Publications and Conference Talks

Academic Publications
  • Mariano Graziano, Davide Canali, Leyla Bilge, Andrea Lanzi, Davide Balzarotti. Needles in a Haystack: Mining Information from Public Dynamic Analysis Sandboxes for Malware Intelligence. Proceedings of the 24th USENIX Security Symposium (USENIX SEC'15), August 12-14, 2015, Washington, DC, USA.
  • Davide Canali, Leyla Bilge, Davide Balzarotti. On The Effectiveness of Risk Prediction Based on Users Browsing Behavior. Proceedings of the 9th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2014), June 4-6, 2014, Kyoto, Japan.
  • Davide Canali, Davide Balzarotti, Aurélien Francillon. The role of web hosting providers in detecting compromised websites. Proceedings of the 22nd International World Wide Web Conference (WWW 2013), May 13-17, 2013, Rio de Janeiro, Brasil. (Best paper nominee)
  • Davide Canali, Davide Balzarotti. Behind the Scenes of Online Attacks: an Analysis of Exploitation Behaviors on the Web. Proceedings of the 20th Annual Network & Distributed System Security Symposium (NDSS 2013), February 24-27, 2013, San Diego, CA, USA.
  • Davide Canali, Andrea Lanzi, Davide Balzarotti, Mihai Christodorescu, Christopher Kruegel, Engin Kirda. A Quantitative Study of Accuracy in System Call-Based Malware Detection. Proceedings of the International Symposium on Software Testing and Analysis (ISSTA 2012), July 15-20, 2012, Minneapolis, MN, USA.
  • Davide Canali, Marco Cova, Giovanni Vigna, Christopher Kruegel. Prophiler: A fast filter for the large-scale detection of malicious web pages. Proceedings of the 20th International World Wide Web Conference (WWW 2011), March 28-April 1, 2011, Hyderabad, India.
Security Advisories
Other publications
  • Davide Canali. Detecting malware with Honeyclients. In Hakin9 magazine, February 2012.
Other Conference Talks
  • Organizer and speaker for the French stop of the OWASP Europe Tour 2013, June 24, 2013, Sophia-Antipolis, France.
  • Behind the Scenes of Web Attacks. NuitDuHack 2013, June 22, 2013, Paris, France.
  • Le rôle des hêbergeurs dans la détection de sites web compromis. SSTIC 2013, Symposium sur la sécurité des technologies de l'information et des communications, June 5-7, 2013, Rennes, France.
  • Dissecting Web Attacks Using Hosted Honeypots. SSTIC 2012, Symposium sur la séurité des technologies de l'information et des communications, June 6-8, 2012, Rennes, France.
  • Building Large Scale Detectors For Web-based Malware. OWASP AppSec Europe 2011, June 7-10, 2011, Dublin, Ireland.

You can also find some additional info on my academic and research group's websites:

EURECOM: Davide Canali on EURECOM

s3-eurecom: Davide Canali on s3-eurecom

iSecLab: Davide Canali on iSecLab