I have gained a wealth of knowledge at conferences listening to remarkable security researchers and am passionately committed to sharing my own lessons and discoveries at public forums.

2024

  • ShmooCon (Washington, DC) - Fuzzing at Mach Speed: Uncovering IPC Vulnerabilities on MacOS [Abstract] [Slides]
  • Nullcon (Berlin, Germany) - Fuzzing at Mach Speed: Uncovering IPC Vulnerabilities on MacOS [Abstract] [Slides]
  • CanSecWest (Vancouver, Canada) - Fuzzing at Mach Speed: Uncovering IPC Vulnerabilities on MacOS/iOS [Abstract] [Slides]

2022

  • BlackHat USA Arsenal (Las Vegas, NV) - Route Sixty-Sink: Connecting Application Inputs to Sinks Using Static Analysis [Abstract]
  • TROOPERS (Heidelberg, Germany) - Route Sixty-Sink: Connecting Application Inputs to Sinks Using Static Analysis [Abstract]
  • Nullcon (Berlin, Germany) - Careful Who You Trust: Compromising P2P Cameras at Scale [Abstract] [Recording] [Slides]
  • Qualcomm Product Security Summit (La Jolla, CA) - Careful Who You Trust: Compromising P2P Cameras at Scale

2021

  • Mandiant Cyber Defense Summit (Washington, DC) - Leveraging P2P Protocol Vulnerabilities to Remotely Compromise IoT Devices

2019

  • IEEE Symposium on Security and Privacy (San Francisco, CA) - Fidelius: Protecting User Secrets from Compromised Browsers [Abstract] [Paper]