Current researches

• V0Finder: Discovering the Correct Origin of Publicly Reported Software Vulnerabilities
• Dicos: Discovering Insecure Code Snippets from Stack Overflow Posts by Leveraging User Discussions
• QuickBCC: Quick and Scalable Binary Vulnerable Code Clone Detection
• OCTOPOCS: Automatic Verification of Propagated Vulnerable Code Using Reformed Proofs of Concept
• CENTRIS: A Precise and Scalable Approach for Identifying Modified Open-Source Software Reuse
• Riding the IoT Wave with VFuzz: Discovering Security Flaws in Smart Homes

Past researches

• SMATT: Smart Meter ATTestation Using Multiple Target Selection and Copy-proof Memory
• Cyber Weather Forecasting: Forecasting Unknown Internet Worms Using Randomness Analysis
• Online Detection of Fake Access Points using Received Signal Strengths
• Identifying botnets by capturing group activities in DNS traffic
• Detection of Cache Pollution Attacks Using Randomness Checks
• Carving Secure Wi-Fi Zones with Defensive Jamming
• PFS: Probabilistic Filter Scheduling Against Distributed Denial-of-Service Attacks
• Modeling and simulation of cyber attack/defence
• Dynamic Content Right Protection(DCRP) System
• Secure, EAsy Authentication Using Features in Images (SEa AUF Images)
• PROBE: A Process Behavior-based Host Intrusion Prevention System
• Defending VoIP Services against Malformed Messages and Flooding Attacks
• Slashbot: Providing statistics of bots
• BASE: an incrementally deployable mechanism for viable IP spoofing prevention
• ADUR: Anomaly Detection Using Randomness
• PCAV: Attack visualization using parallel coordinate
• SAS: Secure Automatic Sign-in
• OTL: One Touch Login