home

papers & talks & appearances

this page is a list of my more formal apperances, in LIFO order.
upcoming items are prefixed "(Upcoming)".
less formal (blog) postings can be found here.


(Upcoming) "Differential analysis of x86-64 instruction decoders"
The Seventh Workshop on Language-Theoretic Security (LangSec) at IEEE S&P, May 2021.
Co-researchers: Niki Carroll (GMU) and Sebastiaan Peters (TU/e).
Preprint


(Upcoming) "compilers HATE him: use this ONE WEIRD TRICK to hide a message in your x86 program!!"
!!Con 2021, May 2021.
Slides and video pending.


"Making build instrumentation boring with blight"
Lightning talk @ Empire Hacking o/b/o Trail of Bits, December 2020.
Video


"Destroying x86_64 Decoders with Differential Fuzzing"
INFILTRATE Miami o/b/o Trail of Bits, November 2020.
Slides and video pending.


"Bringing Two Factor Authentication to PyPI"
Deferred due to COVID-19.
PyCon o/b/o Trail of Bits, April 2020 date TBA.
Slides and video pending.


"TUFening PyPI: Securing the Package Supply Chain"
Deferred due to COVID-19.
PyCon o/b/o Trail of Bits w/ Paul Kehrer, April 2020 date TBA.
Slides and video pending.


"steg86: hiding messages in x86 binaries"
Rust Munich, August 2020.
SlidesVideo


"Differential fuzzing, or: how to find bugs when (ground) truth isn't real"
UMD-CSEC colloquium o/b/o Trail of Bits, April 2020.
Slides


"Differential fuzzing, or: how to find bugs when (ground) truth isn't real"
OSIRIS Lab colloquium o/b/o Trail of Bits, March 2020.
Slides


"It's coming from inside the house: kernel space fault injection with KRF"
CSAW C2 o/b/o Trail of Bits, November 2019.
Slides


"Improving PyPI's security with Two Factor Authentication"
PyGotham o/b/o Trail of Bits, October 2019.
SlidesVideo


"FLOSS Weekly 545: PyPI Security"
FLOSS Weekly o/b/o Trail of Bits, September 2019.
Podcast


"It's coming from inside the house: kernel space fault injection with KRF"
Linux Security Summit NA o/b/o Trail of Bits, August 2019.
SlidesVideo


"Security, UX, and Sustainability For The Python Package Index"
Podcast.__init__ o/b/o Trail of Bits, August 2019.
Podcast


"Going sicko mode on the Linux Kernel"
Empire Hacking o/b/o Trail of Bits, February 2019.
PDF


"Fuzzing 101"
UMD-CSEC colloquium o/b/o Trail of Bits, Fall 2018.
PDF


"CMSC389R: Introduction to Ethical Hacking"
1-credit STICs course at UMD, Spring 2018. 14 weeks of lectures.
Course materials (Syllabus, slides, assignments) – Video available upon request


"Ruby Obfuscation Techniques"
UMD-CSEC colloquium, Fall 2017.
PDFSource


"Git 101: A Crash Course for Productive git Usage"
UMD-CSEC colloquium, Fall 2017.
PDFSource


"Mach-O Internals"
Presented internally to Cipher Tech Solutions, Spring 2016.
PDFPandoc


"EMFS: Repurposing SMTP and IMAP for Data Storage and Synchronization"
Self Published, Spring 2016.
PDFLaTeXarXiv


"Cryptocurrencies, Reliable Storage, and Andrew Miller"
Shell Magazine, Spring 2015, Pages 16-18.
Department of Computer Science, University of Maryland, College Park.
PDF