Starting December 2025, I will be a tenure-track faculty at CISPA Helmholtz Center for Information Security (and I'm hiring students / PhD students / postdocs - drop me an email!). Currently, I'm a postdoctoral researcher in the SEFCOM lab at Arizona State University (ASU), working with Tiffany Bao as well as Adam Doupé, Yan Shoshitaishvili, and Ruoyu (Fish) Wang. I've completed my PhD in May 2024 at Ruhr University Bochum, supervised by Thorsten Holz.

Broadly speaking, I'm doing software security and my research interests center around automating the pipeline of finding bugs in programs, understanding them, and acting upon them (either exploiting or patching them). Currently, I spend most of my time on improving fuzzing, such that we can find more bugs in less time.

Beyond working with bugs, I'm interested in all sorts of program analysis problems. One example is (de-)obfuscation, with a focus on automated deobfuscation attacks and how to break them. I also enjoy the meta-science of what makes computer security research science and how to ensure our foremost empirical evaluations are meaningful, robust, and reproducible.

I like sharing our research and have spoken at various conferences, for example, at REcon Montreal together with Tim Blazytko about the future of VM-based obfuscation.

To help secure space systems, I'm the vice chair of the integration subgroup in the IEEE SA - P3349 - Standard for Space System Cybersecurity (S2CY). Our subgroup's goal is to facilitate secure interaction between segments (for example, a satellite and a ground station) and ensure proper testing.

For questions, discussion or collaboration, feel free to reach out via Twitter or email.