Yu-Fu Fu

Yu-Fu Fu

PhD Candidate — Georgia Institute of Technology · SSLab

I build vulnerability discovery and formal verification systems, with and without LLMs. My work includes CRSBench, a large-scale AI Cyber Reasoning System evaluation platform running 2,000+ CPU campaigns on GCP that found 14 real 0-days (3 acknowledged upstream); OSS-CRS, an OpenSSF sandbox project that found 7 additional 0-days using the AIxCC-winning CRS; and autofz, the first non-intrusive meta-fuzzer for runtime composition and resource scheduling of existing fuzzers based on per-workload feedback, outperforming state-of-the-art collaborative fuzzing on 19 of 20 benchmarks. I also work on formal verification: certified cryptographic program verification in Coq (CryptoLine, CAV/CCS) and LLM-based specification generation for Move smart contracts (ASE 2025). I am advised by Prof. Taesoo Kim at SSLab.

Contributed security benchmark creation to Team Atlanta, DARPA AIxCC winner ($4M prize). 3× DEFCON CTF finalist (2nd, 4th, 12th).

Publications

2026
CRSBench: Realistic End-to-End Evaluation of Cyber Reasoning Systems
Yu-Fu Fu*, Youngjoon Kim*, Dongkwan Kim*, et al., Taesoo Kim  (* co-first)
Under Review
Code
2026
SoK: DARPA's AI Cyber Challenge (AIxCC): Competition Design, Architectures, and Lessons Learned
Cen Zhang, Younggi Park, Fabian Fleischer, Yu-Fu Fu, et al., Taesoo Kim
USENIX Security 2026
PDF arXiv
2026
OSS-CRS: Liberating AIxCC Cyber Reasoning Systems for Real-World Open-Source Security
Andrew Chin, Dongkwan Kim, Yu-Fu Fu, et al., Taesoo Kim
WOOT 2026
PDF Code
2025
Agentic Specification Generator for Move Programs
Yu-Fu Fu, Meng Xu, Taesoo Kim
ASE 2025
PDF Code
2023
autofz: Automated Fuzzer Composition at Runtime
Yu-Fu Fu, Jaehyuk Lee, Taesoo Kim
USENIX Security 2023
PDF Code
2023
CoqCryptoLine: A Verified Model Checker with Certified Results
Ming-Hsien Tsai, Yu-Fu Fu, Jiaxiang Liu, Xiaomu Shi, Bow-Yaw Wang, Bo-Yin Yang
CAV 2023
PDF Code
2023
Certified Verification for Algebraic Abstraction
Ming-Hsien Tsai, Yu-Fu Fu, Jiaxiang Liu, Xiaomu Shi, Bow-Yaw Wang, Bo-Yin Yang
CAV 2023
PDF
2021
CoqQFBV: A Scalable Certified SMT Quantifier-Free Bit-Vector Solver
Xiaomu Shi, Yu-Fu Fu, Jiaxiang Liu, Ming-Hsien Tsai, Bow-Yaw Wang, Bo-Yin Yang
CAV 2021
PDF Code
2019
Signed Cryptographic Program Verification with Typed CryptoLine
Yu-Fu Fu, Jiaxiang Liu, Xiaomu Shi, Ming-Hsien Tsai, Bow-Yaw Wang, Bo-Yin Yang
ACM CCS 2019
PDF Code

Software

Research

CRSBench
Realistic end-to-end evaluation platform for Cyber Reasoning Systems (DARPA AIxCC)
OSS-CRS
Standardized framework for composing AI-powered CRS; OpenSSF sandbox project under Linux Foundation
MSG
LLM-based agentic system for automated end-to-end formal specification generation for Move programs
autofz
Meta-fuzzer that orchestrates multiple fuzzers at runtime based on their coverage progress
coq-cryptoline
Certified CryptoLine verifier in Coq for cryptographic program verification
coq-qfbv
Certified SMT QF_BV solver in Coq with machine-checkable proofs
gcc2cryptoline
Translates GCC GIMPLE IR to CryptoLine for verified cryptographic function analysis

Tools

codex-as
Run Codex under saved auth/provider profiles without touching config files
keepass-cli-rs
KeePass CLI in Rust with Emacs integration
maskedemail-rs
Fastmail MaskedEmail CLI in Rust with Emacs integration
Fastmail-Sieve-Sync
Sync Fastmail Sieve filter rules from a local file