Penghui Li
 |
Penghui Li |
About Me
I am a final-year Ph.D. candidate at Department of Computer Science and Engineering, The Chinese University of Hong Kong. I conduct research to understand, detect, and validate vulnerabilities with automated and scalable approaches. Recently, I focus on fuzz testing, symbolic execution and their co-design.
I am fortunate to be supervised by Prof. Wei Meng at CUHK. Prior that, I received my bachelor's degree from University of Chinese Academy of Sciences in 2019. I also had fruitful internship experience working with Prof. Chao Zhang in Tsinghua University and Prof. Kai Chen in Chinese Academy of Sciences.
Publications
SEDiff: Scope-Aware Differential Fuzzing to Test Internal Function Models in Symbolic Execution
Penghui Li, Wei Meng, Kangjie Lu
In Proceedings of The 30th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE), Research Track, November 2022
TChecker: Precise Static Inter-Procedural Analysis for Detecting Taint-Style Vulnerabilities in PHP Applications
Changhua Luo, Penghui Li, Wei Meng
In Proceedings of The 29th ACM Conference on Computer and Communications Security (CCS), Web Security Track, November 2022
Understanding and Detecting Performance Bugs in Markdown Compilers
Penghui Li, Yinxi Liu, Wei Meng
In Proceedings of The 36th IEEE/ACM International Conference on Automated Software Engineering (ASE), Research Track, November 2021
LChecker: Detecting Loose Comparison Bugs in PHP
Penghui Li, Wei Meng
In Proceedings of The Web Conference 2021 (WWW), Security Track, April 2021
On the Feasibility of Automated Built-in Function Modeling for PHP Symbolic Execution
Penghui Li, Wei Meng, Kangjie Lu, Changhua Luo
In Proceedings of The Web Conference 2021 (WWW), Security Track, April 2021