Hacking Lab

We are building systems for security and studying security for systems!

If you are interested in hacking with us, feel free to fill this form!

News

  • [08/21/2025] Two papers got accepted to CCS ‘25
  • [08/09/2025] Team Atlanta wins AIxCC!
  • [05/30/2025] LLFuzz is accepted to USENIX Security ‘25!
  • [04/28/2025] FirmState is accepted to WiSec ‘25!
  • [03/31/2025] CPMM-Exploiter is accepted to ISSTA ‘25!
  • [12/30/2024] Security analysis of mandatory security software in South Korea is accepted to USENIX Security ‘25!
  • [12/19/2024] FIBLE is accepted to OOPSLA ‘25!
  • [09/10/2024] RGFuzz is accepted to IEEE S&P ‘25!
  • [08/11/2024] Team Atlanta proceeds to the AIxCC final!
  • [03/22/2024] Seunghyun won Pwn2Own 2024 by exploiting Google Chrome and Microsoft Edge ($145K)!
  • [01/25/2024] $10K Bug Bounty from Google v8CTF (V8/CVE-2023-6702).
  • [10/25/2023] We got 2nd place in cyber security challenge 2023!
  • [10/04/2023] $67K Bug Bounty from Google kernelCTF (Linux/CVE-2023-3390).
  • [07/17/2023] QSYM got a Frontiers of Science Award from ICSB!
  • [06/06/2023] BaseComp is accepted to Usenix Security'23!
  • [01/19/2023] $7K Bug Bounty from Google (V8/CVE-2023-0696).
  • [11/11/2022] QueryX is accepted to IEEE S&P'23!
  • [11/04/2022] ScaleTrust is accepted to ToN'22!
  • [06/11/2022] FuzzCoin is accepted to RAID'22!
  • [09/04/2021] DoLTEst is conditionally accepted to Usenix Security'22!
  • [07/21/2021] HardsHeap is conditionally accepted to CCS'21!

Recent Publications

Jihee Park, Insu Yun, Sukyoung Ryu (2025). Bridging the Gap between Real-World and Formal Binary Lifting through Filtered-Simulation (to appear). Proceedings of the ACM SIGPLAN International Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA) 2025.

Dongok Kim, Juhyun Song, Insu Yun (2025). CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Dong-uk Kim, JunYoung Park, Sanghak Oh, Hyoungshick Kim, Insu Yun (2025). Windows plays Jenga: Uncovering Design Weaknesses in Windows File System Security (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Taesoo Kim, HyungSeok Han, Soyeon Park, Dae R. Jeong, Dohyeok Kim, Dongkwan Kim, Eunsoo Kim, Jiho Kim, Joshua Wang, Kangsu Kim, Sangwoo Ji, Woosun Song, Hanqing Zhao, Andrew Chin, Gyejin Lee, Kevin Stevens, Mansour Alharthi, Yizhuo Zhai, Cen Zhang, Joonun Jang, Yeongjin Jang, Ammar Askar, Dongju Kim, Fabian Fleischer, Jeongin Cho, Junsik Kim, Kyungjoon Ko, Insu Yun, Sangdon Park, Dowoo Baik, Haein Lee, Hyeon Heo, Minjae Gwon, Minjae Lee, Minwoo Baek, Seunggi Min, Wonyoung Kim, Yonghwi Jin, Younggi Park, Yunjae Choi, Jinho Jung, Gwanhyun Lee, Junyoung Jang, Kyuheon Kim, Yeonghyeon Cha, Youngjoon Kim (2025). ATLANTIS: AI-driven Threat Localization, Analysis, and Triage Intelligence System.

PDF

Tuan Dinh Hoang, Taekkyung Oh, CheolJun Park, Insu Yun, Yongdae Kim (2025). LLFuzz: An Over-the-Air Dynamic Testing Framework for Cellular Baseband Lower Layers. Proceedings of the 34th USENIX Security Symposium (Security).

Slides Paper

See all publications

Contact