Publications (Google Scholar Profile)

Understanding and Mitigating Remote Code Execution Vulnerabilities in Cross-Platform Ecosystem
Feng Xiao, Zheng Yang, Joey Allen, Guangliang Yang, Grant Williams, Wenke Lee
ACM CCS 2022 (To Appear)

Abusing Hidden Properties to Attack Node.js Ecosystem
Feng Xiao, Jianwei Huang, Yichang Xiong, Guangliang Yang, Hong Hu, Guofei Gu, Wenke Lee
USENIX Security 2021

Active Link Obfuscation to Thwart Link-flooding Attacks for Internet of Things
Xuyang Ding, Feng Xiao, Man Zhou, Zhibo Wang
TrustCom 2020

Discovering Hidden Properties to Attack Node.js Ecosystem
Feng Xiao, Jianwei Huang, Yichang Xiong, Guangliang Yang, Hong Hu, Guofei Gu, Wenke Lee
BlackHat USA 2020 (Press Release: Dark Reading, PortSwigger Daily Swig)

Unexpected Data Dependency Creation and Chaining: A New Attack to SDN
Feng Xiao, Jinquan Zhang, Jianwei Huang, Guofei Gu, Dinghao Wu, Peng Liu
Oakland 2020

PatternListener: Cracking Android Pattern Lock Using Acoustic Signals
Man Zhou, Qian Wang, Jingxiao Yang, Qi Li, Feng Xiao, Zhibo Wang, Xiaofeng Chen
CCS’18

Hacking the Brain: Customize Evil Protocol to Pwn an SDN Controller
Feng Xiao, Jianwei Huang, Peng Liu
DEFCON 26

Enabling Secure Location Authentication in Drone (poster)
Feng Xiao, Man Zhou, Youchen Liye, Qian Wang
MobiCom’17

CHAOS: An SDN-Based Moving Target Defense System
Yuan Shi, Huanguo Zhang, Juan Wang, Feng Xiao, Jianwei Huang, Daochen Zha.
SCN