps X Wang, Y Chen, R Yang, S Shi, WC Lau Black Hat Europe 2020, 2020 | 2 | 2020 |
| Breaking and Fixing Third-Party Payment Service for Mobile Apps S Shi, X Wang, WC Lau International Conference on Applied Cryptography and Network Security, 3-26, 2021 | 1 | 2021 |
| Mining and Exploiting (Mobile) Payment Credential Leaks in the Wild S Shi, X Wang, WC Lau Black Hat Asia 2021, 2021 | | 2021 |
Wing Cheong LauProfessor, Department of Information Engineering, The Chinese University of Hong KongVerified email at ie.cuhk.edu.hk
