|
|
|
|
|
|
by hannob
1254 days ago
|
|
|
As you plug this paper, I should point out that it's really bad behavior to not cite prior work. The original idea of subdomain takeover was by Frans Rosén:
https://labs.detectify.com/2014/10/21/hostile-subdomain-take... When your paper came out some media articles made it sound like you invented the method, as you didn't bother to cite the original finder. I know, academics don't like to cite "gray literature". But that's really not ok. |
|
|
Our work isn’t fundamentally about just subdomain takeover, which has received substantial academic study (we cited multiple of these). Academic conference papers are highly space constrained, so it’s common to limit cites to seminal conference papers unless no such sources exist. In this case Liu et al. 2016 is the original academic cite and does cite the work you mention. The work you mention also specifically also deals with SaaS-related (not IP-related) subdomain takeover, which is a separate area that we don’t study in our work.