Videos to Watch

How to Write a Great Research Paper

How to Give a Great Research Talk

Securing DevOps - Youtube channel from Julien Vehent

Stephen Magill Principal Scientist, Software Analysis

Black Hat Asia 2017 Halvar Flake - Why we are not building a defendable Internet

BH USA 2006 - Halvar Flake Need New Tools

DEF CON 2006 - NNew Chhallenges Need Changing Tools

RuhrSec 2018: Keynote: Weird machines, exploitability and unexploitability (Halvar Flake)

Preventing Attacks at Scale [I] - Dino Dai Zovi, Capsule8

BH USA 2002 - Professional Source Code Auditing - Mark Dowd, neel Mehta, Halvar Flake

Halvar Flake: Black Hat EU 2003 - Data Flow Analysis

[AthCon 2012] Exploitation and State Machines

44CON 2013 - A talk about (info-sec) talks - Haroon Meer

Dino Dai Zovi - Attacker Math 101

An introduction to Category Theory forSoftware Engineers - seems like an awesome intro

Static Detection of Second-Order Vulnerabilities in Web Applications - Usenix 2014 - a sample rewrite catalog of code patterns. (academic)

mpage/plt-study - A path to Programming Language Theory enlightenment

James Koppel - The Best Refactoring You’ve Never Heard Of

A gentle introduction to program analysis

Let’s build a compiler - book

Safe and Efficient, Now -statically assure a wide range of safety properties:

The Architecture of Open Source Applications

Introducing the FASTEN project - The core idea behind FASTEN is really simple: instead of analyzing dependencies at the package level, we will analyze them at the call graph level! This will allow us to be super precise when we are tracking dependencies, when we do change impact analysis, when we recommend clients to update packages etc. It will also open the door to new sophisticated applications, e.g. licensing compliance, dependency risk profiling and data-driven API evolution.

Macaroons are Better Than Cookies!

246 Findings From our Smart Contract Audits: An Executive Summary

Microsoft Academic Knowledge Graph - a large RDF data set with over eight billion triples with information about scientific publications and related entities, such as authors, institutions, journals, and fields of study. The data set is based on the Microsoft Academic Graph and licensed under the Open Data Attributions license. Furthermore, we provide entity embeddings for all 210M represented scientific papers.

The A-Z of Programming languages - interviews with programming language creators)

Adventures in Prolog

Magritte: A Language for Pipe-BasedProgramming - masters thesis