@steven_rossi_ and I taught a course on Binary Exploitation and Vulnerability Analysis at UMass Amherst for the past 2 years. After this semester's offering we decided to open source all course material including lecture vods, slides, and projects. https://t.co/xzadGh9tJy

Been a while since my last blog post. Fun project I worked on recently that I got to write about. Hope you enjoy the writeup!

Excited to share my latest blog post: "Breaking Control Flow Flattening: A Deep Technical Analysis" I showcase usage of formal proofs and graph theory to automate CFF deobfuscation, among other things ! Might make it a talk...? 👀 https://t.co/iWoP9GeZhX

A few months back we submitted two exploit chains to the first ever Pwn2Own Automotive competition. We just released a blogpost (part 1 of 2) detailing the bugs we abused to remotely exploit the Phoenix CHARX industrial EV charger and win $60,000 🔥🔥 https://t.co/HmRCIzJm0E

We are pleased to announce our third annual UMassCTF, UMassCTF2024, is coming up soon! From April 19th @ 6pm EST to April 21st @ 6pm EST, we will be hosting the competition at https://t.co/NBcWckVmvo. Join our discord server for more information at https://t.co/qYptGwSGon.

Fuzzing is preferred over formal verification because proving the absence of bugs is usually unattainable, and fuzzing identifies the same bugs with less effort.

After 2 years here's a new blog post:Fuzzing TinyBMP in Rust||From dumb to structure-aware guide.If you're new-ish to Rust and want to dive in and see how you can play w dumb and smart fuzzing give it a try! Shouts to @addisoncrump_vr for the massive help!

Okay I made it public, enjoy :P https://t.co/EEvOw4DxLj

Really cool start, curious to see where this goes!

Massively proud of the @InterruptLabs crew. Even with an extremely unlucky draw order and a certain vendor playing games we’ve landed joint 3rd out of 30 teams

My FiiO M6 presentation from BSidesRDU is now up on YouTube :) https://t.co/P1qZclVdQP

PASTA is the culmination of years of work trying to wrangle reliable and actionable data out of Clang. The effort has required a lot of hacking and custom patches to Clang, especially in the preprocessor, but the results speak for themselves.

SeungHyun in our lab found critical vulnerbilities in vm2, which is a well known JavaScript sandbox. Unfortunatetly, these bugs cannot be fixed without changing its whole sandboxing strategy. So now vm2 becomes DEPRECATED 😳😳😳

Happy to announce that I'll be starting as a vulnerability researcher at @InterruptLabs next week!

I have received a $100,000 sponsorship specifically for Ladybird browser development! 🤓🐞🌍 More details to come..

A new blog post about 3 vulnerabilities I found in the Kanboard Management Software with over 10 million downloads and how a user could've spread malicious tasks across all the projects, enjoy! https://t.co/L21TpBH1D5

Over the past semester, I've been working on creating a software simulator for the R3000 CPU, including mem/cache and a MIPS-1 assembler. If you have 30 minutes, try writing and running your own programs on it! https://t.co/ieoGkXXH4F

For the past two years me and @seal9055 taught a binary exploitation class at @manningcics , today we’re making the lectures and materials public for everyone at

Topics Include: - Reverse Engineering - Stack Exploitation (Shellcode, ROP, Mitigation Bypasses) - Heap Exploitation (Glibc Intro, House of Force, Tcache Dup) - Program Analysis (Fuzzing, Intel Pin, LLVM, Symbolic)

Gonna be apartment hunting in Manhattan next week, let’s see how that will go :P

@Laughing_Mantis I’m open for subcontract work writing custom fuzzers, harnesses, or emulator extensions. I’ll update my site soon, but past work on https://t.co/aIZmtJTBE3 is representative of my skill set and I have a resume on linkedin. Also open for private training, syllabus is on the site.