About Me

Hi! I’m Wil Gibbs - a Ph.D. student at Airzona State University (ASU) interested in Systems Security. I currently work at SEFCOM under Dr. Ruoyu (Fish) Wang who is my primary advisor, but I also work closely with Dr. Adam Doupé, Dr. Yan SHoshitaishvili, and Dr. Tiffany Bao. I have a strong interest in anything binary analysis related with most of my research focus on static analysis. I am the Co-Lead of the Shellphish founded AIxCC team alongside Lukas Dresel where we won $2 Million from DARPA as finalists in the AIxCC competition with our Cyber Reasoning System (CRS) ARTIPHISHELL.

When I’m not doing Research, I am competing in ethical hacking competitions called CTFs! I am the captain of the internationally known CTF team Shellphish which routinely competes in DEFCON CTF and am a proud Captain emeritus. I started the ASU based CTF team pwndevils which has transitioned into the ASU Hacking Club and pipelines talented hackers directly into Shellphish. I try my best at pwn and rev based challenges (with a sprinkle of web) under the handle clasm when competing.

Publications

Operation Mango: Scalable Discovery of Taint-Style Vulnerabilities in Binary Firmware Services

Wil Gibbs, Arvind S Raj, Jayakrishna Menon Vadayath, Hui Jun Tay, Justin Miller, Akshay Ajayan, Zion Leonahenahe Basque, Audrey Dutcher, Fangzhou Dong, Xavier Maso, Giovanni Vigna, Christopher Kruegel, Adam Doupé, Yan Shoshitaishvili, Ruoyu Wang Proceedings of the USENIX Security Symposium, Philadelphia, USA August 2024. github

Fuzz to the Future: Uncovering Occluded Future Vulnerabilities via Robust Fuzzing

Arvind S Raj, Wil Gibbs, Fangzhou Dong, Jayakrishna Menon Vadayath, Michael Tompkins, Steven Wirsz, Yibo Liu, Zhenghao Hu, Chang Zhu, Gokulkrishna Praveen Menon, Brendan Dolan-Gavitt, Adam Doupé, Ruoyu Wang, Yan Shoshitaishvili, Tiffany Bao Proceedings of the ACM Computing Classification System, Utah, USA October 2024. github

Ahoy SAILR! There is No Need to DREAM of C: A Compiler-Aware Structuring Algorithm for Binary Decompilation

Zion Leonahenahe Basque, Ati Priya Bajaj, Wil Gibbs, Jude O’Kain, Derron Miao, Tiffany Bao, Adam Doupé, Yan Shoshitaishvili, Ruoyu Wang Proceedings of the USENIX Security Symposium, Philadelphia, USA August 2024. github pdf mirror

Greenhouse: Single-Service Rehosting of Linux-Based Firmware Binaries in User-Space Emulation

Hui Jun Tay, Kyle Zeng, Jayakrishna Menon Vadayath, Arvind S Raj, Audrey Dutcher, Tejesh Reddy, Wil Gibbs, Zion Leonahenahe Basque, Fangzhou Dong, Zack Smith, Adam Doupé, Tiffany Bao, Yan Shoshitaishvili, Ruoyu Wang Proceedings of the USENIX Security Symposium, Anaheim, USA August 2023. github pdf mirror

Media Appearences

• Hackers Race to win millions in contest to thwart cyberattacks with AI (Washington Post)
• Cybersecurity team including students, faculty from ASU wins $2 million in international contest (KStar News)
• Jackpot! ASU hackers win $2M at Vegas AI competition (ASU News)
• ASU students win $2M in cybersecurity competition (Fox10 News)

Honors and Awards

• AIxCC Finalist (Shellphish), Las Vegas, USA, 2024
• Partial Win in Camera Category at Pwn2Own (SEFCOM), Toronto, Canada, 2023
• Partial Win in NAS Category at Pwn2Own (SEFCOM), Toronto, Canada, 2022
• 13th Place in DEF CON 30 CTF (Shellphish), Las Vegas, USA, 2022
• 14th Place in DEF CON 29 CTF (Shellphish), Las Vegas, USA, 2021
• 7th Place in DEF CON 28 CTF (Shellphish), Virtual, 2020
• 10th Place in DEF CON 27 CTF (Shellphish), Las Vegas, USA, 2019
• FURI Grant award 2016 (ASU)

Teaching

• Spring 2022 : Accelerated Applied Security (CSE 598), Instructor of Record
• Spring 2021 : Information Assurance (CSE 365), Teaching Assistant