Hacking Lab
We are building systems for security and studying security for systems!
If you are interested in hacking with us, feel free to fill this form!
News
- [03/31/2025] CPMM-Exploiter is accepted to ISSTA ‘25!
- [12/19/2024] FIBLE is accepted to OOPSLA ‘25!
- [09/10/2024] RGFuzz is accepted to IEEE S&P ‘25!
- [08/11/2024] Team Atlanta proceeds to the AIxCC final!
- [03/22/2024] Seunghyun won Pwn2Own 2024 by exploiting Google Chrome and Microsoft Edge ($145K)!
- [01/25/2024] $10K Bug Bounty from Google v8CTF (V8/CVE-2023-6702).
- [10/25/2023] We got 2nd place in cyber security challenge 2023!
- [10/04/2023] $67K Bug Bounty from Google kernelCTF (Linux/CVE-2023-3390).
- [07/17/2023] QSYM got a Frontiers of Science Award from ICSB!
- [06/06/2023] BaseComp is accepted to Usenix Security'23!
- [01/19/2023] $7K Bug Bounty from Google (V8/CVE-2023-0696).
- [11/11/2022] QueryX is accepted to IEEE S&P'23!
- [11/04/2022] ScaleTrust is accepted to ToN'22!
- [06/11/2022] FuzzCoin is accepted to RAID'22!
- [09/04/2021] DoLTEst is conditionally accepted to Usenix Security'22!
- [07/21/2021] HardsHeap is conditionally accepted to CCS'21!
Recent Publications
(2025).
Bridging the Gap between Real-World and Formal Binary Lifting through Filtered-Simulation (to appear).
Proceedings of the ACM SIGPLAN International Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA) 2025.
(2025).
Automated Attack Synthesis for Constant Product Market Makers (to appear).
Proceedings of the ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA) 2025.
(2025).
RGFuzz: Rule-Guided Fuzzer for WebAssembly Runtimes (to appear).
Proceedings of the 46th IEEE Symposium on Security and Privacy (Oakland).
(2024).
From the Vulnerability to the Victory: A Chrome Renderer 1-Day Exploit’s Journey to v8CTF Glory.
TyphoonCon 2024.
Contact
- hacking-lab@hacking.kaist.ac.kr
- Room 819, N1, Korea Advanced Institute of Science and Technology (KAIST), Daejeon, South Korea
- kaist-hacking