Advanced Software and Cyber Security - Training and Research

Featured

Fuzzing 100+ open source projects with OSS-Fuzz - lessons learned

AUGUST 2021

Case study: Oxford University Cyber Security CDT using Ada Logics training for electives

AUGUST 2021

All posts

Minimal LLM-Based fuzz harness generator

Feb 2025

Fuzz Introspection in Python

Feb 2025

LLVM fuzzing audit

March 2024

Kyverno Security Audit

December 2023

Structured results for OpenSSF Scorecard - An enabler for custom policies

November 2023

Crossplane security audit - findings and report

July 2023

Notation security audit - findings and report

July 2023

Improving continuous fuzzing of Liblouis

June 2023

Vitess security audit - findings and report

June 2023

Presenting the findings of Ciliums fuzzing and security audits

February 2023

Istio service mesh security audit

January 2023

Jackson-core and Jackson-databind security audit

November 2022

Ada Logics sets up continuous fuzzing for Cluster API

July 2022

Argo security audit 2022

July 2022

KubeEdge security audit engagement

July 2022

CRI-O security audit engagement

May 2022

Cloud Native Fuzzing: Istio - 40 crashes and high-severity CVE

FEBRUARY 2022

Structure-aware Go fuzzing: How to fuzz with complex types

FEBRUARY 2022

FluxCD Security Audit

NOVEMBER 2021

Fuzzing 100+ open source projects with OSS-Fuzz - lessons learned

AUGUST 2021

Case study: Oxford University Cyber Security CDT using Ada Logics training for electives

AUGUST 2021

Ethereum DOS: The importance of continuity in fuzzing - CVE-2020-28362

FEBRUARY 2021

Securing OSS: Fuzzing integration, vulnerability analysis and bug fixing of Fluent Bit

DECEMBER 2020

Getting started with go-fuzz

OCTOBER 2020

Symbolic execution with KLEE: From introduction to bug-finding

AUGUST 2020

Comparison of the LLVM IR generated by three binary-to-llvm translators

SEPTEMBER 2019

The state of advanced code injections

AUGUST 2019

Building a custom malware sandbox with PANDA - Part 1

AUGUST 2019