Profile Photo

Wang Jianqiang (王健强)

Security Researcher

Logo 1 Logo 2

About Me

I am currently (2025.09) a postdoc researcher at MPI-SP. Since December 2022, I have been working at CISPA as a PhD student under the supervision of Prof. Thorsten Holz with a focus on system security. Before joining Holz's group, I was supervised by Prof. Ahmad-Reza Sadeghi at TU Darmstadt for my first-year PhD and Prof. Zhang Yuanyuan at Shanghai Jiao Tong University for my master.

I am interested in a wide range of low-level software security, especially regarding the attack and defense sides of memory corruption vulnerabilities. My analysis targets include but are not limited to UEFI Firmware, OS Kernel, Hypervisor, Embedded System Firmware, and Bootloader. With a strong background in Fuzzing, Binary Analysis, and low-level programming skills, I aim to build analysis tools and secure frameworks for low-level software.

Selected Publications

  • SmuFuzz: Enable Deep System Management Mode Fuzzing in Fully Featured UEFI Runtime Environment. (S&P'26)
    Jianqiang Wang, Yi Xiang, Meng Wang, Qinying Wang, Ali Abbasi, Thorsten Holz
  • A Comprehensive Memory Safety Analysis of Bootloaders. (NDSS'25)
    Jianqiang Wang, Meng Wang, Qinying Wang, Nils Langius, Li Shi, Ali Abbasi, Thorsten Holz
  • AidFuzzer: Adaptive Interrupt-Driven Firmware Fuzzing via Run-Time State Recognition. (Usenix Security'25)
    Jianqiang Wang, Qinying Wang, Tobias Scharnowski, Li Shi, Simon Woerner, Thorsten Holz
  • SEnFuzzer: Detecting SGX Memory Corruption via Information Feedback and Tailored Interface Analysis. (RAID'23)
    Donghui Yu, Jianqiang Wang, Haoran Fang, Ya Fang, Yuanyuan Zhang
  • RiscyROP: Automated Return-Oriented Programming Attacks on RISC-V and ARM64. (RAID'22)
    Tobias Cloosters, David Paaßen, Jianqiang Wang, Oussama Draissi, Patrick Jauernig, Emmanuel Stapf, Lucas Davi, Ahmad-Reza Sadeghi
  • VirTEE: A Full Backward-Compatible TEE with Native Live Migration and Secure I/O. (DAC'22)
    Jianqiang Wang, Pouya Mahmoody, Ferdinand Brasser, Patrick Jauernig, Ahmad-Reza Sadeghi, Donghui Yu, Dahan Pan, Yuanyuan Zhang
  • NLP-EYE: Detecting Memory Corruptions via Semantic-Aware Memory Operation Function Identification. (RAID'19)
    Jianqiang Wang, Siqi Ma, Yuanyuan Zhang, Juanru Li, Zheyu Ma, Long Mai, Tiancheng Chen, Dawu Gu

Education & Intern & Working

  • 2025.09 -
    Postdoc researcher at MPI-SP
  • 2022.12 - 2025.08
    PhD student at CISPA supervised by Prof. Thorsten Holz
  • 2021.05 - 2022.09
    PhD student at TU Darmstadt supervised by Prof. Ahmad-Reza Sadeghi
  • 2020.12 - 2021.05
    Research assistant working with Prof. Zhang Yuanyuan
  • 2020.06 - 2020.12
    Embedded system security internship at Tencent Keen lab
  • 2017.09 - 2020.03
    Master student at Shanghai Jiao Tong University
  • 2013.09 - 2017.07
    Bachelor student at Nanchang University

Contact

If you are interested in my research or have any questions regarding my works or code, feel free to contact me via wjq.sec@gmail (preferred) or jianqiang.wang@cispa.de