Paper-Conference

RangeSanitizer: Detecting Memory Errors with Efficient Range Checks

Sanitizers for spatial and temporal memory errors have become a cornerstone of security testing. Popular redzone-based sanitizers such …
PDF Cite Code
Speedrunning the Maze: Meeting Regulatory Patching Deadlines in a Large Enterprise Environment
Many enterprises struggle to apply security patches in time to remove the risk of security breaches. Delays can be attributed to …
Cite DOI
The File That Contained the Keys Has Been Removed: An Empirical Analysis of Secret Leaks in Cloud Buckets and Responsible Disclosure Outcomes
With the growing reliance on cloud services for storage and deployment, securing cloud environments has become critically important. …
PDF Cite DOI
Practical Data-Only Attack Generation

As control-flow hijacking is getting harder due to increasingly sophisticated CFI solutions, recent work has instead focused on …
PDF Cite Code Poster Slides Video ;login: Article
SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching

Double-fetch bugs (or vulnerabilities) stem from in-kernel system call execution fetching the same user data twice without proper data …
PDF Cite Code Slides Video
The Unpatchables: Why Municipalities Persist in Running Vulnerable Hosts

Many organizations continue to expose vulnerable systems for which patches exist, opening themselves up for cyberattacks. Local …
PDF Cite Video
The Unpatchables: Why Municipalities Persist in Running Vulnerable Hosts
Charting the Path to SBOM Adoption: A Business Stakeholder-Centric Approach

Organizations are increasingly reliant on third-party software products to expedite their own development cycles, often incorporating …
PDF Cite DOI
Charting the Path to SBOM Adoption: A Business Stakeholder-Centric Approach
Sticky Tags: Efficient and Deterministic Spatial Memory Error Mitigation using Persistent Memory Tags
Spatial memory errors such as buffer overflows still rank among the top vulnerabilities in C/C++ programs. Despite much research in the …
PDF Cite Code Project DOI
FloatZone: Accelerating Memory Error Detection using the Floating Point Unit

Memory sanitizers are powerful tools to detect spatial and temporal memory errors, such as buffer overflows and use-after-frees. …
PDF Cite Code Project Slides ;login: Article
UNCONTAINED: Uncovering Container Confusion in the Linux Kernel

Type confusion bugs are a common source of security problems whenever software makes use of type hierarchies, as an inadvertent …
PDF Cite Code Project Slides