News

2021

publications
ROLoad: Securing Sensitive Operations with Pointee Integrity

DAC 2021

Wende Tan , Yuan Li , Chao Zhang , Xingman Chen , Songtao Yang , Ying Liu , Jianping Wu .

Protect sensitive operations with hardware support.

hacking
祥云杯 2021 线上赛

August 21, 2021

Team: Redbud
Rank: 1
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Chuhan Wang , Kaitao Xie , Kaixiang Lei .

publications
VScape: Assessing and Escaping Virtual Call Protections

USENIX Security 2021

Kaixiang Chen , Chao Zhang , Tingting Yin , Xingman Chen , Lei Zhao .

Bypass virtual protections towards AEG.

publications
Sharing More and Checking Less: Leveraging Common Input Keywords to Detect Bugs in Embedded Systems

USENIX Security 2021

Libo Chen , Yanhao Wang , Quanpu Cai , Yunfan Zhan , Hong Hu , Jiaqi Linghu , Qinsheng Hou , Chao Zhang , Haixin Duan , Zhi Xue .

Finding vulnerabilities in embedded systems

publications
MAZE: Towards Automated Heap Feng Shui

USENIX Security 2021

Yan Wang , Chao Zhang , Zixuan Zhao , Bolun Zhang , Xiaorui Gong , Wei Zou .

Manipulate heap layouts automatically.

hacking
DEFCON CTF 29 Final

August 07, 2021

Team: Tea-Deliverers
Rank: 3
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Chuhan Wang , Fenglu Zhang , Sirui Mu .

hacking
AutoDriving CTF 2021 @ DEFCON 29

August 06, 2021

Team: Redbud
Rank: 4
Core Players from NISL: Li Yue , Hao Wang , Zihan Zhang , Shisong Qin , Wenjie Qu , Tingting Yin .

AutoDriving Scoreboard

hacking
强网杯 2021 决赛

July 10, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Kaitao Xie , Huikai Xu , Kaixiang Lei .

hacking
津门杯 2021 决赛

July 10, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Minglei Guo , Kaitao Xie , Yuxuan Wang .

hacking
XCTF Final 2021

May 29, 2021

Team: Redbud
Rank: 5
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Fenglu Zhang , Kaitao Xie , Kaixiang Lei .

seminars
New Security Threats Caused by IMS-based SMS Service in 4G LTE Networks

14:00-15:10pm May 27, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Hui Gao .

Abstract:

SIP Protocol security & Uncover its security vulnerabilities and exploit them to devise four SMS attacks: silent SMS abuse, SMS spoofing, SMS client DoS, and SMS spamming

seminars
Abusing Hidden Properties to Attack the Node.js Ecosystem

15:10-16:10pm May 27, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Kaixiang Chen .

Abstract:

seminars
Your Phone is My Proxy: Detecting and Understanding Mobile Proxy Networks

15:10-16:10pm May 20, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Zhuoqun fu .

Abstract:

A measurement on mobile proxy networks

seminars
TLS 1.3 in Practice How TLS 1.3 Contributes to the Internet + On the Origin of Scanning- The Impact of Location on Internet-Wide Scans

14:00-15:10pm May 13, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Jiachen Li .

Abstract:

A discussion of a TLS 1.3 measurement paper and the accuracy of the “ipv4 scanning” itself.