2024
Hierarchy-Aware Representation Learning for Industrial IoT Vulnerability Classification.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Xinye Yang
,
Xiaoxue Wu
,
Wei Liu
,
Bin Li
IEEE Trans. Ind. Informatics, October, 2024

EXVul: Toward Effective and Explainable Vulnerability Detection for IoT Devices.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Wei Liu
,
Di Wu
,
Jiale Zhang
,
Yan Li
,
Tom H. Luan
,
Longxiang Gao
IEEE Internet Things J., June, 2024

Learning to Detect Memory-related Vulnerabilities.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Lili Bo
,
Rongxin Wu
,
Bin Li
,
Xiaoxue Wu
,
Chuanqi Tao
,
Tao Zhang
,
Wei Liu
ACM Trans. Softw. Eng. Methodol., February, 2024

Large Language Model for Vulnerability Detection and Repair: Literature Review and the Road Ahead.
[DOI]
Xin Zhou
,
Sicong Cao
,
Xiaobing Sun
,
David Lo
CoRR, 2024

A Systematic Literature Review on Explainability for Machine/Deep Learning-based Software Engineering Research.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Ratnadira Widyasari
,
David Lo
,
Xiaoxue Wu
,
Lili Bo
,
Jiale Zhang
,
Bin Li
,
Wei Liu
,
Di Wu
,
Yixin Chen
CoRR, 2024

Snopy: Bridging Sample Denoising with Causal Graph Learning for Effective Vulnerability Detection.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Xiaoxue Wu
,
David Lo
,
Lili Bo
,
Bin Li
,
Xiaolei Liu
,
Xingwei Lin
,
Wei Liu
Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering, 2024

1+1>2: Integrating Deep Code Behaviors with Metadata Features for Malicious PyPI Package Detection.
[DOI]
Xiaobing Sun
,
Xingan Gao
,
Sicong Cao
,
Lili Bo
,
Xiaoxue Wu
,
Kaifeng Huang
Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering, 2024

Coca: Improving and Explaining Graph Neural Network-Based Vulnerability Detection Systems.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Xiaoxue Wu
,
David Lo
,
Lili Bo
,
Bin Li
,
Wei Liu
Proceedings of the 46th IEEE/ACM International Conference on Software Engineering, 2024

2023
ODDFuzz: Discovering Java Deserialization Vulnerabilities via Structure-Aware Directed Greybox Fuzzing.
[DOI]
Sicong Cao
,
Biao He
,
Xiaobing Sun
,
Yu Ouyang
,
Chao Zhang
,
Xiaoxue Wu
,
Ting Su
,
Lili Bo
,
Bin Li
,
Chuanlei Ma
,
Jiajia Li
,
Tao Wei
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Improving Java Deserialization Gadget Chain Mining via Overriding-Guided Object Generation.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Xiaoxue Wu
,
Lili Bo
,
Bin Li
,
Rongxin Wu
,
Wei Liu
,
Biao He
,
Yu Ouyang
,
Jiajia Li
Proceedings of the 45th IEEE/ACM International Conference on Software Engineering, 2023

2022
SPVF: security property assisted vulnerability fixing via attention-based models.
[DOI]
Zhou Zhou
,
Lili Bo
,
Xiaoxue Wu
,
Xiaobing Sun
,
Tao Zhang
,
Bin Li
,
Jiale Zhang
,
Sicong Cao
Empir. Softw. Eng., 2022

MVD: Memory-Related Vulnerability Detection Based on Flow-Sensitive Graph Neural Networks.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Lili Bo
,
Rongxin Wu
,
Bin Li
,
Chuanqi Tao
Proceedings of the 44th IEEE/ACM 44th International Conference on Software Engineering, 2022

2021
A comprehensive study on security bug characteristics.
[DOI]
Ying Wei
,
Xiaobing Sun
,
Lili Bo
,
Sicong Cao
,
Xin Xia
,
Bin Li
J. Softw. Evol. Process., 2021

<i>BGNN4VD</i>: Constructing Bidirectional Graph Neural-Network for Vulnerability Detection.
[DOI]
Sicong Cao
,
Xiaobing Sun
,
Lili Bo
,
Ying Wei
,
Bin Li
Inf. Softw. Technol., 2021

GrasP: Graph-to-Sequence Learning for Automated Program Repair.
[DOI]
Ben Tang
,
Bin Li
,
Lili Bo
,
Xiaoxue Wu
,
Sicong Cao
,
Xiaobing Sun
Proceedings of the 21st IEEE International Conference on Software Quality, 2021