Zakir Durumeric

Assistant Professor

Stanford Computer Science

zakir@cs.stanford.edu

Gates 432 | (650) 724-6279

publications | cv | scholar

Preprints

Characterizing the MrDeepFakes Sexual Deepfake Marketplace
  • Catherine Han, Anne Li, Deepak Kumar, and Zakir Durumeric
On the Centralization and Regionalization of the Web
  • Gautam Akiwate, Kimberly Ruth, Rumaisa Habib, and Zakir Durumeric

Conference Publications

CATO: End-to-End Optimization of ML-Based Traffic Analysis Pipelines [preprint]
  • Gerry Wan, Shinan Liu, Francesco Bronzino, Nick Feamster, and Zakir Durumeric
  • USENIX Symposium on Networked Systems Design and Implementation (NSDI), April 2025
PressProtect: Helping Journalists Navigate Social Media in the Face of Online Harassment
  • Catherine Han, Anne Li, Deepak Kumar, and Zakir Durumeric
  • ACM Computer-Supported Cooperative Work And Social Computing (CSCW), November 2024
  • Best Paper Honorable Mention
Ten Years of ZMap
  • Zakir Durumeric, David Adrian, Phillip Stephens, Eric Wustrow, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), November 2024
Democratizing LEO Satellite Network Measurement
  • Liz Izhikevich, Manda Tran, Katherine Izhikevich, Gautam Akiwate, and Zakir Durumeric
  • ACM SIGMETRICS/IFIP PERFORMANCE, June 2024
Watch Your Language: Large Language Models and Content Moderation
  • Deepak Kumar, Yousef AbuHashem, and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2024
Machine-Made Media: Monitoring the Mobilization of Machine-Generated Articles on Misinformation and Mainstream News Websites
  • Hans Hanley and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2024
Partial Mobilization: Tracking Multilingual Information Flows Amongst Russian Media Outlets and Telegram
  • Hans Hanley and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2024
Specious Sites: Tracking the Spread and Sway of Spurious News Stories at Scale
  • Hans Hanley, Deepak Kumar, and Zakir Durumeric
  • IEEE Symposium on Security and Privacy ("Oakland"), May 2024
TATA: Stance Detection via Topic-Agnostic and Topic-Aware Embeddings
  • Hans Hanley and Zakir Durumeric
  • Empirical Methods in Natural Language Processing (EMNLP), December 2023
Cloud Watching: Understanding Attacks Against Cloud-Hosted Services
  • Liz Izhikevich, Manda Tran, Michalis Kallitsis, Aurore Fass, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), October 2023
Stale TLS Certificates: Investigating Precarious Third-Party Access to Valid TLS Keys
  • Zane Ma, Aaron Faulkenberry, Thomas Papastergiou, Zakir Durumeric, Michael Bailey, Angelos Keromytis, Fabian Monrose, and Manos Antonakakis
  • ACM Internet Measurement Conference (IMC), October 2023
Hate Raids on Twitch: Echoes of the Past, New Modalities, and Implications for Platform Governance
  • Catherine Han, Joseph Seering, Deepak Kumar, Jeff Hancock, and Zakir Durumeric
  • ACM Computer-Supported Cooperative Work And Social Computing (CSCW), October 2023
  • Best Paper Award
A Golden Age: Conspiracy Theories’ Relationship with Misinformation Outlets, News Media, and the Wider Internet
  • Hans Hanley, Deepak Kumar, and Zakir Durumeric
  • ACM Computer-Supported Cooperative Work And Social Computing (CSCW), October 2023
Happenstance: Utilizing Semantic Search to Track Russian State Media Narratives about the Russo-Ukrainian War On Reddit
  • Hans Hanley, Deepak Kumar, and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2023
  • Invited Paper at American Political Science Association (APSA) Full Paper Panel, “Mechanisms of Domination?: State Sponsored Information and Media Ecosystems,” Sept. 2023
"A Special Operation": A Quantitative Approach to Dissecting and Comparing Different Media Ecosystems' Coverage of the Russo-Ukrainian War
  • Hans Hanley, Deepak Kumar, and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2023
Understanding the Behaviors of Toxic Accounts on Reddit
  • Deepak Kumar, Jeff Hancock, Kurt Thomas, and Zakir Durumeric
  • International World Wide Web Conference (WWW), May 2023
A World Wide View of Browsing the World Wide Web
  • Kimberly Ruth, Aurore Fass, Jonathan Azose, Mark Pearson, Emma Thomas, Caitlin Sadowski, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), October 2022
Toppling Top Lists: Evaluating the Accuracy of Popular Website Lists
  • Kimberly Ruth, Deepak Kumar, Brandon Wang, Luke Valenta, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), October 2022
Retroactive Identification of Targeted DNS Infrastructure Hijacking
  • Gautam Akiwate, Raffaele Sommese, Mattijs Jonker, Zakir Durumeric, kc Claffy, Geoffrey Voelker, and Stefan Savage
  • ACM Internet Measurement Conference (IMC), October 2022
ZDNS: A Fast DNS Toolkit for Internet Measurement
  • Liz Izhikevich, Gautam Akiwate, Briana Berger, Spencer Drakontaidis, Anna Ascheman, Paul Pearce, David Adrian, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), October 2022
  • Community Contribution Award
Retina: Analyzing 100 GbE Traffic on Commodity Hardware
  • Gerry Wan, Fengchen Gong, Tom Barbette, and Zakir Durumeric
  • ACM SIGCOMM, August 2022
Predicting IPv4 Services Across All Ports
  • Liz Izhikevich, Renata Teixeira, and Zakir Durumeric
  • ACM SIGCOMM, August 2022
On the Infrastructure Providers that Support Misinformation Websites
  • Catherine Han, Deepak Kumar, and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2022
No Calm in The Storm: Investigating QAnon Website Relationships
  • Hans Hanley, Deepak Kumar, and Zakir Durumeric
  • International AAAI Conference on Web and Social Media (ICWSM), June 2022
ASdb: A System for Classifying Owners of Autonomous Systems
  • Maya Ziv, Liz Izhikevich, Kimberly Ruth, Katherine Izhikevich, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), November 2021
Tracing Your Roots: Exploring the TLS Trust Anchor Ecosystem
  • Zane Ma, James Austgen, Joshua Mason, Zakir Durumeric, and Michael Bailey
  • ACM Internet Measurement Conference (IMC), November 2021
Stratosphere: Finding Vulnerable Cloud Storage Buckets
  • Jack Cable, Drew Gregory, Liz Izhikevich, and Zakir Durumeric
  • 24th Symposium on Research in Attacks, Intrusions and Defenses (RAID), October 2021
Designing Toxic Content Classification for a Diversity of Perspectives
  • Deepak Kumar, Patrick Kelley, Sunny Consolvo, Joshua Mason, Elie Bursztein, Zakir Durumeric, Kurt Thomas, and Michael Bailey
  • USENIX Symposium on Usable Privacy and Security (SOUPS), August 2021
LZR: Identifying Unexpected Internet Services
  • Liz Izhikevich, Renata Teixeira, and Zakir Durumeric
  • USENIX Security Symposium, August 2021
What’s in a Name? Exploring CA Certificate Control
  • Zane Ma, Joshua Mason, Manos Antonakakis, Zakir Durumeric, and Michael Bailey
  • USENIX Security Symposium, August 2021
SoK: Hate, Harassment, and the Changing Landscape of Online Abuse
  • Kurt Thomas, Devdatta Akhawe, Michael Bailey, Elie Bursztein, Dan Boneh, Sunny Consolvo, Nicki Dell, Zakir Durumeric, Patrick Gage Kelley, Deepak Kumar, Damon McCoy, Sarah Meiklejohn, Thomas Ristenpart, and Gianluca Stringhini
  • IEEE Symposium on Security and Privacy ("Oakland"), May 2021
On the Origin of Scanning: The Impact of Location on Internet-Wide Scans
  • Gerry Wan, Liz Izhikevich, David Adrian, Katsunari Yoshioka, Ralph Holz, Christian Rossow, and Zakir Durumeric
  • ACM Internet Measurement Conference (IMC), October 2020
Let's Encrypt: An Automated Certificate Authority to Encrypt the Entire Web
  • Josh Aas, Richard Barnes, Benton Case, Zakir Durumeric, Peter Eckersley, Alan Flores-Lopez, J. Alex Halderman, Jacob Hoffman-Andrews, James Kasten, Eric Rescorla, Seth Schoen, and Brad Warren
  • ACM Conference on Computer and Communications Security (CCS), November 2019
All Things Considered: An Analysis of IoT Devices on Home Networks
  • Deepak Kumar, Kelly Shen, Benton Case, Deepali Garg, Galina Alperovich, Dmitry Kuznetsov, Rajarshi Gupta, and Zakir Durumeric
  • USENIX Security Symposium, August 2019
ZLint: Tracking Certificate Misissuance in the Wild
  • Deepak Kumar, Zhengping Wang, Matthew Hyder, Joseph Dickinson, Gabrielle Beck, David Adrian, Joshua Mason, Zakir Durumeric, J. Alex Halderman, and Michael Bailey
  • IEEE Symposium on Security and Privacy ("Oakland"), May 2018
Target Generation for IPv6 Scanning
  • Austin Murdock, Frank Li, Paul Bramsen, Zakir Durumeric, and Vern Paxson
  • ACM Internet Measurement Conference (IMC), November 2017
Understanding the Mirai Botnet
  • Manos Antonakakis, Tim April, Michael Bailey, Matt Bernhard, Elie Bursztein, Jaime Cochran, Zakir Durumeric, J. Alex Halderman, Luca Invernizzi, Michalis Kallitsis, Deepak Kumar, Chaz Lever, Zane Ma, Joshua Mason, Damian Menscher, Chad Seaman, Nick Sullivan, Kurt Thomas, and Yi Zhou
  • USENIX Security Symposium (USENIX Security), August 2017
Security Challenges in an Increasingly Tangled Web
  • Deepak Kumar, Zane Ma, Zakir Durumeric, Ariana Mirian, Joshua Mason, J. Alex Halderman, and Michael Bailey
  • World Wide Web Conference (WWW), April 2017
The Security Impact of HTTPS Interception
  • Zakir Durumeric, Zane Ma, Drew Springall, Richard Barnes, Nick Sullivan, Elie Bursztein, Michael Bailey, J. Alex Halderman, and Vern Paxson
  • Network and Distributed System Security Symposium (NDSS), February 2017
An Internet-Wide View of ICS Devices
  • Ariana Mirian, Zane Ma, David Adrian, Matthew Tischer, Thasphon Chuenchujit, Tim Yardley, Robin Berthier, Josh Mason, Zakir Durumeric, J. Alex Halderman, and Michael Bailey
  • IEEE Conference on Privacy, Security and Trust (PST), December 2016
Measuring the Security Harm of TLS Crypto Shortcuts
  • Drew Springall, Zakir Durumeric, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), November 2016
Towards a Complete View of the Certificate Ecosystem
  • Benjamin VanderSloot, Johanna Amann, Matthew Bernhard, Zakir Durumeric, Michael Bailey, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), November 2016
You’ve Got Vulnerability: Exploring Effective Vulnerability Notifications
  • Frank Li, Zakir Durumeric, Jakub Czyz, Mohammad Karami, Michael Bailey, Damon McCoy, Stefan Savage, and Vern Paxson
  • USENIX Security Symposium (USENIX Security), August 2016
FTP: The Forgotten Cloud
  • Drew Springall, Zakir Durumeric, and J. Alex Halderman
  • IEEE/IFIP Conference on Dependable Systems and Networks (DSN), June 2016
Users Really Do Plug in USB Drives They Find
  • Matthew Tischer, Zakir Durumeric, Sam Foster, Sunny Duan, Alec Mori, Elie Bursztein, and Michael Bailey
  • IEEE Symposium on Security & Privacy ("Oakland"), May 2016
Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security
  • Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten, Kurt Thomas, Vijay Eranti, Nicholas Lidzborski, Elie Bursztein, Michael Bailey, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), October 2015
  • IRTF Applied Networking Research Prize (ANRP)
Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice
  • David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thomé, Luke Valenta, Benjamin VanderSloot, Eric Wustrow, Santiago Zanella-Beguelin, and Paul Zimmermann
  • ACM Computer and Communications Security (CCS), October 2015
  • Best Paper Award
Censys: A Search Engine Backed by Internet-Wide Scanning
  • Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman
  • ACM Computer and Communications Security (CCS), October 2015
The Matter of Heartbleed
  • Zakir Durumeric, Frank Li, James Kasten, Johanna Amann, Jethro Beekman, Mathias Payer, Nicolas Weaver, David Adrian, Vern Paxson, Michael Bailey, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), November 2014
  • Best Paper Award
Security Analysis of the Estonian Internet Voting System
  • Drew Springall, Travis Finkenauer, Zakir Durumeric, Jason Kitcat, Harri Hursti, Margaret MacAlpine, and J. Alex Halderman
  • ACM Computer and Communications Security (CCS), November 2014
An Internet-Wide View of Internet-Wide Scanning
  • Zakir Durumeric, Michael Bailey, and J. Alex Halderman
  • USENIX Security Symposium (USENIX Security), August 2014
Outsmarting Proctors with Smartwatches: A Case Study on Wearable Computing Security
  • Alex Migicovsky, Zakir Durumeric, Jeff Ringenberg, and J. Alex Halderman
  • Financial Cryptography and Data Security (Financial Crypto), March 2014
On the Mismanagement and Maliciousness of Networks
  • Jing Zhang, Zakir Durumeric, Michael Bailey, Manish Karir, and Mingyan Liu
  • Network and Distributed System Security Symposium (NDSS), February 2014
Analysis of the HTTPS Certificate Ecosystem
  • Zakir Durumeric, James Kasten, Michael Bailey, and J. Alex Halderman
  • ACM Internet Measurement Conference (IMC), October 2013
ZMap: Fast Internet-Wide Scanning and its Security Applications
  • Zakir Durumeric, Eric Wustrow, and J. Alex Halderman
  • USENIX Security Symposium (USENIX Security), August 2013
Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices
  • Nadia Heninger, Zakir Durumeric, Eric Wustrow, and J. Alex Halderman
  • USENIX Security Symposium (USENIX Security), August 2012
  • Best Paper Award; Test of Time Award (2022)

Journal Publications

Quantifying the Systematic Bias in the Accessibility and Inaccessibility of Web Scraping Content from URL-Logged Web-Browsing Digital Trace Data
  • Ross Dahlke, Deepak Kumar, Zakir Durumeric, Jeffrey Hancock
  • Social Science Computer Review, December 2023
Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice
  • David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green,
  • J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thomé, Luke Valenta,
  • Benjamin VanderSloot, Eric Wustrow, Santiago Zanella-Beguelin, and Paul Zimmermann
  • Communications of the ACM, January 2019
Scanning the Internet for Liveness
  • Shehar Bano, Philipp Richter, Mobin Javed, Srikanth Sundaresan, Zakir Durumeric, Steven Murdoch, Richard Mortier, and Vern Paxson
  • SIGCOMM Computer Communication Review (CCR), April 2018
  • IRTF Applied Networking Research Prize (ANRP)
The Danger of USB Drives
  • Matthew Tischer, Zakir Durumeric, Elie Bursztein, and Michael Bailey
  • IEEE Security & Privacy (S&P Magazine), March 2017

Workshop Publications

Detecting VPN Traffic through Encapsulated TCP Behavior
  • Michelina Hanlon, Gerry Wan, Anna Ascheman, and Zakir Durumeric
  • Free and Open Communications on the Internet (FOCI), July 2024
Zippier ZMap: Internet-Wide Scanning at 10 Gbps
  • David Adrian, Zakir Durumeric, Gulshan Singh, and J. Alex Halderman
  • USENIX Workshop on Offensive Technologies (WOOT), August 2014

Technical Reports

The Code the World Depends On: A First Look at Technology Makers’ Open Source Software Dependencies
  • Cadence Patrick, Kimberly Ruth, and Zakir Durumeric
  • Technical Report, 2024
An Empirical Analysis of HTTPS Configuration Security
  • Camelia Simoiu, Wilson Nguyen, Zakir Durumeric
  • Technical Report, 2021
An Empirical Analysis of California Data Breaches
  • Richard Chen and Zakir Durumeric
  • Technical Report, 2018