All Stories

  1. Smartreco: Detecting Read-Only Reentrancy via Fine-Grained Cross-DApp Analysis

    Article • April 2025, Institute of Electrical & Electronics Engineers (IEEE)

    Yuhong Nan, weizhe zhang

  2. Are We Getting Well-informed? An In-depth Study of Runtime Privacy Notice Practice in Mobile Apps

    Article • December 2024, ACM (Association for Computing Machinery)

    Yuhong Nan, li shuai

  3. Understanding Cross-Platform Referral Traffic for Illicit Drug Promotion

    Article • December 2024, ACM (Association for Computing Machinery)

    Yuhong Nan

  4. Midas: Mining Profitable Exploits in On-Chain Smart Contracts via Feedback-Driven Fuzzing and Differential Analysis

    Article • September 2024, ACM (Association for Computing Machinery)

    Yuhong Nan

  5. FunFuzz: A Function-oriented Fuzzer for Smart Contract Vulnerability Detection with High Effectiveness and Efficiency

    Article • ACM Transactions on Software Engineering and Methodology, June 2024, ACM (Association for Computing Machinery)

    Shuo Yang, Yuhong Nan

  6. PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts

    Article • April 2024, ACM (Association for Computing Machinery)

    Yuhong Nan

  7. Understanding Dark UI Patterns in the Mobile Ecosystem: A Case Study of Apps in China

    Article • November 2023, ACM (Association for Computing Machinery)

    Yuhong Nan, Jiangrong Wu

  8. SmartCoCo: Checking Comment-Code Inconsistency in Smart Contracts via Constraint Propagation and Binding

    Article • September 2023, Institute of Electrical & Electronics Engineers (IEEE)

    Yuhong Nan

  9. SmartState: Detecting State-Reverting Vulnerabilities in Smart Contracts via Fine-Grained State-Dependency Analysis

    Article • July 2023, ACM (Association for Computing Machinery)

    Yuhong Nan

  10. Detecting cross-contract vulnerability through static analysis at the bytecode level

    Article • July 2022, ACM (Association for Computing Machinery)

    Yuhong Nan

  11. On the Insecurity of SMS One-Time Password Messages against Local Attackers in Modern Mobile Devices

    Article • January 2021, Internet Society

    Yuhong Nan