2024
Enhancing Static Analysis for Practical Bug Detection: An LLM-Integrated Approach.
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
Proc. ACM Program. Lang., 2024

SymBisect: Accurate Bisection for Fuzzer-Exposed Vulnerabilities.
[DOI]
Zheng Zhang
,
Yu Hao
,
Weiteng Chen
,
Xiaochen Zou
,
Xingyu Li
,
Haonan Li
,
Yizhuo Zhai
,
Zhiyun Qian
,
Billy Lau
Proceedings of the 33rd USENIX Security Symposium, 2024

SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing.
[DOI]
Weiteng Chen
,
Yu Hao
,
Zheng Zhang
,
Xiaochen Zou
,
Dhilung Kirat
,
Shachee Mishra
,
Douglas Lee Schales
,
Jiyong Jang
,
Zhiyun Qian
Proceedings of the IEEE Symposium on Security and Privacy, 2024

SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem.
[DOI]
Xiaochen Zou
,
Yu Hao
,
Zheng Zhang
,
Juefei Pu
,
Weiteng Chen
,
Zhiyun Qian
Proceedings of the 31st Annual Network and Distributed System Security Symposium, 2024

2023
E&V: Prompting Large Language Models to Perform Static Analysis by Pseudo-code Execution and Verification.
[DOI]
Yu Hao
,
Weiteng Chen
,
Ziqiao Zhou
,
Weidong Cui
CoRR, 2023

The Hitchhiker's Guide to Program Analysis: A Journey with Large Language Models.
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
CoRR, 2023

SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers.
[DOI]
Yu Hao
,
Guoren Li
,
Xiaochen Zou
,
Weiteng Chen
,
Shitong Zhu
,
Zhiyun Qian
,
Ardalan Amiri Sani
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Assisting Static Analysis with Large Language Models: A ChatGPT Experiment.
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2023

2022
ConcSpectre: Be Aware of Forthcoming Malware Hidden in Concurrent Programs.
[DOI]
Yang Liu
,
Zisen Xu
,
Ming Fan
,
Yu Hao
,
Kai Chen
,
Hao Chen
,
Yan Cai
,
Zijiang Yang
,
Ting Liu
IEEE Trans. Reliab., 2022

Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel.
[DOI]
Yizhuo Zhai
,
Yu Hao
,
Zheng Zhang
,
Weiteng Chen
,
Guoren Li
,
Zhiyun Qian
,
Chengyu Song
,
Manu Sridharan
,
Srikanth V. Krishnamurthy
,
Trent Jaeger
,
Paul L. Yu
Proceedings of the 29th Annual Network and Distributed System Security Symposium, 2022

Demystifying the Dependency Challenge in Kernel Fuzzing.
[DOI]
Yu Hao
,
Hang Zhang
,
Guoren Li
,
Xingyun Du
,
Zhiyun Qian
,
Ardalan Amiri Sani
Proceedings of the 44th IEEE/ACM 44th International Conference on Software Engineering, 2022

2021
Statically Discovering High-Order Taint Style Vulnerabilities in OS Kernels.
[DOI]
Hang Zhang
,
Weiteng Chen
,
Yu Hao
,
Guoren Li
,
Yizhuo Zhai
,
Xiaochen Zou
,
Zhiyun Qian
Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison.
[DOI]
Zhongjie Wang
,
Shitong Zhu
,
Keyu Man
,
Pengxiong Zhu
,
Yu Hao
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Tom La Porta
,
Michael J. De Lucia
Proceedings of the MTD@CCS 2021: Proceedings of the 8th ACM Workshop on Moving Target Defense, 2021

Eluding ML-based Adblockers With Actionable Adversarial Examples.
[DOI]
Shitong Zhu
,
Zhongjie Wang
,
Xun Chen
,
Shasha Li
,
Keyu Man
,
Umar Iqbal
,
Zhiyun Qian
,
Kevin S. Chan
,
Srikanth V. Krishnamurthy
,
Zubair Shafiq
,
Yu Hao
,
Guoren Li
,
Zheng Zhang
,
Xiaochen Zou
Proceedings of the ACSAC '21: Annual Computer Security Applications Conference, Virtual Event, USA, December 6, 2021

2020
Tell You a Definite Answer: Whether Your Data is Tainted During Thread Scheduling.
[DOI]
Xiaodong Zhang
,
Zijiang Yang
,
Qinghua Zheng
,
Yu Hao
,
Pei Liu
,
Ting Liu
IEEE Trans. Software Eng., 2020

UBITect: a precise and scalable method to detect use-before-initialization bugs in Linux kernel.
[DOI]
Yizhuo Zhai
,
Yu Hao
,
Hang Zhang
,
Daimeng Wang
,
Chengyu Song
,
Zhiyun Qian
,
Mohsen Lesani
,
Srikanth V. Krishnamurthy
,
Paul L. Yu
Proceedings of the ESEC/FSE '20: 28th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2020

2018
Debugging Multithreaded Programs as if They Were Sequential.
[DOI]
Xiaodong Zhang
,
Zijiang Yang
,
Qinghua Zheng
,
Yu Hao
,
Pei Liu
,
Lechen Yu
,
Ting Liu
IEEE Access, 2018

2017
Automated Testing of Definition-Use Data Flow for Multithreaded Programs.
[DOI]
Xiaodong Zhang
,
Zijiang Yang
,
Qinghua Zheng
,
Pei Liu
,
Jialiang Chang
,
Yu Hao
,
Ting Liu
Proceedings of the 2017 IEEE International Conference on Software Testing, 2017

2016
Debugging Multithreaded Programs as if They Were Sequential.
[DOI]
Xiaodong Zhang
,
Zijiang Yang
,
Qinghua Zheng
,
Yu Hao
,
Pei Liu
,
Lechen Yu
,
Ming Fan
,
Ting Liu
Proceedings of the International Conference on Software Analysis, Testing and Evolution, 2016