{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,24]],"date-time":"2025-08-24T00:08:24Z","timestamp":1755994104960,"version":"3.44.0"},"publisher-location":"New York, NY, USA","reference-count":30,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,11,19]],"date-time":"2023-11-19T00:00:00Z","timestamp":1700352000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,11,19]]},"DOI":"10.1145\/3689944.3696168","type":"proceedings-article","created":{"date-parts":[[2024,11,19]],"date-time":"2024-11-19T18:24:02Z","timestamp":1732040642000},"page":"26-32","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["What's in a URL? An Analysis of Hardcoded URLs in npm Packages"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-2228-9912","authenticated-orcid":false,"given":"Elizabeth","family":"Wyss","sequence":"first","affiliation":[{"name":"University of Kansas, Lawrence, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5096-1446","authenticated-orcid":false,"given":"Drew","family":"Davidson","sequence":"additional","affiliation":[{"name":"University of Kansas, Lawrence, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0432-3686","authenticated-orcid":false,"given":"Lorenzo","family":"De Carli","sequence":"additional","affiliation":[{"name":"University of Calgary, Calgary, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,11,19]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. SigStore - Open Source Security Foundation. https:\/\/openssf.org\/ community\/sigstore\/"},{"key":"e_1_3_2_1_2_1","unstructured":"2024. Apache CouchDB. https:\/\/couchdb.apache.org\/"},{"key":"e_1_3_2_1_3_1","unstructured":"2024. Google Domains - My domains. https:\/\/domains.google.com\/registrar\/ ?pli=1"},{"key":"e_1_3_2_1_4_1","unstructured":"2024. Npm | Home. https:\/\/www.npmjs.com\/"},{"key":"e_1_3_2_1_5_1","unstructured":"2024. Public Registry API. https:\/\/github.com\/npm\/registry\/blob\/main\/docs\/ REGISTRY-API.md"},{"key":"e_1_3_2_1_6_1","unstructured":"Ax Sharma. 2022. 241 Npm and PyPI Packages Caught Dropping Linux Cryptominers. https:\/\/www.bleepingcomputer.com\/news\/security\/241-npm-andpypi-packages-caught-dropping-linux-cryptominers\/"},{"key":"e_1_3_2_1_7_1","volume-title":"EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis. In NDSS.","author":"Bilge Leyla","year":"2011","unstructured":"Leyla Bilge, Engin Kirda, Christopher Kruegel, and Marco Balduzzi. 2011. EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis. In NDSS."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"crossref","unstructured":"George Christou Grigoris Ntousakis Eric Lahtinen Sotiris Ioannidis Vasileios P Kemerlis and Nikos Vasilakis. 2023. BinWrap: Hybrid Protection against Native Node.Js Add-ons. In ACM AsiaCCS.","DOI":"10.1145\/3579856.3590330"},{"key":"e_1_3_2_1_9_1","unstructured":"Thomas Claburn. 2022. Expert Grabs Expired Domain for NPM Package to Make a Point. https:\/\/www.theregister.com\/2022\/05\/10\/security_npm_email\/"},{"key":"e_1_3_2_1_10_1","unstructured":"CloudFlare. 2024. URL Scanner. https:\/\/radar.cloudare.com\/scan"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"crossref","unstructured":"Leslie Daigle. 2004. WHOIS Protocol Specification. Request for Comments RFC 3912. Internet Engineering Task Force. https:\/\/datatracker.ietf.org\/doc\/rfc3912","DOI":"10.17487\/rfc3912"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/3196398.3196401"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2021.23055"},{"key":"e_1_3_2_1_14_1","volume-title":"Bad Snakes: Understanding and Improving Python Package Index Malware Scanning. In ICSE.","author":"Vu Duc Ly","year":"2023","unstructured":"Duc Ly Vu, Zachary Newman, and John Speed Meyers. 2023. Bad Snakes: Understanding and Improving Python Package Index Malware Scanning. In ICSE."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/3605770.3625211"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/3605770.3625213"},{"key":"e_1_3_2_1_17_1","author":"INTA","year":"2022","unstructured":"INTA News. 2022. The European Union Continues to Tackle the WHOIS Issue. https:\/\/www.inta.org\/news-and-press\/inta-news\/the-european-uniontackles-the-whois-issue\/","journal-title":"News."},{"key":"e_1_3_2_1_18_1","unstructured":"Keith Collins. 2016. How One Programmer Broke the Internet by Deleting a Tiny Piece of Code. https:\/\/qz.com\/646467\/how-one-programmer-broke-theinternet-by-deleting-a-tiny-piece-of-code"},{"key":"e_1_3_2_1_19_1","volume-title":"Game of Registrars: An Empirical Analysis of Post-Expiration Domain Name Takeovers. In USENIX Security Symposium.","author":"Lauinger Tobias","year":"2017","unstructured":"Tobias Lauinger, Abdelberi Chaabane, Ahmet Salih Buyukkayhan, Kaan Onarlioglu, and William Robertson. 2017. Game of Registrars: An Empirical Analysis of Post-Expiration Domain Name Takeovers. In USENIX Security Symposium."},{"key":"e_1_3_2_1_20_1","unstructured":"Nikunj Patel. 2023. Malicious Npm Packages Strike Again: Exfiltrating Kubernetes Configurations and SSH Keys. https:\/\/www.cyber-oracle.com\/p\/malicious-npmpackages-strike-again"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"crossref","unstructured":"Roberto Perdisci Igino Corona David Dagon and Wenke Lee. 2009. Detecting Malicious Flux Service Networks through Passive Analysis of Recursive DNS Traces. In ACSAC.","DOI":"10.1109\/ACSAC.2009.36"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"crossref","unstructured":"Adriana Sejfia and Max Sch\u00e4fer. 2022. Practical automated detection of malicious npm packages. In ICSE.","DOI":"10.1145\/3510003.3510104"},{"key":"e_1_3_2_1_23_1","volume-title":"Lorenzo De Carli, and Vaibhav Rastogi","author":"Taylor Matthew","year":"2020","unstructured":"Matthew Taylor, Ruturaj Vaidya, Drew Davidson, Lorenzo De Carli, and Vaibhav Rastogi. 2020. Defending Against Package Typosquatting. In NSS. Springer-Verlag, Berlin, Heidelberg."},{"key":"e_1_3_2_1_24_1","volume-title":"Drew Davidson, and Vaibhav Rastogi.","author":"Vaidya Ruturaj K.","year":"2019","unstructured":"Ruturaj K. Vaidya, Lorenzo De Carli, Drew Davidson, and Vaibhav Rastogi. 2019. Security Issues in Language-based Sofware Ecosystems. CoRR abs\/1903.02613 (2019). arXiv:1903.02613 http:\/\/arxiv.org\/abs\/1903.02613"},{"key":"e_1_3_2_1_25_1","unstructured":"VirusTotal. 2024. VirusTotal - Home. https:\/\/www.virustotal.com\/gui\/home\/ upload"},{"key":"e_1_3_2_1_26_1","volume-title":"Lorenzo De Carli, and Drew Davidson","author":"Wyss Elizabeth","year":"2022","unstructured":"Elizabeth Wyss, Lorenzo De Carli, and Drew Davidson. 2022. What the Fork?: Finding Hidden Code Clones in Npm. In ICSE. https:\/\/dl.acm.org\/doi\/10.1145\/ 3510003.3510168"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3605770.3625216"},{"key":"e_1_3_2_1_28_1","unstructured":"Elizabeth Wyss Alexander Wittman Drew Davidson and Lorenzo De Carli. 2022. Wolf at the Door: Preventing Install-Time Attacks in Npm with Latch. In ACM AsiaCCS."},{"key":"e_1_3_2_1_29_1","unstructured":"Markus Zimmermann Cristian-Alexandru Staicu and Michael Pradel. 2019. Small World with High Risks: A Study of Security Threats in the Npm Ecosystem. In USENIX. 17."},{"key":"e_1_3_2_1_30_1","volume-title":"The Paper of Record Meets an Ephemeral Web: An Examination of Linkrot and Content Drift within The New York Times. SSRN Electronic Journal","author":"Zittrain Jonathan","year":"2021","unstructured":"Jonathan Zittrain, John Bowers, and Clare Stanton. 2021. The Paper of Record Meets an Ephemeral Web: An Examination of Linkrot and Content Drift within The New York Times. SSRN Electronic Journal (2021). https:\/\/www.ssrn.com\/ abstract=383313"}],"event":{"name":"CCS '24: ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Salt Lake City UT USA","acronym":"CCS '24"},"container-title":["Proceedings of the 2024 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3689944.3696168","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3689944.3696168","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,23]],"date-time":"2025-08-23T18:22:50Z","timestamp":1755973370000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3689944.3696168"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,19]]},"references-count":30,"alternative-id":["10.1145\/3689944.3696168","10.1145\/3689944"],"URL":"https:\/\/doi.org\/10.1145\/3689944.3696168","relation":{},"subject":[],"published":{"date-parts":[[2023,11,19]]},"assertion":[{"value":"2024-11-19","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}