🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Today, we’re honoring the lives of the 32 Hokies who were tragically taken from their loved ones and the Virginia Tech community on April 16, 2007. On the 2025 Day of Remembrance, we're honoring the lasting impact they continue to have on our world. #VTWeRemember 🧡

✈️ I'll be at ICSE this week — find me if you'd like to chat about all things fuzzing / binary analysis!

Awesome job by my PhD student gabe sherman presenting his work on Oracle-guided C Fuzzing Harness Generation! ICSE TLDR; 41 new bugs (40 now patched)... with 0 false positives! Paper: futures.cs.utah.edu/papers/25ICSE-… Slides: futures.cs.utah.edu/papers/25ICSE-… Code: github.com/FuturesLab/OGH…

I taught Copilot to analyze Windows Crash Dumps - it's amazing. svnscha.de/posts/ai-meets…

I'm thrilled to announce my talk "Cookie Chaos: Exploiting Parser Discrepancies" at SteelCon! Catch it live in Sheffield, or later on YoutTube. Check out the full abstract here: portswigger.net/research/talks…

Here it is: fluxsec.red/alt-syscalls-f… my research on Alternate Syscalls for Windows 11! There are still a few other facets to explore, but this is stable and PatchGuard resistant (from my tests!) #blueteam #redteam #computing #securityresearch #cyber #infosec #cybersec #malware

All Association for Computing Machinery publications will be 100% Open Access as of January 2026. When we announced this at POPL and CHI this year, conference participants spontaneously erupted in applause. The CS community is excited about ACM's move to OA!

Happy to share my upcoming #ATC25 paper w/ Stefan Nagy: "BIN2WRONG: a Unified Fuzzing Framework for Uncovering Semantic Errors in Binary-to-C Decompilers"! Bin2Wrong creates binaries by mutating source, compiler, optimizations, and format—revealing 48 new bugs in 7 decompilers! 💪

Stefan Nagy Check it out! 📄 Paper: futures.cs.utah.edu/papers/25ATC.p… 🛠️ Bin2Wrong: github.com/FuturesLab/Bin… 💥Some impacts of bugs Bin2Wrong found: binary.ninja/2024/06/19/res… #fuzzing #decompilation

iOS in QEMU is a thing now - and it's open source (by ChefKissInc)

“Finally, Copilot hides the source of the instructions, so the user can’t trace what happened” Fun times ahead!

"Below we describe our prompt injection mitigation product strategy based on extensive research, development, and deployment of improved security mitigations." security.googleblog.com/2025/06/mitiga… < worth a read if you care about an in-depth approach to securing AI systems

How to build a high-performance network fuzzer with LibAFL and libdesock #NetworkFuzzing #Efficiency #LibAFL #Libdesock #PerformanceBoost lolcads.github.io/posts/2025/05/…

I'll be in Boston for @USENIX #ATC25. Reach out if you'd like to meet up to talk fuzzing / binary analysis!

I wrote a short rant about what irks me when people anthropomorphize LLMs: addxorrol.blogspot.com/2025/07/a-non-…

Fantastic job by my student Zao Yang presenting his decompiler fuzzing work Bin2Wrong at USENIX Association ATC! 🔥 Paper: futures.cs.utah.edu/papers/25ATC.p… Slides: futures.cs.utah.edu/papers/25ATC_s… Code: github.com/FuturesLab/Bin… Impact of Bin2Wrong-found bugs (Vector 35): binary.ninja/2024/06/19/res…

System Register Hijacking: Compromising Kernel Integrity By Turning System Registers Against the System usenix.org/system/files/c…

🧵 LLFuzz: An Over-the-Air Dynamic Testing Framework for Cellular Baseband Lower Layers We built LLFuzz to fuzz LTE baseband lower layers -- RLC, MAC, PDCP, PHY -- and test memory safety via OTA input. 🔗 GitHub (TBR): github.com/SysSec-KAIST/L… Accepted at USENIX Security 2025

big things are happening in the C community

Go Assembly Mutation Testing words.filippo.io/assembly-mutat…