wcventure

Shenzhen University


Pseudonym : wcventure
Name : Cheng Wen
Institution : College of Computer Science
and Software Engineering,
Shenzhen University
Email : wcventure@outlook.com
Skype : wcventure
Address : Shenzhen City, Guangdong Province,
China, 518060
Homepage : https://wcventure.github.io/
Github : https://github.com/wcventure
CSDN : https://blog.csdn.net/wcventure
Google Scholar : https://scholar.google.com/citations?hl=en&user=wcventure

  文成雕龙与天骄,
  心若白云常自在。
  雕陂之水清且泚,
  龙归洞府暮将雨!

  Cheng Wen
signature

About Me

Cheng Wen is a Ph.D. student at the College of Computer Science and Software engineering in Shenzhen University since 2019. Cheng Wen received his bachelor's degree and master's degree in Software Engineering from Shenzhen University in 2015 and 2018 respectively, supervised by Prof. Shengchao Qin and Dr. Zhiwu Xu. He also worked as a visiting researcher at the Cyber Security Lab in Nanyang Technological University Singapore from 2018 to 2019. Cheng Wen's research interest is in the area of Cyber Security (SEC), Programming Language (PL) and Software Engineering (SE). I aim to address SEC problems by developing PL and SE methods, or address PL and SE problems to support SEC analysis. More specifically, He focuses on the use of program analysis, testing and verification techniques for making software systems more secure and reliable. More information here.

Software Engineering
Testing & Verification
Machine Learning
Programming Language
Cyber Security
Formal method

  Education

  • ShenZhen University, ShenZhen, China

    • Ph.D in Computer science and technology
    • September 2019 – Now
    • Supervisor: Prof. Shengchao Qin

  • ShenZhen University, ShenZhen, China

  • ShenZhen University, ShenZhen, China

    • B.S. in Software Engineering
    • September 2011 – June 2015

  Work Experience

  • Huawei Technologies Co., Ltd, Dongguan, China

    • Attachment
    • September 2020 – March 2021
    • Duties included: Formal verification of Huawei's program.

  • Nanyang Technological University, Singapore

    • Visiting researcher
    • July 2018 – September 2019
    • Duties included: MemLock: Memory Usage Guided Fuzzing; Typestate-Guided Fuzzer for Discovering Use-after-Free Vulnerabilities.
    • Co-supervisor: Prof. Yang Liu

  • ShenZhen University, ShenZhen, China

    • Research Assistant
    • July 2018 – September 2019
    • Duties included: Type Learning for Binaries and its Applications; Extracting Automata from Neural Networks Using Active Learning.
    • Co-supervisor: Dr. Zhiwu Xu

  Pulications

  See also at Google Scholar and DBLP.

2021

  1. Zhiwu Xu, Cheng Wen, Shengchao Qin and Mengda He.
    Extracting automata from neural networks using active learning.
    PeerJ Computer Science. April 2021.
    PDF, BibTex, DOI

2020

  1. Cheng Wen, Haijun Wang, Yuekang Li, Shengchao Qin, Yang Liu, Zhiwu Xu, Hongxu Chen, Xiaofei Xie, Geguang Pu and Ting Liu.
    MemLock: Memory Usage Guided Fuzzing.
    IEEE/ACM 42nd International Conference on Software Engineering (ICSE). Seoul, South Korea, 5-11th July 2020.
    ICSE'20 Artifact Evaluation Committee awarded reusable badge and available badge for MemLock!
    Learn more at https://wcventure.github.io/MemLock/
    PDF, BibTex, DOI, Slides, DataSet, Video, Code
  2. Haijun Wang, Xiaofei Xie, Yi Li, Cheng Wen, Yang Liu, Shengchao Qin, Hongxu Chen and Yulei Sui.
    Typestate-Guided Fuzzer for Discovering Use-after-Free Vulnerabilities.
    IEEE/ACM 42nd International Conference on Software Engineering (ICSE). Seoul, South Korea, 5-11 July 2020.
    Learn more at https://sites.google.com/view/uafl/
    PDF, BibTex, DOI, Slides, DataSet, Video

2019

  1. Zhiwu Xu, Cheng Wen, and Shengchao Qin.
    Type Learning for Binaries and its Applications.
    IEEE Transactions on Reliability (Volume: 68:893-912, Issue:3, Sep 2019)
    PDF, BibTex, DOI, Slides, DataSet, Code

2018

  1. Zhiwu Xu, Xiongya Hu, Cheng Wen, and Shengchao Qin.
    Extracting Automata from Neural Networks Using Active Learning.
    National Conference on Formal Methods and Applications (FMAC). Chongqin, China. 3-4th Nov 2018.
    Best Paper Award
    PDF, BibTex, DOI
  2. Zhiwu Xu, Cheng Wen, and Shengchao Qin.
    State-taint analysis for detecting resource bugs.
    Science of Computer Programming. Elsevier, 162:93-109, 15th Sep 2018.
    PDF, BibTex, DOI

2017

  1. Zhiwu Xu, Cheng Wen, Shengchao Qin and Zhong Ming.
    Effective malware detection based on behaviour and data features.
    International Conference on Smart Computing and Communication (SmartCom). Springer, Cham, Shenzhen, China. 12-14th Dec 2017.
    Best Student Paper Award
    PDF, BibTex, DOI, Slides, Code
  2. Zhiwu Xu, Cheng Wen, and Shengchao Qin.
    Learning types for binaries.
    International Conference on Formal Engineering Methods (ICFEM). Springer, Cham, Xi'an, China. 13-17th Nov 2017.
    PDF, BibTex, DOI, Slides, DataSet, Code

  Misc

Advertisement: We have examined, comb, and summarized hundreds of recently published papers on fuzz testing located by perusing top-conference proceedings and other quality venues, which can be seen at: https://github.com/wcventure/FuzzingPaper. This web is only used for collecting and group related paper. If there are any paper need to be updated, you can contribute PR.

  • Website: Cheng Wen, To be continue, A Collection of Fuzzing Related Papers.
  • Video: Cheng Wen, 30/06/2020, ICSE2020-I22-TECH501-MemLock.
  • Artifact: Cheng Wen, 17/01/2020, The Artifact and Documentation of MemLock Fuzzer.
  • Website: Cheng Wen, 08/01/2020, The Official Website of MemLock Fuzzer.
  • Blog: Yuekang Li and Cheng Wen, To be continue, For A Better Understanding of AFL on Code Level.
  • Survey: Cheng Wen, Stop maintenance, A Quick Survey of Active Automata Learning.
  • Survey: Cheng Wen, 11/06/2018, A Summary of Static Analysis Rules in Java and C/C++.
  • Blog: Cheng Wen, 23/01/2018, A Brief Introduction of Angluins L* Algorithm.
  • Slides: Cheng Wen, 20/12/2017, Active Automata Learning Overview.
  •   Practical Security Impact

      I have found several security-critical vulnerabilities in widely used open-source projects and libraries, such as Bintuils, Elfutils, Libtiff, Binaryen, NASM, MJS, etc.

    CVEs List (64 CVEs)

    CVE ID Package Vulnerability Type CVE ID Package Vulnerability Type
    CVE-2020-36375 MJS 1.20.1 Stack Overflow CVE-2020-36374 MJS 1.20.1 Stack Overflow
    CVE-2020-36373 MJS 1.20.1 Stack Overflow CVE-2020-36372 MJS 1.20.1 Stack Overflow
    CVE-2020-36371 MJS 1.20.1 Stack Overflow CVE-2020-36370 MJS 1.20.1 Stack Overflow
    CVE-2020-36369 MJS 1.20.1 Stack Overflow CVE-2020-36368 MJS 1.20.1 Stack Overflow
    CVE-2020-36367 MJS 1.20.1 Stack Overflow CVE-2020-36366 MJS 1.20.1 Stack Overflow
    CVE-2020-18395 GNU Gama 2.04 NULL Pointer Dereference CVE-2020-18392 MJS 1.20.1 Stack Overflow
    CVE-2019-15140 ImageMagick 7.0.8-43 Use-after-free CVE-2019-11471 Libheif v1.4.0 Use-after-free
    CVE-2019-7704 Binaryen 1.38.22 Out of Memory CVE-2019-7703 Binaryen 1.38.22 Use-after-free
    CVE-2019-7702 Binaryen 1.38.22 NULL pointer dereference CVE-2019-7701 Binaryen 1.38.22 Heap Buffer Overflow
    CVE-2019-7700 Binaryen 1.38.22 Heap Buffer Overflow CVE-2019-7699 Bento4 v1.5.1-627 Heap Buffer Overflow
    CVE-2019-7698 Bento4 v1.5.1-627 Out of Memory CVE-2019-7697 Bento4 v1.5.1-627 Assertion failed
    CVE-2019-7665 Elfutils 0.175 Heap Buffer Overflow CVE-2019-7664 Elfutils 0.175 negative-size in memcpy
    CVE-2019-7663 Libtiff 4.0.10 Invalid Address Read CVE-2019-7662 Binaryen 1.38.22 Assertion failed
    CVE-2019-7154 Binaryen 1.38.22 Heap Buffer Overflow CVE-2019-7153 Binaryen 1.38.22 NULL pointer dereference
    CVE-2019-7152 Binaryen 1.38.22 Heap Buffer Overflow CVE-2019-7151 Binaryen 1.38.22 NULL pointer dereference
    CVE-2019-7150 Elfutils 0.175 Unknown Crash CVE-2019-7149 Elfutils 0.175 Heap Buffer Overflow
    CVE-2019-7148 Elfutils 0.175 Out of memory CVE-2019-7147 NASM 2.14rc16 Global buffer overflow
    CVE-2019-6293 Elfutils 0.175 Heap Buffer Overflow CVE-2019-6293 Flex 2.6.4 Stack Overflow
    CVE-2019-6292 Yaml-cpp v0.6.2 Stack Overflow CVE-2019-6291 NASM 2.14.03rc1 Stack Overflow
    CVE-2019-6290 NASM 2.14.03rc1 Stack Overflow CVE-2018-20712 Binutils 2.31 Heap Buffer Overflow
    CVE-2018-20657 Binutils 2.31 Memory Leak CVE-2018-20652 Tinyexr v0.9.5 Out of Memory
    CVE-2018-20651 Binutils 2.31 Invalid Address Read CVE-2018-20593 Mini Xml v2.1 Stack Buffer Overflow
    CVE-2018-20592 Mini Xml v2.1 Use-after-free CVE-2018-20591 libming v0.4.8 Heap Buffer Overflow
    CVE-2018-20002 Binutils 2.31 Memory Leak CVE-2018-18701 Binutils 2.31 Stack Overflow
    CVE-2018-18700 Binutils 2.31 Stack Overflow CVE-2018-18607 Binutils 2.31 NULL Pointer Dereference
    CVE-2018-18606 Binutils 2.31 NULL Pointer Dereference CVE-2018-18605 Binutils 2.31 Heap Buffer Overflow
    CVE-2018-18521 Elfutils 0.174 Divide-by-zero CVE-2018-18520 Elfutils 0.174 Invalid Address Read
    CVE-2018-18484 Binutils 2.31 Stack Overflow CVE-2018-18483 Binutils 2.31 Integer overflow
    CVE-2018-18310 Elfutils 0.174 Invalid Address Read CVE-2018-18309 Binutils 2.31 Invalid Address Read
    CVE-2018-17985 Binutils 2.31 Stack Overflow CVE-2018-17795 LibTIFF 4.0.9 Heap Buffer Overflow
    CVE-2018-17794 Binutils 2.31 NULL Pointer Dereference CVE-2018-16403 Elfutils 0.173 Heap Buffer Overflow
    CVE-2018-16402 Elfutils 0.173 Double Free CVE-2018-16062 Elfutils 0.173 Heap Buffer Overflow

    Open Source Project

    Here are some open-source project. Share it with you in the spirit of open source. more detail can be seen at https://github.com/wcventure.

    Gallery

    This gallery shows my colorful trace in different activity. Learn more at here.



    Activity

    I often share papers that I have read on CSDN. Welcome to exchange the view point on interesting research work. I am also an E-sports enthusiast, focusing on E-sports games and host games. If you want to play with me, you can add me to your friend list.

    blog-1

    wcventure

    CSDN

    I have a blog of CSDN. After reading some interesting papers, I often share my experience on CSDN blog. Sometimes I will provide some translation of English papers.

    blog-2

    wcventure

    Github

    This is my GitHub homepage. My GitHub is mainly used to publish open source projects and published papers. I often focus on the general trend of affairs of GitHub.

    blog-3

    wcventure

    Steam Community

    My ID in Steam Community is wcventure. I've played a lot of interesting games. I will continue to be active in the steam community.

    blog-4

    136025205

    DOTA2

    I like DOTA2 very much and focus on the TI competition every year. I believe that "CN DOTA, the best DOTA". I would like to thank all of the players, talent, and everyone in the Dota community for helping bring this game to life.

    blog-5

    wcventure

    Youku

    I am also a video game maker. I often record video games and publish my game strategy. I used to do live broadcast on Douyu TV. My Youku channel also has many people's attention.

    blog-6

    计算机论文笔记-wcventure

    Zhihu

    The articles in my Zhihu homepage ususlly is same as the articles in my CSDN homepage. After reading some interesting papers, I often share my experience on CSDN blog. Sometimes I will provide some translation of English papers.

    Page Traffic Analysis