Skip to content
View biniamf's full-sized avatar

Block or report biniamf

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
biniamf/readme.md

Hi, I'm Biniam Fisseha Demissie 👋

Senior Security Researcher | AI for Security · Vulnerability Research (21+ CVEs) · Android security · Fuzzing · Reverse Engineering

PhD in Computer Science (University of Trento) working at the intersection of security and AI. I find and exploit vulnerabilities, analyze malware, and build LLM/VLM-powered tools for vulnerability analysis, reverse engineering, fuzzing, and threat intelligence.

👨‍💻 About Me

  • 🔬 Focus: AI for security (and AI security), software vulnerability research, reverse engineering, and Android security.
  • 🐛 Vulnerability research: 21+ assigned CVEs for memory-safety bugs discovered and responsibly disclosed in widely-used open-source libraries - including the Android framework, Mbedtls, GDAL, libpng, libraw, libvips, libwebsockets, MuPDF, OpenImageIO, and Squirrel.
  • 🛠️ Building: VLM-assisted Android GUI fuzzers, LLM reverse-engineering assistants and vulnerability analysis and exploitation, and fine-tuned models for security usecases and threat intel.
  • 🎓 Experience: Senior Security Researcher at the Technology Innovation Institute (TII); Researcher at Fondazione Bruno Kessler (FBK); early-career malware analyst.
  • 📝 Published at ICSE, MOBILESoft, IEEE SMDS, and in EMSE on Android security.
  • 📍 Abu Dhabi, UAE 🇦🇪
  • 💼 Currently: Senior Security Researcher

📫 Connect


⭐️ Open to collaboration on AI and cybersecurity — feel free to reach out.

Popular repositories Loading

  1. ai-reverse-engineering ai-reverse-engineering Public

    AI-Assisted Reverse Engineering with Ghidra

    HTML 144 13

  2. data_obfuscation data_obfuscation Public

    Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)

    C++ 26 4

  3. VLM-Fuzz VLM-Fuzz Public

    Vision Language Model Assisted Android UI Fuzzer

    Python 5 1

  4. evrp evrp Public

    This is a virus removal (protection) tool for a virus commonly known as "Dulla virus" and several weeks later by A/V vendors Win32.Agent.cb. Motivation of the work: even though this PE infector is …

    C 2 3

  5. utorrent_irc_bot utorrent_irc_bot Public

    This is an IRC Chat Bot remote controller for uTorrent.

    C 2

  6. firebase-checker firebase-checker Public

    An Android static analysis tool as an Android Studio plugin to check the status of the Firebase database access control that is in use by the app under development

    Java 2