Marcel Böhme
@mboehme.bsky.social
Software Security @MPI, PhD @NUS, Dipl.-Inf. @TUDresden.
Research Group: http://mpi-softsec.github.io
Research Group: http://mpi-softsec.github.io
Pinned
Marcel Böhme
@mboehme.bsky.social
· Nov 19
🔮 ACM TOSEM Perspective Paper on Software Security in 2030 (Invited).
📝 mpi-softsec.github.io/papers/TOSEM...
Collab w/ Eric Bodden, Tevfik Bultan, Cristian Cadar, Liu Yang, and Giuseppe Scanniello
📝 mpi-softsec.github.io/papers/TOSEM...
Collab w/ Eric Bodden, Tevfik Bultan, Cristian Cadar, Liu Yang, and Giuseppe Scanniello
Reposted by Marcel Böhme
🎙️ #ASE2025 Keynote Speaker Series (1 of 3)
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
October 22, 2025 at 11:39 AM
🎙️ #ASE2025 Keynote Speaker Series (1 of 3)
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
What do symbolic model checking, path profiling, and quantum simulation have in common? 🤔
Find out from Prof. Reps (University of Wisconsin-Madison) in his ASE2025 Keynote “We Will Publish No Algorithm Before Its Time”!
conf.researchr.org/track/ase-20...
Reposted by Marcel Böhme
🎙️ ASE 2025 Keynote Speaker Series (3 of 3)
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
October 28, 2025 at 7:44 AM
🎙️ ASE 2025 Keynote Speaker Series (3 of 3)
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Prof. Taesoo Kim (Georgia Tech)
“Hyperscale Bug Finding and Fixing: DARPA AIxCC”
conf.researchr.org/track/ase-20...
Reposted by Marcel Böhme
🎙️ #ASE2025 Keynote Speaker Series (2 of 3)
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
October 26, 2025 at 3:19 AM
🎙️ #ASE2025 Keynote Speaker Series (2 of 3)
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
Dr. Cristina Cifuentes, Vice President @ Oracle Software Assurance
“Oracle Parfait – Detecting Application Vulnerabilities at Scale – Past, Present and Future”
🧵 A human review of our AI review at #AAAI26.
📝: arxiv.org/abs/2507.00057
🦋 : bsky.app/profile/did:...
We are off to a good start. While the synopsis misses the motivation (*why* this is interesting), it offers the most important points. Good abstract-length summary.
1/
📝: arxiv.org/abs/2507.00057
🦋 : bsky.app/profile/did:...
We are off to a good start. While the synopsis misses the motivation (*why* this is interesting), it offers the most important points. Good abstract-length summary.
1/
November 8, 2025 at 7:51 PM
🧵 A human review of our AI review at #AAAI26.
📝: arxiv.org/abs/2507.00057
🦋 : bsky.app/profile/did:...
We are off to a good start. While the synopsis misses the motivation (*why* this is interesting), it offers the most important points. Good abstract-length summary.
1/
📝: arxiv.org/abs/2507.00057
🦋 : bsky.app/profile/did:...
We are off to a good start. While the synopsis misses the motivation (*why* this is interesting), it offers the most important points. Good abstract-length summary.
1/
Just accepted at #AAAI26 in Singapore: Our paper on estimating the *correctness* of LLM-generated code in the absence of oracles (e.g., a ground-truth implementation).
📝 arxiv.org/abs/2507.00057
with Thomas Valentin (ENS Paris-Saclay), Ardi Madadi, and Gaetano Sapia (#MPI_SP).
📝 arxiv.org/abs/2507.00057
with Thomas Valentin (ENS Paris-Saclay), Ardi Madadi, and Gaetano Sapia (#MPI_SP).
November 8, 2025 at 8:00 AM
Just accepted at #AAAI26 in Singapore: Our paper on estimating the *correctness* of LLM-generated code in the absence of oracles (e.g., a ground-truth implementation).
📝 arxiv.org/abs/2507.00057
with Thomas Valentin (ENS Paris-Saclay), Ardi Madadi, and Gaetano Sapia (#MPI_SP).
📝 arxiv.org/abs/2507.00057
with Thomas Valentin (ENS Paris-Saclay), Ardi Madadi, and Gaetano Sapia (#MPI_SP).
Reposted by Marcel Böhme
Neat idea: Snapshot fuzzing from a certain point deeper in the target (with +- complex state), then use an AI Agent to trigger that point. Fuzzer goes brrr
Gaetano's paper on Scaling Security Testing by Adressing the Reachability Gap has been accepted at #ICSE26!
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
November 4, 2025 at 1:04 AM
Neat idea: Snapshot fuzzing from a certain point deeper in the target (with +- complex state), then use an AI Agent to trigger that point. Fuzzer goes brrr
Gaetano's paper on Scaling Security Testing by Adressing the Reachability Gap has been accepted at #ICSE26!
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
November 3, 2025 at 6:24 PM
Gaetano's paper on Scaling Security Testing by Adressing the Reachability Gap has been accepted at #ICSE26!
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
📝 gpsapia.github.io/files/ICSE_2...
🧑💻 github.com/GPSapia/Reac...
How to scale automatic security testing to arbitrary systems?
Reposted by Marcel Böhme
Must-read for fuzzing folks (read: tooling/algorithms/academia) by Addison Crump
addisoncrump.info/research/wha...
addisoncrump.info/research/wha...
What the hell are we doing? · Addison Crump
Homepage for Addison Crump
addisoncrump.info
October 26, 2025 at 3:16 AM
Must-read for fuzzing folks (read: tooling/algorithms/academia) by Addison Crump
addisoncrump.info/research/wha...
addisoncrump.info/research/wha...
AAAI'26 has been adopting AI reviews in two stages of the review process. I can see that we have to handle the reviewer overload, but I don't think AI reviews are beneficial, at all, for our scientific progress.
If our paper gets accepted at #AAAI26, I will review our AI-generated review here 🤠
If our paper gets accepted at #AAAI26, I will review our AI-generated review here 🤠
October 25, 2025 at 12:18 PM
AAAI'26 has been adopting AI reviews in two stages of the review process. I can see that we have to handle the reviewer overload, but I don't think AI reviews are beneficial, at all, for our scientific progress.
If our paper gets accepted at #AAAI26, I will review our AI-generated review here 🤠
If our paper gets accepted at #AAAI26, I will review our AI-generated review here 🤠
Reposted by Marcel Böhme
Presented our #CCS25 paper yesterday in Taipei! 🎤
We introduce Circuzz, the first systematic fuzzing framework for zero-knowledge (ZK) pipelines.
📄 Paper: mariachris.github.io/Pubs/CCS-202...
💻 Repo: github.com/Rigorous-Sof...
with @isychev.bsky.social, @vwuestholz.bsky.social, Maria Christakis
We introduce Circuzz, the first systematic fuzzing framework for zero-knowledge (ZK) pipelines.
📄 Paper: mariachris.github.io/Pubs/CCS-202...
💻 Repo: github.com/Rigorous-Sof...
with @isychev.bsky.social, @vwuestholz.bsky.social, Maria Christakis
October 15, 2025 at 7:16 AM
Presented our #CCS25 paper yesterday in Taipei! 🎤
We introduce Circuzz, the first systematic fuzzing framework for zero-knowledge (ZK) pipelines.
📄 Paper: mariachris.github.io/Pubs/CCS-202...
💻 Repo: github.com/Rigorous-Sof...
with @isychev.bsky.social, @vwuestholz.bsky.social, Maria Christakis
We introduce Circuzz, the first systematic fuzzing framework for zero-knowledge (ZK) pipelines.
📄 Paper: mariachris.github.io/Pubs/CCS-202...
💻 Repo: github.com/Rigorous-Sof...
with @isychev.bsky.social, @vwuestholz.bsky.social, Maria Christakis
Reposted by Marcel Böhme
The early bird registration for #ASE2025 is still open!
📅 Early deadline: Oct 15, 2025
🧾 Regular deadline: Nov 2, 2025
All accepted papers must have at least one regular (non-student) registration for inclusion in the proceedings.
👉 Details: conf.researchr.org/attending/ase-2025/registration
📅 Early deadline: Oct 15, 2025
🧾 Regular deadline: Nov 2, 2025
All accepted papers must have at least one regular (non-student) registration for inclusion in the proceedings.
👉 Details: conf.researchr.org/attending/ase-2025/registration
Registration - ASE 2025
Welcome to the website of the 40th IEEE/ACM International Conference on Automated Software Engineering, ASE 2025. The ASE conference is the premier research forum for Automated Software Engineering. E...
conf.researchr.org
October 13, 2025 at 7:19 AM
The early bird registration for #ASE2025 is still open!
📅 Early deadline: Oct 15, 2025
🧾 Regular deadline: Nov 2, 2025
All accepted papers must have at least one regular (non-student) registration for inclusion in the proceedings.
👉 Details: conf.researchr.org/attending/ase-2025/registration
📅 Early deadline: Oct 15, 2025
🧾 Regular deadline: Nov 2, 2025
All accepted papers must have at least one regular (non-student) registration for inclusion in the proceedings.
👉 Details: conf.researchr.org/attending/ase-2025/registration
After 5 years, we are back at NDSS in San Diego!
Looking forward to submissions from the Security and the Software Engineering community!
Looking forward to submissions from the Security and the Software Engineering community!
#FUZZING'26 CALL FOR PAPERS
──────
✨ After 5 years, we will be again co-located with NDSS!
🔗 fuzzing-workshop.github.io
📅 11. Dec (Submission)
//cc @mboehme.bsky.social (MPI-SP), @ruijiemeng.bsky.social (CISPA), @rohan.padhye.org (CMU), László Szekeres (Google)
──────
✨ After 5 years, we will be again co-located with NDSS!
🔗 fuzzing-workshop.github.io
📅 11. Dec (Submission)
//cc @mboehme.bsky.social (MPI-SP), @ruijiemeng.bsky.social (CISPA), @rohan.padhye.org (CMU), László Szekeres (Google)
October 8, 2025 at 3:20 PM
After 5 years, we are back at NDSS in San Diego!
Looking forward to submissions from the Security and the Software Engineering community!
Looking forward to submissions from the Security and the Software Engineering community!
Reposted by Marcel Böhme
GUIFuzz++ is the first general-purpose fuzzer for desktop GUI software! Fuzzing by translating AFL++ random input into user interaction with GUIs, leading to the discovery of 23 new bugs!
Paper: futures.cs.utah.edu/papers/25ASE.pdf
Source: github.com/FuturesLab/GUIFuzzPlusPlus
Go test some GUIs!
Paper: futures.cs.utah.edu/papers/25ASE.pdf
Source: github.com/FuturesLab/GUIFuzzPlusPlus
Go test some GUIs!
September 24, 2025 at 8:52 PM
GUIFuzz++ is the first general-purpose fuzzer for desktop GUI software! Fuzzing by translating AFL++ random input into user interaction with GUIs, leading to the discovery of 23 new bugs!
Paper: futures.cs.utah.edu/papers/25ASE.pdf
Source: github.com/FuturesLab/GUIFuzzPlusPlus
Go test some GUIs!
Paper: futures.cs.utah.edu/papers/25ASE.pdf
Source: github.com/FuturesLab/GUIFuzzPlusPlus
Go test some GUIs!
Reposted by Marcel Böhme
Paper deadlines for ASE’25 co-located workshops are approaching! This year, nine exciting workshops are co-located with ASE’25, covering diverse SE topics. Deadlines vary, but most are due Aug 26 ⏳. Check each workshop’s website for details! conf.researchr.org/track/ase-20...
#ASE25 #Workshop #CFP
#ASE25 #Workshop #CFP
ASE 2025 - Workshops - ASE 2025
Welcome to the website of the 40th IEEE/ACM International Conference on Automated Software Engineering, ASE 2025. The ASE conference is the premier research forum for Automated Software Engineering. E...
conf.researchr.org
August 21, 2025 at 2:51 PM
Paper deadlines for ASE’25 co-located workshops are approaching! This year, nine exciting workshops are co-located with ASE’25, covering diverse SE topics. Deadlines vary, but most are due Aug 26 ⏳. Check each workshop’s website for details! conf.researchr.org/track/ase-20...
#ASE25 #Workshop #CFP
#ASE25 #Workshop #CFP
Reposted by Marcel Böhme
25 years of delta debugging! On this day in 2000, I presented “Simplifying Failure-Inducing Inputs” at ISSTA - now one of the most influential works in the 50-year history of Transactions on Software Engineering. Read all about its genesis and impact at doi.ieeecomputersociety.org/10.1109/TSE....
August 22, 2025 at 7:05 AM
25 years of delta debugging! On this day in 2000, I presented “Simplifying Failure-Inducing Inputs” at ISSTA - now one of the most influential works in the 50-year history of Transactions on Software Engineering. Read all about its genesis and impact at doi.ieeecomputersociety.org/10.1109/TSE....
Reposted by Marcel Böhme
Reposted by Marcel Böhme
Released today: the second video in my Programming Language Pragmatics series, covering Compilation, Interpretation, and Environments!
www.youtube.com/watch?v=mrmo...
Going forward, I'll post a video 3 times a week. Please share the series with anyone who might benefit!
www.youtube.com/watch?v=mrmo...
Going forward, I'll post a video 3 times a week. Please share the series with anyone who might benefit!
PLP 1.3-1.4: Compilation, interpretation, and environments
YouTube video by Jonathan Aldrich
www.youtube.com
August 8, 2025 at 5:01 PM
Released today: the second video in my Programming Language Pragmatics series, covering Compilation, Interpretation, and Environments!
www.youtube.com/watch?v=mrmo...
Going forward, I'll post a video 3 times a week. Please share the series with anyone who might benefit!
www.youtube.com/watch?v=mrmo...
Going forward, I'll post a video 3 times a week. Please share the series with anyone who might benefit!
Can we statistically estimate how likely an LLM-generated program is correct w/o knowing what is a correct program for that task?
Sounds impossible-but it's actually really simple. In fact, our measure of "correctness" called incoherence can be estimated (PAC guarantees).
arxiv.org/abs/2507.00057
Sounds impossible-but it's actually really simple. In fact, our measure of "correctness" called incoherence can be estimated (PAC guarantees).
arxiv.org/abs/2507.00057
Estimating Correctness Without Oracles in LLM-Based Code Generation
Generating code from natural language specifications is one of the most successful applications of Large Language Models (LLMs). Yet, they hallucinate: LLMs produce outputs that may be grammatically c...
arxiv.org
July 2, 2025 at 7:26 AM
Can we statistically estimate how likely an LLM-generated program is correct w/o knowing what is a correct program for that task?
Sounds impossible-but it's actually really simple. In fact, our measure of "correctness" called incoherence can be estimated (PAC guarantees).
arxiv.org/abs/2507.00057
Sounds impossible-but it's actually really simple. In fact, our measure of "correctness" called incoherence can be estimated (PAC guarantees).
arxiv.org/abs/2507.00057
Reposted by Marcel Böhme
Reposted by Marcel Böhme
🚨 Our amazing #FUZZING'25 keynotes are online!
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
We had two exciting keynotes:
* From academia: Miryung Kim (Prof @ UCLA)
* From industry: Will Wilson (CEO and Co-Founder of @AntithesisHQ.bsky.social).
Stay tuned for recordings!
* From academia: Miryung Kim (Prof @ UCLA)
* From industry: Will Wilson (CEO and Co-Founder of @AntithesisHQ.bsky.social).
Stay tuned for recordings!
June 29, 2025 at 7:35 AM
🚨 Our amazing #FUZZING'25 keynotes are online!
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
"Constraining Fuzzing without Paying Too Much" by Miryung Kim
youtu.be/L90MBb6NLBE
"Are you sure you belong in academia?" by Will Wilson
youtu.be/qQGuQ_4V6WI
// @mboehme.bsky.social, László Szekeres, @rohan.padhye.org, @ruijiemeng.bsky.social
It was great to see the community come together again at our 4th #FUZZING workshop in Trondheim this year! We drew a big crowd. Enjoyed the super lively discussions.
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
June 29, 2025 at 7:25 AM
It was great to see the community come together again at our 4th #FUZZING workshop in Trondheim this year! We drew a big crowd. Enjoyed the super lively discussions.
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Thanks to the organizers:
* @rohan.padhye.org
* @yannicnoller.bsky.social
* @ruijiemeng.bsky.social and
* László Szekeres (Google)
Thrilled to share a recent opinion piece at the IEEE Security and Privacy (Vol. 23, Issue 3).
Basically a long-term perspective on the field meant for both researchers and practitioners.
📝 ieeexplore.ieee.org/stamp/stamp....
Basically a long-term perspective on the field meant for both researchers and practitioners.
📝 ieeexplore.ieee.org/stamp/stamp....
June 19, 2025 at 9:40 AM
Thrilled to share a recent opinion piece at the IEEE Security and Privacy (Vol. 23, Issue 3).
Basically a long-term perspective on the field meant for both researchers and practitioners.
📝 ieeexplore.ieee.org/stamp/stamp....
Basically a long-term perspective on the field meant for both researchers and practitioners.
📝 ieeexplore.ieee.org/stamp/stamp....
Reposted by Marcel Böhme
Knowing the input language of a software system greatly facilitates its (automated) testing. In our new GDBMiner work, we use the GNU debugger (GDB) to extract precise input grammars from any recursive descent parser that can be traced via GDB: doi.org/10.4230/LITE...
GDBMiner: Mining Precise Input Grammars on (Almost) Any System
doi.org
June 4, 2025 at 11:50 AM
Knowing the input language of a software system greatly facilitates its (automated) testing. In our new GDBMiner work, we use the GNU debugger (GDB) to extract precise input grammars from any recursive descent parser that can be traced via GDB: doi.org/10.4230/LITE...
Reposted by Marcel Böhme
My short impulse presentation from Cycon is online: youtu.be/qllU_B_Rmis?...
Fireside Chat: Gentleman Hackers with Thomas Dullien
YouTube video by natoccdcoe
youtu.be
June 5, 2025 at 8:51 AM
My short impulse presentation from Cycon is online: youtu.be/qllU_B_Rmis?...
Reposted by Marcel Böhme
Just Accepted to ACM TOSEM!
The "Havoc Paradox" is about the relationship between byte-level fuzzer mutations and their effect on the inputs produced by generators for structured strings (e.g. XML/SQL). Can disruptive mutations be controlled? Should they be? Find out.
📄 dl.acm.org/doi/pdf/10.1...
The "Havoc Paradox" is about the relationship between byte-level fuzzer mutations and their effect on the inputs produced by generators for structured strings (e.g. XML/SQL). Can disruptive mutations be controlled? Should they be? Find out.
📄 dl.acm.org/doi/pdf/10.1...
June 6, 2025 at 7:02 PM
Just Accepted to ACM TOSEM!
The "Havoc Paradox" is about the relationship between byte-level fuzzer mutations and their effect on the inputs produced by generators for structured strings (e.g. XML/SQL). Can disruptive mutations be controlled? Should they be? Find out.
📄 dl.acm.org/doi/pdf/10.1...
The "Havoc Paradox" is about the relationship between byte-level fuzzer mutations and their effect on the inputs produced by generators for structured strings (e.g. XML/SQL). Can disruptive mutations be controlled? Should they be? Find out.
📄 dl.acm.org/doi/pdf/10.1...