Yan’s Papers
2025 - NDSS - ScamMagnifier
2024 - USENIX Security - TYGR
2024 - USENIX Security - Take a Step Further
2024 - USENIX Security - SAILR
2024 - USENIX Security - Mango
2024 - SP - VarBERT
2024 - SP - Mistakes
2024 - SIGCSE - PWN the Learning Curve
2024 - SIGCSE - Enter the DOJO
2024 - RAID - From Victims to Defenders
2024 - IMC - Browser Polygraph
2024 - ICML - WMDP
2024 - DIMVA - SandPuppy
2024 - CODASPY - Nothing Personal
2024 - CCS - Trust, Because You Can’t Verify
2024 - CCS - FlakJack
2024 - AsiaCCS - Deep Dive into Client-Side Anti-Phishing
2023 - USENIX Security - Greenhouse
2023 - SP - Toss a Fault to Your Witcher
2023 - SP - Beyond Phish
2023 - SecureComm - Street Rep
2023 - DSN - Targeted Privacy Attacks (LTE)
2023 - CCS - RetSpill
2022 - USENIX Security - Unleash the Simulacrum
2022 - USENIX Security - Playing for kHeaps
2022 - USENIX Security - Arbiter
2022 - SP - Evaluating Security Papers
2022 - RAID - Context-Auditor
2022 - DIMVA - Hybrid Pruning
2022 - CCSW - Eirene
2022 - CCS - Spartacus
2022 - ASPLOS - ViK
2022 - AsiaCCS - Convergence of Source Code and Binary Vulnerability Discovery
2021 - USENIX Security - Having Your Cake and Eating It
2021 - SP - Crawlphish
2021 - NDSS - Favocado
2021 - HICCS - MuTent
2021 - Financial Crypto - Bitcoin Mixers
2020 - USENIX WOOT - Uninitialized Kernel Stack
2020 - USENIX Security - PhishTime
2020 - SP - KARONTE
2020 - MobiSys - SmokeBomb
2020 - eCrimes - Pandemic Phishing
2020 - CNS - Exploring Abstraction Functions in Fuzzing
2020 - CCS - HoneyPLC
2019 - DIMVA - Bintrimmer
2019 - CODASPY - Bootkeeper
2019 - CCS - Matched and Mismatched SOCs
2019 - ACSAC - Sleak
2018 - USENIX Security - HeapHopper
2018 - SP - T-Fuzz
2018 - SP Magazine - Mechanical Phish
2018 - SDN NFV - Challenges and Preparedness of SDN Firewalls
2018 - Langsec- Retrofitting Security in Input Parsing Routines
2018 - CCS - AIM-SDN
2018 - ASHES - Cachelight
2018 - ACSAC - WiNotCalling
2017 - USENIX Security - Bootstomp
2017 - SP - Your Exploit is Mine
2017 - Phrack - Cyber Grand Shellphish
2017 - NDSS - Ramblr
2017 - Dissertation - Building a Base For Cyber Autonomy
2017 - CSF - How Shall We Play a Game
2017 - CCS - Rise of the HaCRS
2017 - CCS - DIFUZE
2017 - ACSAC - Piston
2016 - SP - State of the Art of War
2016 - RAID - Taming Transactions
2016 - NDSS - Firmalice
2016 - NDSS - Driller
2015 - USENIX Security - How the ELF Ruined Christmas
2015 - PETS - Portrait of a Privacy Invasion
2014 - SAC - Do You Feel Lucky
2014 - RAID - Protecting Web-Based Single Sign-On Protocols
2014 - DIMVA - PEXy
2014 - 3GSE - Ten Years of iCTF
2013 - USENIX Security - Steal This Movie
2013 - USENIX Security - Revolver
2012 - CCS - Blacksheep
2011 - GSWC - Back to the Future