I am a system and network security researcher. My research investigates vulnerabilities and threats at internet-scale for networked systems (IoT, Mobile, Cloud). My research applies empirical methods that bridge between end-host binary analysis and network vulnerability analysis to discover fundamental security flaws in deployed internet technologies.
Omar Alrawi*, Athanasios Avgetidis*, Kevin Valakuzhy, Charles Lever, Paul Burbage, Angelos Keromytis, Fabian Monrose, Manos Antonakakis; Beyond The Gates: An Empirical Analysis of HTTP-Managed Password Stealers and Operators, to appear in USENIX Security, August 2023. (Acceptance rate: ??).
Aaron Faulkenberry, Athanasios Avgetidis, Zane Ma, Omar Alrawi, Charles Lever, Panagiotis Kintis, Fabian Monrose, Angelos Keromytis, Manos Antonakakis; View from Above: Exploring the Malware Ecosystem from Upper DNS Hierarchy, to appear in The Annual Computer Security Applications Conference (ACSAC), December 2022. (Acceptance rate: 24.1%).
Priyanka Dodia, Mashael Al Sabah, Omar Alrawi, Tao Wang; Exposing the Rat in the Tunnel: Using Traffic Analysis for Tor-based Malware Detection, in The ACM Conference on Computer and Communications Security (ACM CCS), November 2022. (Acceptance rate: 18%).
R. Duan, O. Alrawi, R. P Kasturi, R. Elder, B. Saltaformaggio, W. Lee. Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages, NDSS 2021. (Acceptance rate 15.2%).
R. P Kasturi, Y. Sun, R. Duan, O. Alrawi, E. Asdar, V. Zhu, Y. Kwon, B. Saltaformaggio; TARDIS: Rolling Back The Clock On CMS-Targeting Cyber Attacks, IEEE S&P (Oakland), May 2020. (Acceptance rate 12.3%).
R. Duan, A. Bijlani, Y. Ji, O. Alrawi, Y. Xiong, M. Ike, B. Saltaformaggio, W. Lee; Automating Patching of Vulnerable Open-Source Software Versions in Application Binaries, NDSS, Feb 2019. (Acceptance rate 17.1%).
Aziz Mohaisen, Omar Alrawi; AMAL: High-Fidelity, Behavior-based Automated Malware Analysis and Classification., Elsevier Computers & Security, 2015.
Aziz Mohaisen, Omar Alrawi,; AV-Meter: An Evaluation of Antivirus Scans and Labels. DIMVA 2014. (Acceptance rate 23.3%).