Welcome to Heqing Huang’s homepage!

Currently, I am a Ph.D. student supervised by Dr. Charles Zhang at the Hong Kong University of Science and Technology (HKUST). My research direction is application security, and I am very keen to improve all kinds of vulnerability detection methods such as fuzzing, symbolic execution by using various program analysis techniques.

I am on the job market for faculty positions starting from 2022/2023!

  • NEWS!
    • Received Huawei distinguished collaborator award on deploying Pangolin (S&P 20)!
    • Our directed fuzzing work has been accepted by S&P 2022!
    • Our work for improving symbolic abstraction gets accepted by OOPSLA 2021!

Publication

S&P’22

BEACON: Directed Grey-Box Fuzzing with Provable Path Pruning
Heqing Huang, Yiyuan Guo, Qingkai Shi, Peisen Yao, Rongxin Wu, Charles Zhang.
The 43rd IEEE Symposium on Security and Privacy.

OOPSLA’21

Program Analysis via Efficient Symbolic Abstraction
Peisen Yao, Qingkai Shi, Heqing Huang, Charles Zhang.
The 36th ACM SIGPLAN Conference on Object Oriented Programming, Systems, Languages and Applications

FSE’21

Skeletal Approximation Enumeration for SMT Solver Testing
Peisen Yao, Heqing Huang*, Wensheng Tang, Qingkai Shi, Rongxin Wu, Charles Zhang.
The 29th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering

ISSTA’21

Fuzzing SMT Solvers via Two-Dimentional Input Space Exploration
Peisen Yao, Heqing Huang, Wensheng Tang, Qingkai Shi, Rongxin Wu, Charles Zhang.
The 30th ACM SIGSOFT International Symposium on Software Testing and Analysis.

S&P’20

Pangolin: Incremental Hybrid Fuzzing via Polyhedral Path Abstraction
Heqing Huang, Peisen Yao, Rongxin Wu, Qingkai Shi, Charles Zhang.
The 41st IEEE Symposium on Security and Privacy.

ISSTA’20

Fast Bit-Vector Satisfiability
Peisen Yao, Qingkai Shi, Heqing Huang, Charles Zhang.
The 29th ACM SIGSOFT International Symposium on Software Testing and Analysis.

Bugs Hunting

Tens of CVEs and thousands of bugs have been detected by our fuzzers. A partial of vulnerabilities can be found here. We also list the bugs found specifically for solvers here.

Funding and Cooperation

Our work Pangolin published in S&P 2020 has been successfully deployed in the Huawei tool-chain and detected more than thousands of crashes/bugs! We have thus received the Huawei Distinguish collaborator 2021 award!

Reviewer/Sub-/Co-reviewer

Teaching

  • TA for COMP 3021 - Java Programming (Spring 2022).
  • TA for COMP 6613B - Topics in Programming Languages: Semantics and Verification (Spring 2021).
  • TA for COMP 3111 Software Engineering (Spring 2020).
  • TA for COMP 3111 Software Engineering (Fall 2019).
  • TA for COMP 3111 Software Engineering (Spring 2019).