About Me

I am Yanzhong (h1k0) Wang, a fourth-year PhD student at the University of Chinese Academy of Sciences (UCAS). Before 2024, my advisor was Prof. Wei Zou. Currently, my advisor is Prof. Kai Chen, and I also actively collaborate with Prof. Ruigang Liang. Previously, I earned my B.Eng from Beihang University (BUAA).

My research is in the area of software and system security, particularly leveraging automated program analysis and testing techniques to address real-world software security problems and tackle labor-intensive tasks while reducing dependence on expert experience. In recent years, I have been particularly interested in security issues in binary programs and firmware.

Additionally, I am committed to addressing the following challenges:

1. Leveraging AI to overcome traditional program analysis bottlenecks: Traditional program analysis techniques are sound but limited by inherent rules and patterns, constraining their scalability. I hope to leverage AI techniques to enhance the scalability of program analysis while maintaining its soundness.
2. Building fuzzing drivers for real-world complex software: Many real-world software systems (such as automotive and smart devices) remain inadequately tested due to architectural constraints. I hope to leverage various static/dynamic analysis and AI techniques to build testing drivers for such software to discover security vulnerabilities.

Beyond academia, I was an active capture-the-flag (CTF) player in NeSE team. I enjoy pwn and reversing challenges (I highly recommend pwn.college), and I am also interested in bug hunting and mobile security. Additionally, I contribute to open-source security projects such as Ghidra and LibAFL.

Publications

1. TypeForge: Synthesizing and Selecting Best-Fit Composite Data Types for Stripped Binaries
   Yanzhong Wang, Ruigang Liang, Yilin Li, Peiwei Hu, Kai Chen, Bolun Zhang
   46th IEEE Symposium on Security and Privacy (S&P 2025)
   San Francisco, CA, May 2025
   [code] [paper]

Projects

1. TypeForge | Type Inference, Decompilation, Ghidra
   • An efficient and precise tool for recovering composite data types (Structure, Union, …) in stripped binaries.
   • Implemented as a headless Ghidra extension, developed in the Java language.
2. Intro-to-Program | Compilation, Linking, Execution, Debugging, Education
   • Lab materials for UCAS postgraduate course Principles of Software Security, covering foundational topics in software security, including program generation, execution, and debugging.
3. PoSS2P | Platform, Docker, Education
   • An online lab platform for UCAS postgraduate course Principles of Software Security, allowing students to create, access, and manage integrated lab environments with remote desktop and online VSCode editor via a browser to complete course labs.
   • It has served hundreds of UCAS graduate students and is developed based on dojo.

Experiences & Awards

• 2023 Datacon Excellence Team Award (Team Leader) – Vulnerability Discovery Track
• From 2022 to 2024, I actively participated in CTF competitions, with awards including: N1CTF 2023 1st, Aliyun CTF 2023 2nd, HITCON CTF 2022 3rd, Real World CTF 5th, and others.

Services

• Reviewer in ACM Transactions on Privacy and Security, 2025
• External reviewer in ACM Conference on Computer and Communications Security (CCS), 2025
• External reviewer in International Conference on Information Security and Cryptology (Inscrypt), 2025

Teaching

• Fall 2022 : Principles of Software Security (Prof. Wei Zou), Teaching Assistant
• Fall 2023 : Principles of Software Security (Prof. Wei Zou), Teaching Assistant

Contact

• Email: wangyanzhong [AT] iie.ac.cn
• Github: https://github.com/noobone123