about

hi! I’m a phd student researching systems security. I’m currently captain of Shellphish, a hacking team who I play ctfs with. I mostly focus on ctf challenges related to binary/systems exploitation. I’m hoping to use this blog for ctf writeups, side-projects, deconstructing cool research, and whatever else I happen to feel like writing about.

cool stuff I’ve done

2025: 11th Place at DEF CON 33 CTF as Shellphish

2025: 5th Place in AIxCC Finals as Shellphish

2024: Qualified for AIxCC Finals Event as Shellphish

2023: Partial Win at Pwn2Own Toronto 2023, Targeted Wyze Cam v3 as SEFCOM T0

2023: 10th Place at DEF CON 31 CTF as Shellphish

2022: 13th Place in DEF CON 30 CTF as Shellphish

publications

System Register Hijacking: Compromising Kernel Integrity By Turning System Registers Against the System

Jennifer Miller, Manas Ghandat, Kyle Zeng, Hongkai Chen, Abdelouahab (Habs) Benchikh, Tiffany Bao, Ruoyu Wang, Adam Doupé, and Yan Shoshitaishvili, Arizona State University
USENIX Security 2025

Operation Mango: Scalable Discovery of Taint-Style Vulnerabilities in Binary Firmware Services

Wil Gibbs, Arvind S Raj, Jayakrishna Menon Vadayath, Hui Jun Tay, Jennifer Miller, Akshay Ajayan, Zion Leonahenahe Basque, Audrey Dutcher, and Fangzhou Dong, Arizona State University; Xavier Maso, unaffiliated; Giovanni Vigna and Christopher Kruegel, UC Santa Barbara; Adam Doupé, Yan Shoshitaishvili, and Ruoyu Wang, Arizona State University
USENIX Security 2024