Research & Publications
My research spans traditional areas like software and operating systems security, as well as emerging domains like blockchain security and DeFi vulnerabilities.
Publications
Toss a Fault to BpfChecker: Revealing Implementation Flaws for eBPF Runtimes via Differential Fuzzing
CCS 2024ACM Conference on Computer and Communications Security (CCS)
Awards
- Chrome VRP Top 20 Security Researcher (2022, 2024)
- Google Top 50 Researcher (2022-2024)
CVEs / Trophy
Parts of the discovered vulnerabilities.
Chrome
CVE-2022-0603HighCVE-2022-4177HighCVE-2023-0134MediumCVE-2023-0135MediumCVE-2022-1484MediumCVE-2021-30578Medium
Wireshark
CVE-2020-26575CVE-2020-28030
ImageMagick
CVE-2021-20309CVE-2021-20310CVE-2021-20311CVE-2021-20312CVE-2021-20313
Android
A181660091CriticalA181584626HighA181860042CriticalA179162665HighA181346550HighA181346957CriticalA181346545ModerateA180939433ModerateA181253633ModerateA180421437ModerateA180422331HighA180418995ModerateA180420059ModerateA180421035ModerateA180421044ModerateA180418662ModerateA180939982HighA178013330HighA179161711ModerateA179161657ModerateA179162240ModerateA182166925HighA181346915ModerateA181347046Moderate
Additional Research Projects
For additional research projects and vulnerability reports, please contact me directly.