Hi. I'm Abner Mendoza.

I am a Ph.D. student in the Department of Computer Science and Engineering at Texas A&M University. My current research mainly focuses on web application security and browser security for both desktop and mobile devices. I work in the SUCCESS Lab under the guidance of Dr. Guofei Gu.

In the past, I worked as a software developer (for over 11 years), where I developed web and windows-based software including development and administration of Sql Server databases. I also did some work on Crestron control system programming and GUI design.


Ph.D. Computer Engineering
Sept. 2013 - Present
Department of Computer Science & Engineering, Texas A&M University

M.S. Information Assurance & Security
May 2013
Department of Computer Science, Sam Houston State University

B.S. Computer Science
May 2001
Department of Computer Science, University of Illinois at Springfield

A.S. Physics/Mathematics
June 1999
St. John's College Junior College, Belize, Central America

My Research Interests

I am broadly interested in research topics related to web and mobile security
  • Web Application Security
  • Browser Security
  • Mobile Web
  • Machine Learning


  • Mobile Application Web API Reconnaissance: Web-to-Mobile Inconsistencies & Vulnerabilities
    Abner Mendoza, Guofei Gu
    In Proc. of the 39th IEEE Symposium on Security and Privacy (S&P'18), San Francisco, CA, May 2018.

  • Study and Mitigation of Origin Stripping Vulnerabilities in Hybrid-postMessage Enabled Mobile Applications.
    Guangliang Yang, Jeff Huang, Guofei Gu, Abner Mendoza.
    In Proc. of the 39th IEEE Symposium on Security and Privacy (S&P'18), San Francisco, CA, May 2018.

  • Uncovering HTTP Header Inconsistencies and the Impact on Desktop/Mobile Websites.
    Abner Mendoza, Phakpoom Chinprutthiwong and Guofei Gu
    In Proc. of the Web Conference (WWW'18), Lyon, France, April 2018. (Acceptance ratio 14.8%=171/1155)

  • Precisely and Scalably Vetting JavaScript Bridge In Android Hybrid Apps
    Guangliang Yang, Abner Mendoza, Jialong Zhang, and Guofei Gu
    Research in Attacks, Intrusions and Defenses (RAID), 2017

  • BrowStEx: A tool to aggregate browser storage artifacts for forensic analysis
    Abner Mendoza, Avinash Kumar, David Midcap, Hyuk Cho, and Cihan Varol
    Digital Investigation Journal, Volume 14, September 2015, Pages 63-75, ISSN 1742-2876

  • What is Wrecking Your Data Plan? A Measurement Study of Mobile Web Overhead [pdf]
    Abner Mendoza, Kapil Singh, Guofei Gu
    Proceedings of the IEEE International Conference of Computer Communications (INFOCOM), 2015

  • Using Client-Side JavaScript to Mitigate Drive-by-Downloads [pdf]
    Abner Mendoza, Narasimha Shashidhar
    Proceedings of the 2013 International Conference on Security and Management (SAM'13)

  • Tracking Malware using Internet Activity Data [pdf]
    Abner Mendoza, Cihan Varol
    International Conference on Computer Science and Applications (ICSSA '12), October 2012

Some more useful information!

Here are some additional links and other information that could be useful.
Security Conferences:
IEEE S&P (Oakland)
Usenix Security