🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

SyzRetrospector: A Large-Scale Retrospective Study of Syzbot Joseph Bursey, Ardalan Amiri Sani Ardalan Amiri Sani, and Zhiyun Qian Zhiyun Qian published an article analyzing how changes in the Linux kernel and syzkaller influence the ability of syzbot to find bugs arxiv.org/pdf/2401.11642…

PageJack: A Powerful Exploit Technique With Page-Level UAF blackhat.com/us-24/briefing… Slides: i.blackhat.com/BH-US-24/Prese… Repository: github.com/Lotuhu/Page-UAF WP: arxiv.org/abs/2401.17618 Zhiyun Qian, Jiayi Hu, Jinmeng Zhou, Qi Tang & Wenbo Shen Zhiyun Qian

🌊 Welcome to see Atlantis, Team Atlanta’s new AI-driven bug finding & fixing system! Powered by LLMs, it works autonomously with zero human intervention. 🛠️ Catch us at the DARPA AI Cyber Challenge (AIxCC) village at #defcon32 to learn more. #AI #CyberSecurity #AIxCC

Our team, CRS (Atlantis), secured four first bloods in yesterday’s Nginx challenge! Today, we tackle the Linux kernel. Stay tuned for more #AIxCC updates! #DEFCON

Had a blast at #blackhat2024. Was fun talking about both wireless security and OS kernel exploitation techniques. Happy to have met many new/old friends. As someone who loves attacks, I really enjoyed the conference, especially with 30+min talks with lots of technical details.

Big story from the AIxCC readout: Team Atlanta's CRS found a real null deference bug in SQLite, which was reported and fixed last week. sqlite.org/forum/forumpos…

#AIxCC Thrilled that our Team Atlanta made it to the grand final and uncovered a zero-day vulnerability in #AIxCC! 🎉 team-atlanta.github.io

AI Cyber Challenge Semifinal Competition results are in! Congratulations to the top seven scoring teams who will advance to finals, and to all the competitors who worked to help safeguard the code that underpins critical infrastructure. More: darpa.mil/news-events/20…

Our team at #AIxCC, CRS Atlantis 🌊, uncovered a zero-day vulnerability in SQLite3 during the competition! 🔥

Big thanks to Perri Adams for all the hard work—#AIxCC wouldn't be such an amazing experience without it! 🙌

USENIX Security opening remarks USENIX Security #usesec24

Welcome to my talk!!

Zheng will present his work at USENIX Security on Thursday morning about the accurate bisection of bugs found by fuzzers -- figuring out which commit introduced the bug. Useful for #aixcc potentially, but unfortunately we didn't get a chance to use it ourselves. #usesec24

Congrats!! 🎉

Are general-purpose fuzzing research dead? Our answer is probably no. Check our new fuzzer work FOX. The awesome fuzzer @aflplusplus is already super-powerful and quite an effective baseline in academics and industry. But there is still room to improve upon. We introduce FOX

Xin'an Emmanuel Zhou will present "Untangling the Knot: Breaking Access Control in Home Wireless Mesh Networks" at ACM CCS 2024 this afternoon at 2:15pm. We show a LAN attacker can gain root shells on access points, affecting popular vendors such as Netgear, Asus, TP-link, Linksys.

🤖 Our AIxCC cyber reasoning system, Atlantis🌊, will take on the TKCTF challenge alongside student hackers! Let’s see if LLMs can spot and patch bugs in a real-time CTF environment!

OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering dl.acm.org/doi/10.1145/36…

🚨 Call for Papers NDSS '25 Workshop on Security and Privacy in Standardized IoT (SDIoTSec) 🔑 IoT standards, Matter, IoT security labels, supply chain, etc. 🔐 Security, Privacy, Governance 📝 8 or 4 pages 📅 Deadline: Dec. 6 ndss-symposium.org/ndss2025/co-lo… NDSS Symposium FCC National Institute of Standards and Technology

Excited to share our latest blog post: “Hacking Redefined: How LLM Agents Took on University Hacking Competition.” Atlantis CRS discovered 10 vulnerabilities and crafted 7 robust patches at TKCTF 2024! Read more: team-atlanta.github.io/blog/post-tkct… #AI #Cybersecurity #CTF Team Atlanta