I am broadly interested in operating systems, software engineering and computer security at all layers (e.g., software,system and hardware security). Recently, I focus on vulnerability discovery, including fuzzing and static analysis.
RTFM! Automatic Assumption Discovery and Verification Derivation from Library Document for API Misuse Detection
Tao Lv, Ruishi Li, Yi Yang, Kai Chen, Xiaojing Liao, XiaoFeng Wang, Peiwei Hu and Luyi Xing.
Proceedings of the 27th ACM Conference on Computer and Communications Security (CCS 2020).
FuzzGuard: Filtering out Unreachable Inputs in Directed Grey-box Fuzzing through Deep Learning
Peiyuan Zong, Tao Lv, Dawei Wang, Zizhuang Deng, Ruigang Liang and Kai Chen.
Proceedings of the 29th USENIX Security Symposium (USENIX Security 2020).
NSFOCUS(绿盟), Security Service Engineer, Xi'an, China
July 2018 - August 2018
Vulnerability discovery: Proficient in fuzzing and static analysis (e.g., CodeQL).
Program analysis techniques: Taint analysis, symbolic execution, software reversing and writing LLVM Pass.
Natural language processing: Preliminary in sentiment analysis, dependency parsing, word embedding, Part-of-speech tagging and shallow parsing.
Programming language: Proficient in C, Python and x86_64 assembly language.
Honors and Awards
National Scholarship, China Ministry of Education (Top 2%, 10/500)
Merit Student, University of Chinese Academy of Sciences (Top 15%, 76/500)
Outstanding Graduates, Huazhong University of Science and Technology
Merit Student, Huazhong University of Science and Technology (Top 3%, 1/30)
First Class Prize, The 10th National College Student Information Security Contest (15%, 38/246)