Hacking Lab

We are building systems for security and studying security for systems!

If you are interested in hacking with us, feel free to fill this form!

News

  • [08/21/2025] Two papers got accepted to CCS ‘25
  • [08/09/2025] Team Atlanta wins AIxCC!
  • [05/30/2025] LLFuzz is accepted to USENIX Security ‘25!
  • [04/28/2025] FirmState is accepted to WiSec ‘25!
  • [03/31/2025] CPMM-Exploiter is accepted to ISSTA ‘25!
  • [12/30/2024] Security analysis of mandatory security software in South Korea is accepted to USENIX Security ‘25!
  • [12/19/2024] FIBLE is accepted to OOPSLA ‘25!
  • [09/10/2024] RGFuzz is accepted to IEEE S&P ‘25!
  • [08/11/2024] Team Atlanta proceeds to the AIxCC final!
  • [03/22/2024] Seunghyun won Pwn2Own 2024 by exploiting Google Chrome and Microsoft Edge ($145K)!
  • [01/25/2024] $10K Bug Bounty from Google v8CTF (V8/CVE-2023-6702).
  • [10/25/2023] We got 2nd place in cyber security challenge 2023!
  • [10/04/2023] $67K Bug Bounty from Google kernelCTF (Linux/CVE-2023-3390).
  • [07/17/2023] QSYM got a Frontiers of Science Award from ICSB!
  • [06/06/2023] BaseComp is accepted to Usenix Security'23!
  • [01/19/2023] $7K Bug Bounty from Google (V8/CVE-2023-0696).
  • [11/11/2022] QueryX is accepted to IEEE S&P'23!
  • [11/04/2022] ScaleTrust is accepted to ToN'22!
  • [06/11/2022] FuzzCoin is accepted to RAID'22!
  • [09/04/2021] DoLTEst is conditionally accepted to Usenix Security'22!
  • [07/21/2021] HardsHeap is conditionally accepted to CCS'21!

Recent Publications

Jihee Park, Insu Yun, Sukyoung Ryu (2025). Bridging the Gap between Real-World and Formal Binary Lifting through Filtered-Simulation (to appear). Proceedings of the ACM SIGPLAN International Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA) 2025.

Dongok Kim, Juhyun Song, Insu Yun (2025). CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Dong-uk Kim, JunYoung Park, Sanghak Oh, Hyoungshick Kim, Insu Yun (2025). Windows plays Jenga: Uncovering Design Weaknesses in Windows File System Security (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Tuan Dinh Hoang, Taekkyung Oh, CheolJun Park, Insu Yun, Yongdae Kim (2025). LLFuzz: An Over-the-Air Dynamic Testing Framework for Cellular Baseband Lower Layers (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

Taisic Yun, Suhwan Jeong, Yonghwa Lee, Seungjoo Kim, Hyoungshick Kim, Insu Yun, Yongdae Kim (2025). Too Much of a Good Thing: (In-)Security of Mandatory Security Software for Financial Services in South Korea (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

See all publications

Contact