We have a bunch of other active projects in stealth mode, which in fact we are actually working on. If you'd like to know more about, please let us know (<mailto:sslab>).
Please check our opensource projects on Github.
autofz
autofz is a meta fuzzer for automated fuzzer composition at runtime.
![](../assets/proj/autofz.png)
Rudra
Rudra is a static analyzer to detect common undefined behaviors in Rust programs. This project received the distinguished artifact award in SOSP.
![](../assets/proj/Rudra.png)
hydra
An Extensible Fuzzing Framework for Finding Semantic Bugs in File Systems
![](../assets/proj/hydra.jpg)
qsym
A hybrid fuzzer based on concolic execution. This project is famous with its practicality, also it got best-paper award from USENIX Security.
![](../assets/proj/qsym.jpg)
apollo
A toolchain for automatically detecting, reporting, and diagnosing performance bugs in DBMSs.
![](../assets/proj/apollo.jpg)
DIE
Fuzzing JavaScript Engines with Aspect-preserving Mutation
![](../assets/proj/DIE.jpg)
A project removing privacy information from crash reports while preserving the correctness of report.
![](../assets/proj/desensitization.jpg)
janus
a state-of-the-art file system fuzzer on Linux
![](../assets/proj/janus.jpg)
Dataflow integrity based defense against kernel memory corruption attacks.
![](../assets/proj/kernel-analyzer.jpg)
APISan
Sanitizing API Usages through Semantic Cross-Checking
![](../assets/proj/APISan.jpg)
ArcHeap
Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
![](../assets/proj/ArcHeap.jpg)
fxmark
Filesystem Multicore Scalability Benchmark
![](../assets/proj/fxmark.jpg)
shfllock
A project for developing scalable and practical locking algorithms for high-performance multicore system.
![](../assets/proj/shfllock.jpg)
vbench
Multicore Scalability Application Benchmark
![](../assets/proj/vbench.jpg)
A new mitigation technique that helps developers protect the released binary from fuzzing
![](../assets/proj/fuzzification.jpg)
mlsploit
A cloud-based system that enables attacks and defenses for machine learning (ML) models
![](../assets/proj/mlsploit.jpg)
Modified Nexus 9 kernel for Kenali Project
![](../assets/proj/kenali-kernel.jpg)
libmpk
Building software abstraction for Intel MPK hardware feature.
![](../assets/proj/libmpk.jpg)
Synced with SGX101 gitbook.
![](../assets/proj/sgx101-gitbook.jpg)
A project improving fuzzing performance by adding new design primitive to operating system.
![](../assets/proj/perf-fuzz.jpg)
SGX 101
A place to start designing application with Intel SGX in mind.
![](../assets/proj/SGX 101.jpg)
eCS
Enlightened Critical Sections
![](../assets/proj/eCS.jpg)
latr
Lazy Translation Coherence - ASPLOS'18
![](../assets/proj/latr.jpg)
deadline
This project introduces double-fetch bugs in kernel with formal definition and proposes an automatic detection method based on static analysis.
![](../assets/proj/deadline.jpg)
ordo
Designing scalable ordering primitive for multicore machines with invariant hardware clocks.
![](../assets/proj/ordo.jpg)
sgx-bomb
This is a rowhammer-based SGX attack project alarming its serious impact to cloud providers.
![](../assets/proj/sgx-bomb.jpg)
Crawler for GooglePlay
![](../assets/proj/playcrawl.jpg)
The branch shadowing attack: Proof of concept
![](../assets/proj/branch-shadowing.jpg)
hdfi
Hardware-assisted Data-flow Isolation
![](../assets/proj/hdfi.jpg)
OpenSGX
An open platform for Intel SGX
![](../assets/proj/OpenSGX.jpg)
platpal
A project detecting malicious PDF documents by analyzing execution traces.
![](../assets/proj/platpal.jpg)
bunshin
N-version-based software diversification project with novel strategies such as sanitizer distribution.
![](../assets/proj/bunshin.jpg)
DrK
The DrK Attack - Proof of concept
![](../assets/proj/DrK.jpg)
SGX Tutorial at CCS17: SGX Security and Privacy
![](../assets/proj/sgx-tutorial-ccs17.jpg)
mosaic
This project builds a new graph processing engine with various optimizations, capable of processing a trillion-edge graph on a single machine.
![](../assets/proj/mosaic.jpg)
Enabling Address Space Layout Randomization (ASLR) for SGX Programs
![](../assets/proj/SGX-Shield.jpg)
avpass
A tool for leaking and bypassing Android malware detection system
![](../assets/proj/avpass.jpg)
t-sgx
Compiler-based tool that protects Intel SGX applications against controlled-channel attacks
![](../assets/proj/t-sgx.jpg)
This project implements scalable NUMA-aware locks by newly adding synchronization primitives to mutex and semaphore in the Linux kernel.
![](../assets/proj/cst-locks.jpg)
UniSan
Proactive Kernel Memory Initialization to Eliminate Data Leakages
![](../assets/proj/UniSan.jpg)
A performance-oriented re-design of FakeRoot project - a tool that offers applications the illusion of root privileges - for multicore architectures
![](../assets/proj/fakeroot-p.jpg)
Preventing code-reuse attacks by stopping code pointer leakages
![](../assets/proj/aslr-guard.jpg)
juxta
Cross-checking Semantic Correctness for File Systems
![](../assets/proj/juxta.jpg)
UCognito
Private Browsing without Tears
![](../assets/proj/UCognito.jpg)
caver
This is a Facebook-Internet-Defense-Prize winning project that automatically discovers type casting bugs in C++.
![](../assets/proj/caver.jpg)
kup
Prototype for seamlessly updating Linux kernel with application checkpoint-and-restart
![](../assets/proj/kup.jpg)