Fri 24 February 2023
A Practical Beginner's Guide to Intel Processor Trace
Fri 23 September 2022
VulChecker Accepted to USENIX 2023
Fri 02 September 2022
PUMM Accepted to USENIX 2023
Wed 31 August 2022
Differentiating ARCUS (USENIX'21) and Bunkerbuster (CCS'21)
Fri 03 June 2022
Update Regarding Halibut Bugs (CVE-2021-42612, CVE-2021-42613, CVE-2021-42614)
Sun 13 March 2022
Faculty Position at The Ohio State University
Tue 12 October 2021
Case Study: Security Analysis of Halibut
Mon 06 September 2021
Bunkerbuster to Appear in CCS'21
Tue 31 August 2021
MARSARA to Appear in CCS'21
Wed 26 May 2021
"Modeling Large-Scale Manipulation in Open Stock Markets" to Appear in IEEE Security & Privacy
Mon 08 February 2021
ARCUS System and Dataset Released
Sat 12 December 2020
Vulnerability Root Cause Analysis Approach "ARCUS" to Appear in USENIX'21
Mon 26 October 2020
"Justitia" Biometric Privacy to Appear in ASIACCS'21
Sun 04 October 2020
"Bot2Stock" to Appear in ACSAC'20
Mon 29 June 2020
New CVE Published (CVE-2020-14931)
Thu 18 June 2020
H&R Block App Analytics for 2020
Thu 18 June 2020
Fuzzers Suck: New 0-Day Shows We Need To Do Better
Mon 02 March 2020
New CVE Published (CVE-2020-9549)
Thu 15 August 2019
New PoC Published to Exploit-DB (EDB-ID-47254)
Sat 22 June 2019
A Beginner's Guide to Hacking Video Game Save States (Fire Emblem 7 on the GBA)
Tue 11 June 2019
MLSploit Extended Abstract to Appear in KDD 2019
Sat 08 June 2019
Barnum Paper to Appear in Information Security Conference 2019 (ISC'19)
Fri 26 April 2019
Extended Abstract to Appear in CVPR-19 Workshop on Explainable AI
Fri 12 April 2019
H&R Block App Analytics for 2019
Sat 06 April 2019
Android Intent Firewall Documentation
Thu 21 February 2019
Malware Has a Color
Thu 17 January 2019
Upcoming MLsploit Demo at Black Hat Asia 2019
Thu 27 December 2018
Three Kinds of Document Malware and Designing Frameworks to Detect Them
Wed 05 September 2018
Mention for Georgia Tech Vulnerability Disclosure
Tue 14 August 2018
The Unfortunate Economics of Defense in Depth
Mon 23 July 2018
Paper Accepted to ACM CCS 2018
Wed 30 May 2018
Weird Things Are Afoot In The Honeypot
Mon 14 May 2018
EFF and EFAIL: An Example of Hype Culture Gone Awry
Sat 24 February 2018
Debian Apt Repo for libipt
Fri 09 February 2018
H&R Block "MyBlock" App + USA Government Website Analytics = PROFIT
Sat 16 December 2017
How ASLR Helps Enable Exploits (CVE-2013-2028)
Sat 28 October 2017
Intel PT Data at Rest: A Compression Experiment
Tue 29 August 2017
Windows _EX_FAST_REF Pointers and Virtual Machine Introspection
Fri 28 July 2017
You never know where your code will end up.
Tue 21 March 2017
Intel Processor Trace, execvp, and ptrace
Thu 09 March 2017
Of Fancy Bears and Men: Attribution in Cybersecurity
Mon 30 January 2017
Getting the CR3 value for a PID in Linux
Tue 24 January 2017
Site Redesign
Sat 22 October 2016
The Problem with DRM
Thu 21 April 2016
Demystifying the Master’s Thesis — Is it right for you?
Fri 01 April 2016
Apple’s Balancing Act—Yesterday, Today, and Tomorrow
Mon 22 February 2016
Apple vs. the FBI
Mon 22 February 2016
SU Senior Carter Yagemann’s Summer of Android
Thu 04 February 2016
How Orange Helps You Sleep At Night
Mon 30 November 2015
Understanding Dell’s Root Certificate Problem
Wed 11 November 2015
Students Compete in RIT Cybersecurity Competition
Tue 03 November 2015
Android for Your Laptop
Fri 30 October 2015
Initial Observations Regarding Android Pay
Fri 30 October 2015
How Number of Limbs Relates to Robots and Organisms
Fri 30 October 2015
Installing Google Play Service and Google Apps on Nexus AOSP
Wed 28 October 2015
Digital Verses Analog Sanitization
Sat 24 October 2015
Is your data really gone? Explaining the challenges of data wiping.
Tue 20 October 2015
The importance of boot partitions in Linux systems.
Fri 18 September 2015
Using internet of things to turn on a computer.
Fri 13 February 2015
Installing psad on Raspberry Pi Running Arch Linux