About Me

I am Yanzhong (h1k0) Wang, a fourth-year PhD student at the University of Chinese Academy of Sciences (UCAS). Before 2024, my advisor was Prof. Wei Zou. Currently, my advisor is Prof. Kai Chen, and I also actively collaborate with Prof. Ruigang Liang. Previously, I earned my B.Eng from Beihang University (BUAA).

My research is in the area of software and system security, particularly leveraging automated program analysis and testing techniques (including decompilation, taint analysis, and fuzzing) to address real-world software security problems and tackle labor-intensive tasks while reducing dependence on expert experience. In recent years, I have been particularly interested in security issues in binary programs and firmware.

Additionally, I am committed to addressing the following challenges:

1. Leveraging AI to overcome traditional program analysis bottlenecks: Traditional program analysis techniques are sound but limited by inherent rules and patterns, constraining their scalability. I hope to leverage AI techniques to enhance the scalability of program analysis while maintaining its soundness.
2. Building fuzzing drivers for real-world complex software: Many real-world software systems (such as automotive and smart devices) remain inadequately tested due to architectural constraints. I hope to leverage various static/dynamic analysis and AI techniques to build testing drivers for such software to discover security vulnerabilities.

Beyond academia, I was an active capture-the-flag (CTF) player in NeSE team. I enjoy pwn and reversing challenges (I highly recommend pwn.college), and I am also interested in bug hunting and mobile security. Additionally, I contribute to open-source security projects such as Ghidra and LibAFL.

Publications

1. TypeForge: Synthesizing and Selecting Best-Fit Composite Data Types for Stripped Binaries
   Yanzhong Wang, Ruigang Liang, Yilin Li, Peiwei Hu, Kai Chen, Bolun Zhang
   46th IEEE Symposium on Security and Privacy (S&P 2025)
   San Francisco, CA, May 2025
   [code] [paper]

Projects

1. TypeForge | Type Inference, Decompilation, Ghidra
   • An efficient and precise tool for recovering composite data types (Structure, Union, …) in stripped binaries.
   • Implemented as a headless Ghidra extension, developed in the Java language.
2. Intro-to-Program | Compilation, Linking, Execution, Debugging, Education
   • Lab materials for UCAS postgraduate course Principles of Software Security, covering foundational topics in software security, including program generation, execution, and debugging.
3. PoSS2P | Platform, Docker, Education
   • An online lab platform for UCAS postgraduate course Principles of Software Security, allowing students to create, access, and manage integrated lab environments with remote desktop and online VSCode editor via a browser to complete course labs.
   • It has served hundreds of UCAS graduate students and is developed based on dojo.

Experiences & Awards

• 2023 Datacon Excellence Team Award (Team Leader) – Vulnerability Discovery Track
• From 2022 to 2024, I actively participated in CTF competitions, with awards including: N1CTF 2023 1st, Aliyun CTF 2023 2nd, HITCON CTF 2022 3rd, Real World CTF 5th, and others.

Services

• External reviewer in ACM Conference on Computer and Communications Security (CCS), 2025
• External reviewer in International Conference on Information Security and Cryptology (Inscrypt), 2025

Teaching

• Fall 2022 : Principles of Software Security (Prof. Wei Zou), Teaching Assistant
• Fall 2023 : Principles of Software Security (Prof. Wei Zou), Teaching Assistant

Contact

• Email: wangyanzhong [AT] iie.ac.cn
• Github: https://github.com/noobone123