> whoami

I defended my PhD (August 2024) in the Department of Electrical and Computer Engineering (ECE) at the University of Maryland in College Park, advised by Prof. Tudor DumitraČ™ and Prof. Yonghwi Kwon. Earlier that same year I got Masters(MSc diploma) in Electrical Engineering (ECE). I received my B.S. in Computer Science(CS) from Bilkent University, in 2018.

> ./contact_info

> ./research_interests

My broad research interests cover data-driven malware analysis and automatic exploit generation. I'm currently more focused in automatic exploit generation for the Linux kernel. Specifically, in my recent PhD work I have developed a tool (called SCAVY ) to automatically find kernel objects that when overwritten by memory corruptions bugs can reach privilege escalation. My participation in various CTF competitions and my internship work at Meta have been major influences in this new research direction.

> ./awards

  • I have been awarded the Clark Doctoral Fellowship(2018) which includes and $2000 of travel grant for 4 years, along with guaranteed GRA/GTA for 4 years.
  • I have been awarded $1000 for getting first place in CSAW 2021 Advanced Research Competition.
  • I have been awarded the full registration cost to present our paper SCAVY in USENIX Security 2024. Check my takeaways from the conference in my blog post here here!

> ./featured_publications

  • SCAVY: Automating the discovery of Linux kernel privilege escalation primitives - USENIX 2024
  • When Malware Changed Its Mind: An Empirical Study of Variable Program Behaviors in the Real World [link] - USENIX 2021

> ./talks

  • When malware changed it's mind[...] [link] - Usenix 2021
  • When malware changed it's mind[...] [link] - vblocalhost 2021

> ./professional_services

  • Reviewer
    • Computer Science Review (link) [2022]
  • Artifact Evaluation Comitee
    • USENIX Security Symposium (Usenix) [2021, 2022, 2023, 2024]
    • PETS Accepted papers (PoPETS) [2021, 2022]
  • External Reviewer
    • IEEE Security and Privacy (S & P) [2022,2023]
    • ACM Conference on Computer and Communications Security (CCS) [2018, 2019]
    • Network and Distributed System Security Symposium (NDSS) [2019, 2020]
    • USENIX Security Symposium (USENIX) [2018, 2019, 2024]
    • International Symposium on Research in Attacks, Intrusions and Defenses (RAID) [2018, 2019]
    • ACM Conference on Computer and Communications Security (CCS) [2018, 2019]