Cristina Cifuentes
@criscifuentes
Followers
1,537
Following
266
Media
12
Statuses
384
Latina, migrant, mother and wife, researcher, teacher, mentor, leader. Mother of decompilation
Brisbane, Australia
Joined July 2009
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
Bridgerton
• 373154 Tweets
The Boys
• 163739 Tweets
River
• 120970 Tweets
Colin
• 77215 Tweets
Penelope
• 72180 Tweets
Francesca
• 64811 Tweets
Milwaukee
• 59307 Tweets
Olise
• 51449 Tweets
Hungary
• 47307 Tweets
Benedict
• 43080 Tweets
ROOM LYRICVIDEO RELEASE
• 43077 Tweets
Michaela
• 38259 Tweets
Davido
• 34684 Tweets
Sparking Zero
• 33218 Tweets
Eloise
• 29786 Tweets
4years Of Injustice To Sushant
• 21313 Tweets
Riestra
• 21045 Tweets
Fonseca
• 19857 Tweets
Kingdom Hearts
• 19523 Tweets
Yoro
• 17615 Tweets
Demichelis
• 16434 Tweets
Batuhan
• 16153 Tweets
Big 12
• 14871 Tweets
#تطبيق_استقرار_حمله_وتزوج_الان
• 13212 Tweets
Dzeko
• 12322 Tweets
Oman
• 11130 Tweets
Tyla
• 11095 Tweets
This July marks the 30th year anniversary of the publication of my PhD thesis on Reverse Compilation Techniques. In 1994, little did I know the impact this pioneering work would have on the security community that grew up in the 2000s. 🎉 Celebration events to be announced!
7
65
295
Very excited to share that I will be giving a keynote speech at REcon, where I will be looking back on 30 years of decompilation from my own experience. Join me in celebrating 🎉 this milestone achievement!
#REcon
#decompilation
#keynotespeaker
Marking the 30th anniversary of her PhD Thesis on “Reverse Compilation Techniques”, the Mother of Decompilation, Cristina Cifuentes
@criscifuentes
, will be the keynote speaker of the Recon 2024 conference. Come celebrate with us at Recon Montreal in June!
0
19
69
0
31
136
27 years after my PhD dissertation on decompilation I’m giving a retrospective talk on decompilation — From Student of Compilation to Mother of Decompilation. Join me, Thursday July 29th 6 pm PDT / Friday 30th July 2 am UK / 11 am AEST
#WiCT
The next virtual Women in Compilers and Tools Meetup is tomorrow! (July 29 at 6PM PDT) Cristina Cifuentes will present, "From Student of Compilation to Mother of Decompilation".
@criscifuentes
#CommunityDotO
#WomenWhoCode
#WiCT
We hope to see you there!
0
6
6
1
14
67
My POPL keynote on What is a Secure Programming Language?, updated with date to end of 2019, is now available. Thanks
@poplconf
for great interesting discussions!
0
28
65
Interested in undertaking an Industry PhD in the area of Intelligent Application Security? Joint PhD Scholarship with Oracle Labs and The University of Queensland is now available. Join us
1
53
52
Our paper on our work at
@oraclelabs
for the past decade on The role of program analysis in security vulnerability detection: Then and now - ScienceDirect
0
20
49
I am very honoured and humbled to be a keynote speaker at
@h2hconference
’s 20th anniversary conference this December. See you in São Paulo.
#H2HC2023
Keynotes announced:
@criscifuentes
(the mother of decompilation) and
@vincentzimmer
(the father of UEFI)
@h2hconference
1
21
49
2
6
42
Happy to answer your questions on decompilation, program analysis, incremental analysis, secure languages, etc
0
8
40
Looking forward to keynoting at
#BSidesCbr2021
on Intelligent Application Security in early April. See you in Canberra.
0
8
36
Decompilation, program analysis, code intelligence. I’ll be giving a keynote at INFILTRATE in April. Scholarships available for under representing minorities!
FYI: we do have scholarships for INFILTRATE if you are an under represented minority. (Thanks to all our sponsors who help us support this!) And also let me know if you're looking for a position in the industry... Since every sponsor is voraciously hiring .
6
20
38
1
9
36
New decompilation wiki by
@mahal0z
! If you know of works not listed on the wiki, please contribute
What is the area of decompilation? How do you organize it? And what is available to the public? To answer such questions, I've created the Decompilation Wiki: ; Its currently comprised of over 80 papers spanning 60 years of research. PRs welcome!
4
66
164
0
8
35
Our experiences at
#oraclelabs
and those of our academic colleagues on Why Is Static Application Security Testing Hard to Learn? | IEEE Journals & Magazine | IEEE Xplore
0
17
33
Interested in a Postdoc position on Dynamic Analysis of Python Code? Join us at Oracle Labs in Australia. We are looking for a Postdoc who can start in the new year, January or February 2020, we sponsor visa for overseas applicants:
0
26
32
"Static analysis of Java enterprise applications: frameworks and caches, the elephants in the room" Antoniadis et al., PLDI'20
#themorningpaper
Better static analysis for JEE apps.
0
5
30
0
4
24
I’ll be giving my talk “From Student of Compilation to Mother of Decompilation” on Tuesday at 5 pm AEST at UQCS; details below
2
2
23
Coming up on Thursday 6 pm PDT, the launching of the Women in Compilers and Tools meetups via Zoom, sponsored by the LLVM Foundation
The Women in Compilers and Tools monthly meetup series starts this Thursday, April 22 at 6PM PDT. This is a virtual meetup, but please RSVP
0
6
10
0
9
22
Tomorrow at the Workshop on Programming Languages and Analysis for Security, co-located with
#ccs
, Alexander will present on how to detect malware in PDF documents in such a way it can’t be evaded. 11:10 am talk
1
4
20
I cannot agree more with
@stevemblackburn
and
@JAldrichCMU
— we need geographical inclusion for our top tier conferences.
Please read this thread.
We have to do better with inclusion. That includes geographical inclusion.
Times like these force compromise, but excluding entire geo regions to make things 'better' and 'less complex' for Europe and North America is not compromise. It's shameful.
0
11
36
0
5
20
Two PhD scholarships at The University of Queensland focusing on
@graalvm
verification of compiler optimizations
Apply for a PhD scholarship funded by
@OracleLabs
Australia to model and verify sophisticated compiler optimisations in
@GraalVM
:
0
14
20
0
7
19
Research papers abstracts for the Working Conference on Source Code Analysis and Manipulation are due in 4 weeks. SCAM 2020 will be held virtually.
1
14
18
Analyze your software supply chain with Macaron, an Oracle Labs open source project!
We are excited to announce Macaron: our new open source project from
@OracleLabs
🎉
Macaron analyzes software artifact build pipelines to verify their conformance with supply chain security frameworks and prevent build integrity attacks.
Learn more:
3
18
32
0
8
17
Along with
@chubbymaggie
and intern
@h4sh5
from
@UQCyberSquad
we’ve put together a basic static malware infrastructure to extract indicators of compromise from PE binaries using open source tools — ColdPress. Check it out
0
7
17
If you’re in London this Wednesday, I’ll be talking at the Facebook Testing & Verification Symposium on Oracle Parfait and how to develop a tool that thousands of developers use on a day-to-day basis
#facetav
0
1
16
Very honoured to be able to share my experiences as an underrepresented computer security Latina, mother and wife, researcher, teacher and leader this Monday at 2:45pm EST.
@imentor9
@oraclelabs
The inaugural iMentor workshop will be streamed on this Youtube channel (). The live stream will start at 10:30 AM on Nov. 9th, EST.
0
1
2
0
1
16
Looking forward to presenting an informal retrospective talk on decompilation at the
#WiCT
Meetup on Thursday July 29th 6 pm PDT / Friday 30th 2 am BST / 11 am AEST.
RSVP for the next virtual Women in Compilers and Tools Meetup on Thursday, July 29 at 6PM PDT featuring Cristina Cifuentes, "From Student of Compilation to Mother of Decompilation".
@criscifuentes
#CommunityDotO
#WomenWhoCode
#WiCT
0
11
18
1
7
15
Internships in my team for PhD-level students interested in fuzzing, dynamic analysis or ML, as it relates to application security.
0
10
15
Join us at the Decompilation Panel at REcon this June in Montreal!
Recon has been on my "must go" list for a long time and in 2024 I will finally get to participate for the first time in this great conference. Come to Montreal in June!
I will be on
@criscifuentes
decompilation panel.
#ilovebinaries
3
3
12
0
3
14
The CFPs for the Research Track of the Source Code Analysis and Manipulation (SCAM’20) conference is now out. The conference will be held via virtual or hybrid participation on 27-28 September, co-located with
@IEEEICSME
0
18
13
Presented on “What is a Secure Programming Language?” at SNAPL. How does your talk go when the topic is introduced as controversial? Fun talk and discussions! Thank you PL experts!
0
0
13
Olá São Paulo! Very excited and humbled to give a keynote on decompilation on Saturday morning at
#H2HC20years
!
#H2HC2023
Keynotes announced:
@criscifuentes
(the mother of decompilation) and
@vincentzimmer
(the father of UEFI)
@h2hconference
0
0
1
0
3
13
I am very proud to help shape STEM in Queensland! A degree from QUT in Computer Science has provided endless opportunities.
#IWD2020
#stem
#DiversityandInclusion
1
4
12
Presented on Secure Languages at PLISS last week and ran a tutorial on this topic using GraalVM and Simple Language. Slides and videos online soon.
Weren't able to come to PLISS this year? Bad luck. But at least you'll be able to see videos of many of the talks at -- there'll be roughly one added a day for the next 1-2 weeks.
0
9
13
0
0
11
Eric Sedlar presenting on Graal, a polyglot language virtualization technology
#OracleCode
#oraclelabs
#graal
0
4
10
No doubt one of the best advanced fuzzing courses! This mid April in Europe.
The final Hack In The Box in Amsterdam! Advanced Fuzzing and Crash Analysis training! April 17-20.
0
5
20
0
1
11
Fantastic program for PhD, Postdoc and early career researchers at The University of Queensland. Had a great time sharing my career journey and insights learnt, as well as network with participants and hear their elevator pitches.
@UQVentures
LeadHers program
0
2
11
Statically finding injection vulnerabilities in real world Node.js applications is now possible with NODEST. Join Benjamin at FSE tomorrow to hear about the details.
#fse
1
2
11
Have any exciting security research to share this summer? REcon’s CFPs closes on April 26th.
Recon 2024 approaches fast and we have preselected a few talks. CFP end on April 26th
@_lucas_georges_
@hexnomad
@aall86
@standa_t
@j00ru
@oliverlavery
@0xeb
@m_u00d8
@mr_phrazer
@WeldPond
@sergeybratus
@ilfak
@criscifuentes
1
28
77
0
7
11
@cristalopes
It needs to start at primary level with computational thinking embedded into the schooling system.
0
2
11
Interested in Benchmarking? Join us for this 1-day workshop where industry and academia meet to discuss best practices in the SE and PL communities.
#benchwork
#issta18
0
4
10
@RolfRolles
@RdilipkCG
@geoffchappell
@_saagarjha
@ea_foundation
@RolfRolles
@ilfak
maybe we should get together one day to talk alias analysis for decompilation. It’s been 20 years since I got to chat with Ilfak
2
1
10
Postdoc opportunity in sunny Brisbane in the area of program synthesis as applied to runtime application self-protection with the excellent team at Oracle Labs, Australia
#postdocjobs
#oracle
#programanalysis
#programsynthesis
#australia
Post-doc position in the area of application security analysis using a variety of techniques including program synthesis, dynamic analysis available at Oracle Labs, Australia. Details are available at
0
1
4
0
9
10
On Thursday at 3 pm PST I’ll be talking about What is a Secure Programming Language at LangSec; looking forward to your questions and discussion
#langsec
0
1
10
5 new academic positions at different levels in Computer Science at The University of Queensland, in areas including Program Analysis and Cyber Security. More details in the position description. An excellent opportunity to collaborate with us in Brisbane!
0
5
10
My INFILTRATE 2020 keynote will be given in the Spring of 2021 - see you then. In the mean time, great training opportunities this October, registration still open
INFILTRATE2020 training is taking place virtually October 11th – 14th. Registration is still open
0
6
5
0
1
10
Fantastic symposium on testing and verification this week; videos available for all talks - Facebook TAV Symposium public group | Facebook
#facetav
0
2
10
It was fun talking to
@jimgris
on our security analysis work at
@oraclelabs
, life at Labs, how we didn’t get to meet at Sun, and our open source collaboration with
#uqcyber
1
1
10
Ever wondered what is a Secure Programming Language? Today at PLEMM, I talk about a way of looking into secure languages. This is joint work with
@GavinBierman
, follow the link to a preprint of our SNAPL paper
#plemm
0
0
9
Thank you
@ieeescam
Very happy and honored to receive (along with
@fernandocastor
) the distinguished reviewer award for
@ieeescam
! (Thanks
@dvmarcilio
for the photo)
10
1
81
0
0
9
Join me at 1:00 UTC / 11:00 am AEST on Oct 1st for an AMA to discuss Research in Industry at ICSME
@IEEEICSME
On Oct 1 @ 12am-3am UTC,
#icsme2020
continues with parallel sessions on:
- 🐞 Smells and Defects II (chair: Zhenchang Xing), and 🤖 AI for SE II (chair: Chunyang Chen)
- ❓ AMA session with
@criscifuentes
, and 🤝 Meet the Authors
After that, we will host a 👥virtual reception!
0
0
3
0
4
9
Thank you
#WiCT
for hosting my talk “From Student of Compilation to Mother of Decompilation”
The video of our last Women in Compilers and Tools Meetup is on YouTube. Cristina Cifuentes with From Student of Compilation to Mother of Decompilation
@criscifuentes
#WomenWhoCode
#WiCT
#CommunityDotO
#LLVM
0
5
10
0
5
9
Tuesday in Brisbane — join me to discuss lessons learnt on leading a niche industrial research lab. I’ll be at the poster sessions throughout the day.
#HopperDownUnder
0
0
9
NSA’s Ghidra disassembler and decompiler tool. Runs over Linux, OS X and Windows binaries.
0
2
8
Abstracts for the Source Code Analysis and Manipulation working conference, SCAM, are due this Friday. Full papers due a week later. Join us. Source code includes binaries as well.
0
7
7
0
1
6
I’ll be talking about Intelligent Application Security at the upcoming Causal Islands future of computing conference in Toronto in late April.
We are excited to welcome Dr. Cristina Cifuentes to Causal Islands Conference! Cristina is the VP of the Oracle Software Assurance organization where she leads a team of security researchers and software + ML engineers to make application security + software assurance, at scale.
1
0
1
0
3
7
Thank you
@oniroi
, Harald,
@jenspalsberg
and
@benhermann
for your reviewer contributions to the SCAM community! We really appreciate your effort.
And "Distinguished Reviewer Award" goes to:
Coen De Roover,
Harald Sondergaard,
Jens Palsberg,
Ben Hermann
Thanks for your great work and Congratulations!
#scam20
#scam2020
#ieeescam
#ieee_scam
#ieeescam2020
1
2
16
0
0
7
Attending ICFP? Join me,
@sukyoungryu
and Alena as we talk to
@Behnaz_88
at the Women in CS Panel, Asian timeband: Mon 6pm San Francisco/ Tue 11am Brisbane/ Tue 10am Seoul/ Tue 9am Beijing/ Tue 6:30am New Delhi
#ICFP2020
0
2
7
PhD scholarship: come and join us and The University of Queensland to Verify Compiler Optimization Passes of the GraalVM. Applications close 13th August
0
2
7
Fun chat with
@jimgris
last month on application security research amd development amd more
Video from the podcast with Cristina Cifuentes last month on Oracle Labs Australia, research & development, security, community building, Open Source, and event a bit of Sun/Solaris.
@oraclelabs
@oracledevs
@criscifuentes
#opensource
#foss
#security
1
7
8
2
2
5
@stevemblackburn
Congratulations Steve and I cannot agree more on investing in Australian CS talent — having grown Oracle Labs Australia with fantastic Australian talent, both researchers and engineers, collaborations with universities, internships, etc, I concluded years ago this is it!
1
0
6
@jeanqasaur
We’ve been doing cross language analysis in Parfait for years. Common IR for all languages, some info stored in metadata
0
0
6
Great collaboration between
#oraclelabs
and Ian and Mark from the
#uqcyber
research group, advancing Australia’s expertise on cyber security as well as training students
0
1
6
Former Sun intern now Engineering Director at FB, Joel Pobar, received the QUT Innovation and Entrepreneurship Award
#QUTOAA
0
2
5
Girls do Cyber holiday programme at UQ starting on 30th June
If you're a parent of a girl/girls in Yr 9-12 in Queensland, and are looking for a holiday programme exploring Cyber Security career options, do consider our award-winning "Girls Do Cyber" prog on 30 June at The University of Queen…
0
8
11
1
1
5
Learn how to automatically detect the attack surface of todays web applications with Gelato
#oraclelabs
#appsec
#dast
New publication available: "Gelato: Feedback-driven and Guided Security Analysis of Client-side Web Applications":
#research
#security
#websecurity
#javascript
#programanalysis
0
0
4
0
2
5
Interested in an academic position with half the standard teaching duties to focus on research verifying optimization passes of a compiler? Join UQ ITEE and collaborate with Oracle Labs, applications close this Friday 11th Oct
0
2
5
See you all in October
0
2
5
Interested in information security? Join us in Canberra in July at the ISSISP summer school
#ISSISP
Excited to announce 3 new local speakers for
#ISSISP
:
@GernotHeiser
,
@yuvalyarom
and
@criscifuentes
!
1
5
8
0
1
5
Today at 2 pm PDT/7 am AEST I’ll be talking about Parfait and how we introduced intelligent configuration to it. See you at the 13th NASA Formal Methods Symposium (NFM 2021).
#ias
1
1
5
@stevemblackburn
I thank the Australian CS talent, many universities, professors and individual talent from researchers and engineers. I’m now growing a Software Assurance organization with big investment in Australian CS talent. 1/2
1
4
5
Great opportunity for first and second year PhD or Masters by Research students interested in cyber security.
0
2
5
@darrenmoffat
@silviocesare
@alanc
Imagine if we introduced some of these new learnings into a next generation decompiler!
0
0
5
Join me this Monday in Vancouver at 10:30 am to discuss security in object oriented languages - NOOL 2017 workshop
0
2
5
Working on Program Analysis, Fuzzing, CFI and related techniques as it relates to systems security? Consider submitting to the Journal of Computers & Security, papers due 1st December
@lcavallaro
& I are thrilled to announce “Benefits and Outlook of Program Analysis for Systems Security”.
This COSE special issue seeks technical & vision papers capitalizing on the rich cross-pollination ongoing among Computer Security, PL, and SE research.
RTs appreciated! ▶️🧵
2
20
26
0
0
5
Want to run your JS Jalangi analysis with ES6? Join us at Panathon 2018 in July to use Graal's Truffle-Jalangi API
0
3
5
Student travel applications to Benchwork and Panathon are due on 13th June: BenchWork 2018 - ECOOP and ISSTA
0
3
4
For students interested in benchmarking or program analysis hackathon
Thanks to
@Oracle
, we have some student travel support to attend Panathon '18 and BenchWork '18 (co-located with
@ECOOPconf
,
@issta_conf
, and
@curry_on_conf
). More details @ and .
2
2
7
0
3
4
To be held in May in Bertolino, Italy
Are you a BSc / MSc / early-ish PhD student (or a friend or supervisor) interested in programming languages? PLISS 2019 has now been announced -- the 2017 version was enjoyed by all who came, and we're hoping to make this one as much of a success!
1
23
33
0
2
4
2
0
4
Join us in our quest to make Software Assurance a reality!
Taking on large-scale challenges is a group effort. Learn why having two talented and diverse teams gives us the opportunity to make a greater impact on the future of software assurance.
0
1
2
0
1
4
0
0
4
@RolfRolles
@RdilipkCG
@geoffchappell
@_saagarjha
@ea_foundation
I cannot agree more with
@RolfRolles
. In putting together a retrospective talk on decompilation, a big area/gap that is missing is alias analysis, which relies on another big area/gap: type information, in order to be precise.
0
0
4
On Wednesday I'll be giving my talk on "It's Time for Secure Languages" at Imperial College London
0
0
4
Richard is a legend, all things fuzzing and lots of vulnerabilities research.
I wanted to give Philippe the spotlight first but I was also laid off two weeks ago. I’m available for fuzzing related contract work and private trainings. I’ll be posting some public online training events soon. I’m also researching AI model fine tuning for security applications
10
49
80
0
0
4
Join us at the SCAM conference this Sunday and Monday Europe/Africa and Americas time zones
Our program is finally out! Please check it out to discover all the presentations.
@ieeescam
in numbers:
16 papers in Research Track
8 papers in NIER Track
5 papers in Engineering Track
1 paper in RENE Track
#ieeescam
#ieee_scam
#ieeescam2020
0
2
13
0
2
4
@yuvalyarom
@tehjh
@anders_fogh
@lavados
@mlqxyz
@StefanMangard
@misc0110
Congratulations to the whole team!
0
0
4
@tobycmurray
@ShriramKMurthi
@moyix
Hey Toby, thanks for the write up. Just wondering, for the static analysis, finding 3 / 4 vulnerabilities, can you characterize them wrt intra vs inter procedural characteristics, and amount of data flow transfers for the culprit end variable that exercised the issue?
2
0
2
For those interested in binary analysis
I want to grow, but I need brilliant hackers to help me! If you're interested, ASU is hiring several full-time, real-deal security engineers to help make me all the better! Details and application here:
1
25
42
0
1
3
@acm_dtrap
publication on our internship collaboration with
@yaogroup1
to detect cryptographic vulnerabilities in production codebases.
#sast
#cryptography
#Oracle
New publication available: "Industrial Experience of Finding Cryptographic Vulnerabilities in Large-scale Codebases":
#research
#cryptography
#misuse
#API
#staticanalysis
0
1
4
0
2
3
SOAP is a great workshop that discusses topics in the area of program analysis. Paper submissions are coming up soon.
The submission deadline for SOAP'21 is in a bit more than a month!
If you have exciting works to present on program analysis, consider submitting a paper and come discuss your research.
Call for papers:
0
3
6
0
0
3
@GMorrisett
@jeanqasaur
@AndrewCMyers
Thank you. Andrew’s work was mentioned on slide 59, policy annotations (JIF, Fabric), as an example of a safe abstraction to avoid information leaks
1
0
3