Publications

(2022). [ASPLOS '22] One Size Does Not Fit All: Security Hardening of MIPS Embedded Systems via Static Binary Debloating for Shared Libraries. In Proceedings of the 27th International Conference on Architectural Support for Programming Languages and Operating Systems, Lausanne, Switzerland, Feb 28-March 4, 2022. (Acceptance rate 20.1%=80/397)..
(2022). [NDSS '22] Chosen-Instruction Attack Against Commercial Code Virtualization Obfuscators. In Proceedings of the 29th Network and Distributed System Security Symposium, San Diego, California, 27 February – 3 March, 2022. (Acceptance rate 16.2%=83/513).
(2021). [CCS '21] Towards Transparent and Stealthy Android OS Sandboxing via Customizable Container-Based Virtualization. In Proceedings of the 28th ACM Conference on Computer and Communications Security, Virtual Conference, November 15-19, 2021. (Acceptance rate 22.3%=196/879).
(2021). [USENIX Sec '21] MBA-Blast: Unveiling and Simplifying Mixed Boolean-Arithmetic Obfuscation. In Proceedings of the 30th USENIX Security Symposium, Virtual Event, August 11-13, 2021. (Acceptance rate 18.8%=248/1319).
(2021). [USENIX Sec '21] Obfuscation-Resilient Executable Payload Extraction From Packed Malware. In Proceedings of the 30th USENIX Security Symposium, Virtual Event, August 11-13, 2021. (Acceptance rate 18.8%=248/1319).
(2021). [PLDI '21] Unleashing the Hidden Power of Compiler Optimization on Binary Code Difference: An Empirical Study. In Proceedings the 42nd ACM SIGPLAN Conference on Programming Language Design and Implementation, Virtual Event, June 23-25, 2021. (Acceptance rate 27.2%=87/320).
(2021). [PLDI '21] Boosting SMT Solver Performance on Mixed-Bitwise-Arithmetic Expressions. In Proceedings the 42nd ACM SIGPLAN Conference on Programming Language Design and Implementation, Virtual Event, June 23-25, 2021. (Acceptance rate 27.2%=87/320).
(2021). [ICSE '21] App's Auto-Login Function Security Testing via Android OS-Level Virtualization. In Proceedings of the 43rd International Conference on Software Engineering, Virtual Event, May 25-28, 2021. (Acceptance rate 22.4%=138/615).
(2020). [CCS '20] PatchScope: Memory Object Centric Patch Diffing. In Proceedings of the 27th ACM Conference on Computer and Communications Security, Virtual Event, November 9-13, 2020. (Acceptance rate 16.9%=121/715).
(2020). [CCS '20] VAHunt: Warding Off New Repackaged Android Malware in App-Virtualization's Clothing. In Proceedings of the 27th ACM Conference on Computer and Communications Security, Virtual Event, November 9-13, 2020. (Acceptance rate 16.9%=121/715).