Some media coverage of our CCS 2021 paper “DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale”:

Some media coverage of our CCS 2021 paper “DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale”:

  • The Register by Thomas Claburn, November 11, 2021
    Malicious Chrome extensions are bad. But what about nice ones that can be hijacked? This new tool spots them: DoubleX static analyzer is doubleplusgood
    https://www.theregister.com/2021/11/11/chrome_extension_analyzer/

  • Medium by Daniel Hunt, November 17, 2021
    Static Analysis of Google Chrome Extensions For Bug Bounties, Fun, and Profit: An automated approach (Ok… Maybe Not For Fun ;))
    https://medium.com/techiepedia/static-analysis-of-google-chrome-extensions-for-bug-bounties-fun-and-profit-an-automated-80a10a508b4d