BINSEC Team @ Université Paris-Saclay, CEA, List

🚨 Postdoc opening (24 months) in software security & fuzzing! Join our @BinsecTool team @CEA_List to work on smarter fuzzing for supply‑chain security. 📍 Paris‑Saclay 🇫🇷 🔗 Apply: binsec.github.io/jobs/open/2026… #Postdoc #Cybersecurity #Fuzzing #BinaryAnalysis #SupplyChainSecurity

Finding backdoors in software is like hunting for a needle that’s actively trying to hide. 🪡🕵️ Check out our @fosdem talk with @plumtrie on using fuzzing to automate the search! 📺 Watch: mirrors.dotsrc.org/fosdem/2026/ub… 📜 ICSE Paper: binsec.github.io/assets/publica…

2026 has only started, and BINSEC v0.11 is out ! On the menu: easier analysis initialization through core dumps for all architectures supported by the tool (previously only for x86), and a more flexible and powerful plugin API. binsec.github.io/releases/binse…

Deadline is approaching for the BAR workshop. Still one week to deliver your great submissions!

Finding bugs is nice, finding bugs that are replicable for sure is nicer. Our prototypes for robust reachability and quantitative robustness are now fully integrated in the BINSEC plugin mechanism binsec.github.io/releases/plugi…

@USENIXSecurity 2025 is starting in 1h and something! My amazing student GuilhemLacombe will present our work entitled "Attacker Control and Bug Prioritization" on August 14 (4pm session, track 2). Want to know more about assessing the danger of a vulnerability without generating exploit? Glad to chat about it! binsec.github.io/assets/publica… @BinsecTool @CEA_List @UPSaclay

Back from @PLDI 2025, where Frédéric Recoules and I had the pleasure to give a tutorial on BINSEC and binary-level symbolic execution. Here it is, playable in your browser: binsec.github.io/tutorial-pldi2…

Happy to have presented our SECUBIC project to the French research community in system security (RESSI'25)! 🏠 secubic-ptcc.github.io 🧑‍🔬 @Seb_Bardin @Jean_YvesMarion Stefano Zacchiroli Thanks to the RESSI organizers who had even provided a pool to finish my #OOPSLA reviews! 😇

Check out our ROSARUM benchmark, part of our #icse2025 paper on backdoors and fuzzing: ▶️ It is a fuzzing benchmark (can fuzzers trigger backdoors reliably and fast?) ▶️ It is a backdoor detection benchmark (can code analyses find backdoors reliably?) ⬇️ github.com/binsec/rosarum

You are thrilled? Then 1. Install Xyntia or use our Docker image: github.com/binsec/xyntia/… 2. Check our tutorial: binsec.github.io/releases/xynti… 3. Deobfuscate binary code 😈

Xyntia includes new operators and new grammars, making synthesis more flexible

📢Xyntia 0.2.0 is now available 📢 You are a reverse engineer, and you need to simplify highly obfuscated expressions (e.g., MBA)? Try Xyntia 0.2.0, the black-box deobfuscator: github.com/binsec/xyntia It includes many new features!

How to detect backdoors efficiently? 🗣️ The slides of our #icse2025 presentation on "Finding Backdoors with Fuzzing" are now available at ⬇️ binsec.github.io/assets/publica…

Very honored to receive the Best Artifact award at #icse2025 🥳 Congrats and thank you to my coauthors! @michaelmarcozzi, Emilien Decoux, Stefano Zacchiroli

Too many bugs in the queue, not enough time to fix them all? Happy to share that our work on automated bug priorization has been accepted at @USENIXSecurity 2025 -- joint work with Guilhem Lacombe binsec.github.io/nutshells/usen…

On my way to Ottawa and @ICSEconf 🍁 Presenting on Friday (May 2nd) at 16:00 local time in room 210, come say hi ☺️