Getting started with program analysis in Datalog by building a simple backwards symbolic execution engine in DDlog & Rust.

A critique on how we evaluate fuzzer and a proposal for a better metric.

Aurora automatically identifies the root cause of bugs found via fuzzing. Published at USENIX Security 2020

A bounded model checker for smart contracts, that can steal money. Published at USENIX Security 2020

Allows the user to guide the fuzzer through the state space of the target program. Published at Oakland S&P 2020

Understanding Incorrectness Logic for program analysis with lots of examples.

Release of Nautilus 2.0 with many new features

Talking about our research on fuzzing and future research areas.