Academics
A summary of my academic endeavours.
Publications
Conferences
-
Make out like a (Multi-Armed) Bandit: Improving the Odds of Fuzzer Seed Scheduling with T-Scheduler. Simon Luo, Adrian Herrera, Paul Quirk, Michael Chase, Damith C. Ranasinghe, and Salil S. Kanhere. Asia Computer and Communications Security (AsiaCCS), 2024.
-
Evocatio: Conjuring Bug Capabilities from a Single PoC. Zhiyuan Jiang, Shuitao Gan, Adrian Herrera, Flavio Toffalini, Lucio Romerio, Chaojing Tang, Manuel Egele, Chao Zhang, and Mathias Payer. Computer and Communications Security (CCS), 2022.
-
Seed Selection for Successful Fuzzing. Adrian Herrera, Hendra Gunadi, Shane Magrath, Michael Norrish, Mathias Payer, and Antony L. Hosking. International Symposium on Software Testing and Analysis (ISSTA), 2021.
-
Magma: A Ground-Truth Fuzzing Benchmark. Ahmad Hazimeh, Adrian Herrera, and Mathias Payer. SIGMETRICS, 2021.
-
JMD: A Hybrid Approach for Detecting Java Malware. Adrian Herrera and Ben Cheney. Australiasian Information Security Conference (AISC), 2015.
-
A Key Distribution Protocol for Wireless Sensor Networks. Adrian Herrera and Wen Hu. Local Computer Networks (LCN), 2012.
Workshops
-
Registered Report: datAFLow - Towards a Data-Flow-Guided Fuzzer. Adrian Herrera, Mathias Payer, and Antony L. Hosking. International Fuzzing Workshop (FUZZING), 2022.
-
Optimizing Away JavaScript Obfuscation. Adrian Herrera. Source Code Analysis and Manipulation (SCAM), 2020.
Journals
-
datAFLow: Toward a Data-Flow-Guided Fuzzer. Adrian Herrera, Mathias Payer, and Antony L. Hosking. Transactions on Software Engineering Methodologies (TOSEM), 2023.
-
Discover deeper bugs with dynamic symbolic execution and coverage-based fuzz testing. Bin Zhang, Chao Feng, Adrian Herrera, Vitaly Chipounov, George Candea, and Chaojing Tang. IET Software, 2018.
Theses
- State Space Search in Fuzzing. Adrian Herrera. PhD thesis, 2024.
Technical Reports
- How Secure is the Next-Generation Internet? An Examination of IPv6. Adrian Herrera. Defence Science and Technology Group (DSTG) Technical Report, 2012.
Service
- Artifact evaluation committee, Workshop on Offensive Technologies (WOOT), 2023, 2024.
- Technical reviewer, Fuzzing Against the Machine: Automated vulnerability research with emulated IoT devices on Qemu, 2022.
- Artifact evaluation committee, International Fuzzing Workshop (FUZZING), 2022.
- Organizing committee, CSIRO’s Data61 & DSTG Cyber Security Summer School (CSSS), 2022.
- Organizing committee, International Summer School on Information Security and Protection (ISSIP), 2018.