All Stories

  1. eBPF Misbehavior Detection: Fuzzing with a Specification-Based Oracle

    Article • October 2025, ACM (Association for Computing Machinery)

    Mathias Payer

  2. Top of the Heap: Efficient Memory Error Protection of Safe Heap Objects

    Article • December 2024, ACM (Association for Computing Machinery)

    Mathias Payer

  3. Fuzzing JavaScript Engines with a Graph-based IR

    Article • December 2024, ACM (Association for Computing Machinery)

    Mathias Payer

  4. Gradient: Gradual Compartmentalization via Object Capabilities Tracked in Types

    Article • Proceedings of the ACM on Programming Languages, October 2024, ACM (Association for Computing Machinery)

    Mathias Payer

  5. Tango: Extracting Higher-Order Feedback through State Inference

    Article • September 2024, ACM (Association for Computing Machinery)

    Ahmad Hazimeh, Mathias Payer, Duo Xu

  6. SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer

    Article • July 2024, ACM (Association for Computing Machinery)

    Mathias Payer

  7. TuneFuzz: Adaptively Exploring Target Programs

    Article • April 2024, ACM (Association for Computing Machinery)

    Mathias Payer

  8. Crystallizer: A Hybrid Path Analysis Framework to Aid in Uncovering Deserialization Vulnerabilities

    Article • November 2023, ACM (Association for Computing Machinery)

    Mathias Payer

  9. DatAFLow : Toward a Data-Flow-Guided Fuzzer

    Article • ACM Transactions on Software Engineering and Methodology, July 2023, ACM (Association for Computing Machinery)

    Antony Hosking, Mathias Payer

  10. DatAFLow : Toward a Data-flow-guided Fuzzer

    Article • ACM Transactions on Software Engineering and Methodology, July 2023, ACM (Association for Computing Machinery)

    Mathias Payer, Antony Hosking

  11. Fuzzing binaries using dynamic control flow analysis

    Article • July 2023, ACM (Association for Computing Machinery)

    Mathias Payer, Sirus Shahini

  12. Creating Trust by Abolishing Hierarchies

    Article • June 2023, ACM (Association for Computing Machinery)

    Mathias Payer

  13. Imprecise Store Exceptions

    Article • June 2023, ACM (Association for Computing Machinery)

    Mathias Payer

  14. One Fuzz Doesn’t Fit All: Optimizing Directed Fuzzing via Target-tailored Program State Restriction

    Article • December 2022, ACM (Association for Computing Machinery)

    Mathias Payer

  15. Designing a Provenance Analysis for SGX Enclaves

    Article • December 2022, ACM (Association for Computing Machinery)

    Mathias Payer

  16. PACMem

    Article • November 2022, ACM (Association for Computing Machinery)

    Mathias Payer, Professor Ying Liu

  17. Minerva: browser API fuzzing with dynamic mod-ref analysis

    Article • November 2022, ACM (Association for Computing Machinery)

    Mathias Payer

  18. Evocatio

    Article • November 2022, ACM (Association for Computing Machinery)

    Mathias Payer

  19. Automatically deduplicating program crashes by test case simplification and root-cause clustering

    Article • November 2021, ACM (Association for Computing Machinery)

    Ahmad Hazimeh, Mathias Payer

  20. μSCOPE: A Methodology for Analyzing Least-Privilege Compartmentalization in Large Software Artifacts

    Article • October 2021, ACM (Association for Computing Machinery)

    Mathias Payer

  21. Seed selection for successful fuzzing

    Article • July 2021, ACM (Association for Computing Machinery)

    Antony Hosking, Mathias Payer

  22. Gramatron: effective grammar-aware fuzzing

    Article • July 2021, ACM (Association for Computing Machinery)

    Mathias Payer

  23. Magma: A Ground-Truth Fuzzing Benchmark

    Article • ACM SIGMETRICS Performance Evaluation Review, June 2021, ACM (Association for Computing Machinery)

    Ahmad Hazimeh, Mathias Payer

  24. Rebooting Virtual Memory with Midgard

    Article • June 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Mathias Payer

  25. Magma: A Ground-Truth Fuzzing Benchmark

    Article • May 2021, ACM (Association for Computing Machinery)

    Ahmad Hazimeh, Mathias Payer

  26. Too Quiet in the Library: An Empirical Study of Security Updates in Android Apps' Native Code

    Article • May 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Mathias Payer

  27. Too Quiet in the Library: An Empirical Study of Security Updates in Android Apps’ Native Code

    Article • May 2021, Institute of Electrical & Electronics Engineers (IEEE)

    Mathias Payer

  28. Code Specialization through Dynamic Feature Observation

    Article • April 2021, ACM (Association for Computing Machinery)

    Mathias Payer

  29. Enclosure: language-based restriction of untrusted libraries

    Article • April 2021, ACM (Association for Computing Machinery)

    James Larus, Mathias Payer

  30. Magma

    Article • Proceedings of the ACM on Measurement and Analysis of Computing Systems, November 2020, ACM (Association for Computing Machinery)

    Ahmad Hazimeh, Mathias Payer

  31. SMoTherSpectre

    Article • November 2019, ACM (Association for Computing Machinery)

    Mathias Payer

  32. PoLPer

    Article • March 2019, ACM (Association for Computing Machinery)

    Mathias Payer

  33. Milkomeda

    Article • January 2018, ACM (Association for Computing Machinery)

    Mathias Payer

  34. Block Oriented Programming

    Article • January 2018, ACM (Association for Computing Machinery)

    Trent Jaeger, Mathias Payer

  35. HexType

    Article • October 2017, ACM (Association for Computing Machinery)

    Mathias Payer

  36. Enforcing Least Privilege Memory Views for Multithreaded Applications

    Article • October 2016, ACM (Association for Computing Machinery)

    Mathias Payer

  37. TypeSan

    Article • October 2016, ACM (Association for Computing Machinery)

    Mathias Payer