Blog posts

2024

security

less than 1 minute read

Published:

At the beginning of my PhD I at first became interested in the broader area of cybersecurity, but my current line of research really got me into the area of systems security. In particular improving the cyber-resilience and availability low-level systems software against memory corruption attacks. This has required me to develop skills, such as in-depth knowledge of the C and Rust runtimes, as well as assembly programming.

crowdstrike

1 minute read

Published:

The CrowdStrike outage shows that improving software resilience and availability is as important as detecting and mitigating memory-safety vulnerabilities.

LLVM

1 minute read

Published:

I have been learning LLVM for a while; I added a function and variable attribute, new compiler options, wrote a hacky LLVM transformation pass, and deleted my hacky stuff in the backend! I kind of enjoyed it, kind of annoyed; in the end, I think it was good to learn!

Bluspec

less than 1 minute read

Published:

To install the BSC compiler, follow these steps (example for Ubuntu):

Example for Ubuntu

wget https://github.com/B-Lang-org/bsc/releases/download/2023.07/bsc-2023.07-ubuntu-22.04.tar.gz 
cd ~/cheri/bsc-2023.07-debian-12.1 
export PATH="$PATH:/home/cheri/bsc-2023.07-ubuntu-22.04/bin/

It’s likely that you will also need the Bluespec library. It took me a long time to understand what was missing. You need to install this library from the following repository:

https://github.com/B-Lang-org/bsc-contrib/tree/main

CHERI

less than 1 minute read

Published:

Adversarial Examples: A great starting point! These exercises will introduce you to the concept of capabilities and how they can be used to protect against various security threats.

2023

RUST

less than 1 minute read

Published:

I worked on macro expansion on Rust for that project: https://arxiv.org/pdf/2306.08127

2022

GDB

3 minute read

Published:

I am studying on low-level security.