Making Advanced Solutions Accessible

Our mission is to secure the world’s software. We’re continuously researching the latest advanced technology to support the security of open source projects.

Research Lab

bncov

Author: Mark Griffin

A Binary Ninja plugin that enables automated coverage analysis and visualization. In order to understand the relationship between the code executed during separate invocations of a target (such as when provided different inputs), an abstraction of code coverage is required, which is what bncov provides. This block coverage abstraction allows users to unite information about the dynamic execution of code with the meaning and context of that code via Binary Ninja, which allows the creation of a new generation of tooling that can understand and compare how target code runs in different scenarios.

Learn more on the blog Watch the webinar See it on Github

rootfs

Author: Marlies Ruck

Marli worked as a software engineer at ForAllSecure. She graduated from Tufts University with a Bachelor of Arts in Computer Science and went on to receive her Master’s in Information Security and Technology Management from Carnegie Mellon University. After school, Marli worked for the U.S. government for two years fulfilling her passion for foreign affairs and making a difference in the world. Marli worked at ForAllSecure from 2016 - 2019. Her proudest moment to date is when she wrote a fuzzer for networked targets which was used to find a CVE in the popular web server, H2o. Marli is excited about Go, climbing, and dogs.

Learn more on the blog See it on Github

Meet the Labs Team

Max Koo

Software Engineer

Read bio

Max is an engineer at ForAllSecure. He has over 10 years of experience in vulnerability analysis and tool development for entities in both the public and private sectors. He believes fuzzing is one of the most effective ways of uncovering software defects, and hopes to make finding bugs quicker and easier at large by promoting its adoption. Max graduated from Carnegie Mellon University with a B.S. in Computer Science, and Electrical and Computer Engineering.

Guido Vranken

Security Researcher

Read bio

Guido Vranken is a security researcher at ForAllSecure. Guido is a self-taught programmer and security researcher, especially known for his ability to find vulnerabilities and identity bugs within software. Some of his notable work includes finding more than 50 bugs in major cryptographic libraries, making $120K in two weeks from Block.one's bug bounty program and finding vulnerabilities in OpenVPN that two professional audits missed.

Adam Van Prooyen

Software Engineer

Read bio

Adam works as an engineer on the research team and supports customer engagements at ForAllSecure. Adam graduated from Carnegie Mellon University with a B.S. in Computer Science and played on PPP during his time there. Prior to ForAllSecure, Adam worked as a Software Engineer on open source rural cellular at Facebook. At work, he enjoys finding ways to make fuzzing easier and more effective. He spends his free time learning new recipes, studying Japanese, and scuba diving.

Mark Griffin

Software Engineer

Read bio

Mark is a builder and breaker of software with over a decade of experience. A practitioner at heart, he focuses on building systems that allow people to focus on creative problem solving and getting the job done faster. His interests include automating the impossible and visualizing the un-knowable.