Publications
Published research papers on software security and engineering in prestigious conferences and journals including
USENIX Security (2021, 2022, 2023), ICSE (2021, 2024), S&P (2017), ACSAC (2021), DSN (2021, 2022), ESORICS (2024), and IEEE ACCESS (2022, 2023).
: Top-tier conferences
2024
-
A Large-Scale Analysis of the Effectiveness of Publicly Reported Security Patches
Seunghoon Woo, Eunjin Choi, Heejo Lee
Computers & Security (2024, IF:4.8) -
BLOOMFUZZ: Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines
Pyeongju Ahn, Yeonseok Jang, Seunghoon Woo*, Heejo Lee* (* Co-corresponding authors)
29th European Symposium on Research in Computer Security (ESORICS 2024)
[paper] [slide] [code] -
CNEPS: A Precise Approach for Examining Dependencies among Third-Party C/C++ Open-Source Components
Yoonjong Na, Seunghoon Woo*, Joomyeong Lee, Heejo Lee* (* Co-corresponding authors)
46th International Conference on Software Engineering (ICSE 2024)
[paper] [slide] [code] [article1] [article2]
2023
-
V1SCAN: Discovering 1-day Vulnerabilities in Reused C/C++ Open-source Software Components Using Code Classification Techniques
Seunghoon Woo, Eunjin Choi, Heejo Lee, Hakjoo Oh
32nd USENIX Security Symposium (Security 2023)
[paper] [slide] [code] [article1] -
ZMAD: Lightweight Model-based Anomaly Detection for the Structured Z-Wave Protocol
Carlos Nkuba Kayembe, Seunghoon Woo, Heejo Lee, Sven Dietrich
IEEE ACCESS (2023, IF:3.476)
[paper]
Before 2023
-
MOVERY: A Precise Approach for Modified Vulnerable Code Clone Discovery from Modified Open-Source Software Components
Seunghoon Woo, Hyunji Hong, Eunjin Choi, Heejo Lee
31st USENIX Security Symposium (Security 2022)
[paper] [slide] [code] [article1] [article2] -
L2Fuzz: Discovering Bluetooth L2CAP Vulnerabilities Using Stateful Fuzz Testing
Haram Park, Carlos Nkuba Kayembe, Seunghoon Woo, Heejo Lee
52nd IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2022)
[paper] [slide] [code] -
CIRCUIT: A JavaScript Memory Heap-Based Approach for Precisely Detecting Cryptojacking Websites
Seunghoon Woo*, Hyunji Hong*, Sunghan Park*, Jeongwook Lee, Heejo Lee (* contributed equally)
IEEE ACCESS (2022, IF:3.476)
[paper] -
xVDB: A High-Coverage Approach for Constructing a Vulnerability Database
Hyunji Hong, Seunghoon Woo, Eunjin Choi, Jihyun Choi, Heejo Lee
IEEE ACCESS (2022, IF:3.476)
[paper] -
DICOS: Discovering Insecure Code Snippets from Stack Overflow Posts by Leveraging User Discussions
Hyunji Hong, Seunghoon Woo, Heejo Lee
Annual Computer Security Applications Conference (ACSAC 2021)
[paper] [slide] [code] -
V0Finder: Discovering the Correct Origin of Publicly Reported Software Vulnerabilities
Seunghoon Woo, Dongwook Lee, Sunghan Park, Heejo Lee, Sven Dietrich
30th USENIX Security Symposium (Security 2021)
[paper] [slide] [code] [article1] [article2] -
OctoPoCs: Automatic Verification of Propagated Vulnerable Code Using Reformed Proofs of Concept
Seongkyeong Kwon, Seunghoon Woo, Gangmo Seong, Heejo Lee
51st IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2021)
[paper] [slide] [code] -
CENTRIS: A Precise and Scalable Approach for Identifying Modified Open-Source Software Reuse
Seunghoon Woo, Sunghan Park, Seulbae Kim, Heejo Lee, Hakjoo Oh
43rd International Conference on Software Engineering (ICSE 2021)
[paper] [slide] [code] [article1] [article2] -
Poster: IoTcube: an automated analysis platform for finding security vulnerabilities
Seulbae Kim, Seunghoon Woo, Heejo Lee, Hakjoo Oh
38th IEEE Symposium on Poster presented at Security and Privacy (S&P Poster 2017)
[paper] -
VUDDY: A Scalable Approach for Vulnerable Code Clone Discovery
Seulbae Kim, Seunghoon Woo, Heejo Lee, Hakjoo Oh
38th IEEE Symposium on Security and Privacy (S&P 2017)
[paper] [slide] [code] [article1] [article2]