Martina Lindorfer

General Information

I am currently a Postdoc in the Computer Science Department at the University of California, Santa Barbara with Christopher Kruegel and Giovanni Vigna. I received my PhD from Vienna University of Technology, where I worked at the International Secure Systems Lab (iSecLab) and was supervised by Edgar Weippl. I also received a Master's degree in Software Engineering and Internet Computing from Vienna University of Technology and a Bachelor's degree in Computer and Media Security from the University of Applied Sciences in Hagenberg.

During my PhD studies I have also been a researcher at SBA Research and took part in several research exchanges: From January to May 2013 I visited the National Institute of Informatics (NII) in Tokyo. In November 2013 I visited FORTH-ICS in Crete. Most recently, I was a visiting researcher at the Systems Security Lab at Northeastern University in Boston from October 2014 to April 2015.

Finally, I was one of the recipients of the Google Anita Borg Scholarship for Europe, the Middle East and Africa in 2012.

You can find a copy of my CV here.

Research Interests

My main research interests are dynamic malware analysis and mobile security. For my master's thesis I focused on detecting environment-sensitive malware, i.e., malware that is capable of detecting and evading a dynamic analysis environment. Currently, I am working on mobile malware analysis and am maintaining Andrubis, which is the extension to Anubis for analyzing Android apps. I am also contributing to ReCon a service for detecting and blocking private information leaks in mobile app traffic. Click here to see a list of data leaks ReCon found in iOS, Android, and Windows Phone apps.

Contact

mlindorfer (at) iseclab (dot) org

PGP key: 0x66624E61

Program Committee Memberships

  • Workshop on Formal Methods for Security Engineering (ForSE 2017)
  • Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA 2016)
  • USENIX Workshop on Offensive Technologies (WOOT 2015)
  • International Workshop on Emerging Cyberthreats and Countermeasures (ECTCM 2013, 2014 & 2015)

Publications

Google Scholar

  • Victor van der Veen, Yanick Fratantonio, Martina Lindorfer, Daniel Gruss, Clementine Maurice, Giovanni Vigna, Herbert Bos, Kaveh Razavi, Cristiano Giuffrida
    Drammer: Deterministic Rowhammer Attacks on Mobile Platforms
    ACM Conference on Computer and Communications Security (CCS), October 2016
    [to appear]
  • Jingjing Ren, Ashwin Rao, Martina Lindorfer, Arnaud Legout, David Choffnes
    ReCon: Revealing and Controlling PII Leaks in Mobile Network Traffic
    International Conference on Mobile Systems, Applications and Services (MobiSys), June 2016
    [PDF] [Project Website] [Dataset] [BibTeX]
    @inproceedings{recon:mobisys16,
       author = {Jingjing Ren and Ashwin Rao and Martina Lindorfer and Arnaud Legout and David Choffnes},
       title = {{ReCon: Revealing and Controlling PII Leaks in Mobile Network Traffic}},
       booktitle = {Proceedings of the 14th International Conference on Mobile Systems, Applications and Services (MobiSys)},
       year = {2016}
    }
    
  • Patrick Carter, Collin Mulliner, Martina Lindorfer, William Robertson, Engin Kirda
    CuriousDroid: Automated User Interface Interaction for Android Application Analysis Sandboxes
    International Conference on Financial Cryptography and Data Security (FC), February 2016
    [PDF] [BibTeX]
    @inproceedings{curiousdroid:fc16,
       author = {Carter, Patrick and Mulliner, Collin and Lindorfer, Martina and Robertson, William and Kirda, Engin},
       title = {{CuriousDroid: Automated User Interface Interaction for Android Application Analysis Sandboxes}},
       booktitle = {Proceedings of the 20th International Conference on Financial Cryptography and Data Security (FC)},
       year = {2016}
    }
    
  • Martina Lindorfer, Matthias Neugschwandtner, Christian Platzer
    Marvin: Efficient and Comprehensive Mobile App Classification Through Static and Dynamic Analysis
    Annual International Computers, Software & Applications Conference (COMPSAC), July 2015
    [PDF] [Slides] [App on Google Play] [BibTeX]
    @inproceedings{marvin:compsac2015,
       author = {Lindorfer, Martina and Neugschwandtner, Matthias and Platzer, Christian},
       title = {{Marvin: Efficient and Comprehensive Mobile App Classification Through Static and Dynamic Analysis}},
       booktitle = {Proceedings of the 39th Annual International Computers, Software \& Applications Conference (COMPSAC)},
       year = {2015}
    }
  • Martina Lindorfer, Matthias Neugschwandtner, Lukas Weichselbaum, Yanick Fratantonio, Victor van der Veen, Christian Platzer
    Andrubis - 1,000,000 Apps Later: A View on Current Android Malware Behaviors
    International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security (BADGERS), September 2014
    [PDF] [Slides] [Project Website] [BibTeX]
    @inproceedings{andrubis:badgers14,
       author = {Martina Lindorfer and Matthias Neugschwandtner and Lukas Weichselbaum and Yanick Fratantonio and Victor {van der Veen} and Christian Platzer},
       title = {{Andrubis - 1,000,000 Apps Later: A View on Current Android Malware Behaviors}},
       booktitle = {Proceedings of the the 3rd International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security (BADGERS)},
       year = {2014}
    }
    
  • Lukas Weichselbaum, Matthias Neugschwandtner, Martina Lindorfer, Yanick Fratantonio, Victor van der Veen, Christian Platzer
    Andrubis: Android Malware Under The Magnifying Glass
    Technical Report, Vienna University of Technology, TR-ISECLAB-0414-001, July 2014
    [PDF] [Project Website]
  • Martina Lindorfer, Stamatis Volanis, Alessandro Sisto, Matthias Neugschwandtner, Elias Athanasopoulos, Federico Maggi, Christian Platzer, Stefano Zanero, Sotiris Ioannidis
    AndRadar: Fast Discovery of Android Applications in Alternative Markets
    Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), July 2014
    [PDF] [Slides] [Project Website] [BibTeX]
    @inproceedings{andradar:dimva14,
       author = {Lindorfer, Martina and Volanis, Stamatis and Sisto, Alessandro and Neugschwandtner, Matthias and Athanasopoulos, Elias and Maggi, Federico and Platzer, Christian and Zanero, Stefano and Ioannidis, Sotiris},
       title = {{AndRadar: Fast Discovery of Android Applications in Alternative Markets}},
       booktitle = {Proceedings of the 11th Conference on Detection of Intrusions and Malware \& Vulnerability Assessment (DIMVA)},
       year = {2014}
    }
    
  • Christian Platzer, Martin Stuetz, Martina Lindorfer
    Skin Sheriff: A Machine Learning Solution for Detecting Explicit Images
    International Workshop on Security and Forensics in Communication Systems (ASIACCS-SFCS), June 2014
    [PDF] [BibTeX]
    @inproceedings{platzer2014:skinsheriff,
       author = {Platzer, Christian and Stuetz, Martin and Lindorfer, Martina},
       title = {{Skin Sheriff: A Machine Learning Solution for Detecting Explicit Images}},
       booktitle = {Proceedings of the 2nd International Workshop on Security and Forensics in Communication Systems (ASIACCS-SFCS)},
       year = {2014}
    }
    
  • Sebastian Neuner, Victor van der Veen, Martina Lindorfer, Markus Huber, Georg Merzdovnik, Martin Mulazzani, Edgar Weippl
    Enter Sandbox: Android Sandbox Comparison
    IEEE Mobile Security Technologies Workshop (MoST), May 2014
    [PDF] [Slides] [BibTeX]
    @inproceedings{sandboxcomparison:most14,
       author = {Sebastian Neuner and Victor {van der Veen} and Martina Lindorfer and Markus Huber and Georg Merzdovnik and Martin Mulazzani and Edgar Weippl},
       title = {{Enter Sandbox: Android Sandbox Comparison}},
       booktitle = {Proceedings of the 3rd IEEE Mobile Security Technologies Workshop (MoST)},
       year = {2014}
    }
  • Martina Lindorfer, Bernhard Miller, Matthias Neugschwandtner, Christian Platzer
    Take a Bite - Finding the Worm in the Apple
    International Conference on Information, Communications and Signal Processing (ICICS), December 2013
    [PDF] [Slides] [BibTeX]
    @inproceedings{lindorfer2013:macmal,
       author = {Lindorfer, Martina and Miller, Bernhard and Neugschwandtner, Matthias and Platzer, Christian},
       title = {{Take a Bite - Finding the Worm in the Apple}},
       booktitle = {Proceedings of the 9th International Conference on Information, Communications and Signal Processing (ICICS)},
       year = {2013}
    }
    
  • Martina Lindorfer, Matthias Neumayr, Juan Caballero, Christian Platzer
    POSTER: Cross-Platform Malware: Write Once, Infect Everywhere
    ACM Conference on Computer and Communications Security (CCS), November 2013
    [Abstract] [Poster]
  • Matthias Neugschwandtner, Martina Lindorfer, Christian Platzer
    A View to a Kill: WebView Exploitation
    USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), August 2013
    [PDF] [Slides] [BibTeX]
    @inproceedings{webview:neugschwandtner2013,
       author = {Neugschwandtner, Matthias and Lindorfer, Martina and Platzer, Christian},
       title = {{A View To A Kill: WebView Exploitation}},
       booktitle = {Proceedings of the 6th USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET)},
       year = {2013}
    }
  • Martina Lindorfer, Alessandro Di Federico, Federico Maggi, Paolo Milani Comparetti, Stefano Zanero
    Lines of Malicious Code: Insights Into the Malicious Software Industry
    Annual Computer Security Applications Conference (ACSAC), December 2012
    [PDF] [Slides] [BibTeX]
    @inproceedings{lindorfer2012:beagle,
       author = {Lindorfer, Martina and Di Federico, Alessandro and Maggi, Federico and Milani Comparetti, Paolo and Zanero, Stefano},
       title = {{Lines of Malicious Code: Insights Into the Malicious Software Industry}},
       booktitle = {Proceedings of the 28th Annual Computer Security Applications Conference (ACSAC)},
       year = {2012}
    }
    
  • Martina Lindorfer, Clemens Kolbitsch, Paolo Milani Comparetti
    Detecting Environment-Sensitive Malware
    International Symposium on Recent Advances in Intrusion Detection (RAID), September 2011
    [PDF] [Slides] [Dataset] [BibTeX]
    @inproceedings{lindorfer2011:disarm,
       author = {Lindorfer, Martina and Kolbitsch, Clemens and Milani Comparetti, Paolo},
       title = {{Detecting Environment-Sensitive Malware}},
       booktitle = {Proceedings of the 14th International Symposium on Recent Advances in Intrusion Detection (RAID)},
       year = {2011}
    }
    

Theses

  • Malware Through the Looking Glass: Malware Analysis in an Evolving Threat Landscape
    PhD thesis, Vienna University of Technology, November 2015
    [PDF]
  • Detecting Environment-Sensitive Malware
    Master's thesis, Vienna University of Technology, April 2011
    [PDF]