Yan’s Papers

• 2024 - USENIX Security - TYGR
• 2024 - USENIX Security - Take a Step Further
• 2024 - USENIX Security - SAILR
• 2024 - USENIX Security - Mango
• 2024 - SP - VarBERT
• 2024 - SP - Mistakes
• 2024 - SIGCSE - PWN the Learning Curve
• 2024 - SIGCSE - Enter the DOJO
• 2024 - RAID - From Victims to Defenders
• 2024 - IMC - Browser Polygraph
• 2024 - ICML - WMDP
• 2024 - DIMVA - SandPuppy
• 2024 - CODASPY - Nothing Personal
• 2024 - CCS - Trust, Because You Can’t Verify
• 2024 - CCS - FlakJack
• 2024 - AsiaCCS - Deep Dive into Client-Side Anti-Phishing
• 2023 - USENIX Security - Greenhouse
• 2023 - SP - Toss a Fault to Your Witcher
• 2023 - SP - Beyond Phish
• 2023 - SecureComm - Street Rep
• 2023 - DSN - Targeted Privacy Attacks (LTE)
• 2023 - CCS - RetSpill
• 2022 - USENIX Security - Unleash the Simulacrum
• 2022 - USENIX Security - Playing for kHeaps
• 2022 - USENIX Security - Arbiter
• 2022 - SP - Evaluating Security Papers
• 2022 - RAID - Context-Auditor
• 2022 - DIMVA - Hybrid Pruning
• 2022 - CCSW - Eirene
• 2022 - CCS - Spartacus
• 2022 - ASPLOS - ViK
• 2022 - AsiaCCS - Convergence of Source Code and Binary Vulnerability Discovery
• 2021 - USENIX Security - Having Your Cake and Eating It
• 2021 - SP - Crawlphish
• 2021 - NDSS - Favocado
• 2021 - HICCS - MuTent
• 2021 - Financial Crypto - Bitcoin Mixers
• 2020 - USENIX WOOT - Uninitialized Kernel Stack
• 2020 - USENIX Security - PhishTime
• 2020 - SP - KARONTE
• 2020 - MobiSys - SmokeBomb
• 2020 - eCrimes - Pandemic Phishing
• 2020 - CNS - Exploring Abstraction Functions in Fuzzing
• 2020 - CCS - HoneyPLC
• 2019 - DIMVA - Bintrimmer
• 2019 - CODASPY - Bootkeeper
• 2019 - CCS - Matched and Mismatched SOCs
• 2019 - ACSAC - Sleak
• 2018 - USENIX Security - HeapHopper
• 2018 - SP - T-Fuzz
• 2018 - SP Magazine - Mechanical Phish
• 2018 - SDN NFV - Challenges and Preparedness of SDN Firewalls
• 2018 - Langsec- Retrofitting Security in Input Parsing Routines
• 2018 - CCS - AIM-SDN
• 2018 - ASHES - Cachelight
• 2018 - ACSAC - WiNotCalling
• 2017 - USENIX Security - Bootstomp
• 2017 - SP - Your Exploit is Mine
• 2017 - Phrack - Cyber Grand Shellphish
• 2017 - NDSS - Ramblr
• 2017 - Dissertation - Building a Base For Cyber Autonomy
• 2017 - CSF - How Shall We Play a Game
• 2017 - CCS - Rise of the HaCRS
• 2017 - CCS - DIFUZE
• 2017 - ACSAC - Piston
• 2016 - SP - State of the Art of War
• 2016 - RAID - Taming Transactions
• 2016 - NDSS - Firmalice
• 2016 - NDSS - Driller
• 2015 - USENIX Security - How the ELF Ruined Christmas
• 2015 - PETS - Portrait of a Privacy Invasion
• 2014 - SAC - Do You Feel Lucky
• 2014 - RAID - Protecting Web-Based Single Sign-On Protocols
• 2014 - DIMVA - PEXy
• 2014 - 3GSE - Ten Years of iCTF
• 2013 - USENIX Security - Steal This Movie
• 2013 - USENIX Security - Revolver
• 2012 - CCS - Blacksheep
• 2011 - GSWC - Back to the Future