I am a Researcher in the Zhejiang University, Schoolof Software Technology . Before coming to ZJU, I worked at Huawei, 2012 Lab as a Senior Engineer. I graduated from Department of Computer Science and Technology, Zhejiang University with a Ph.D. degreed.

My research interests lie in system security, intrustion detection and cyber threat analysis techniques. I am now working towards to design practical intrusion detection and attack investigation systems. Currently I work closely with Prof. Yan Chen and Xuhong Zhang

“Contact me for intrusion detection systems research that are in line with the industry!!!”（持续招收对安全研究有兴趣的硕士研究生和本科生！）

🔥 News

2023.06: 🎉🎉 I join Zhejiang University, Schoolof Software Technology as Researcher.

📝 Publications

ESORICS 2022

AttacKG: Constructing Technique Knowledge Graph from Cyber Threat Intelligence Reports

Zhenyuan Li, Jun Zeng, Yan Chen, Zhenkai Liang

Project

AttacKG can automatically extract structured attack behavior graphs from CTI reports and identify the associated attack techniques, and aggregate threat intelligence across reports to collect different aspects of techniques and enhance attack behavior graphs into technique knowledge graphs (TKGs).
AttacKG can empower many downstream security applications such as threat identification, automatic threat reasoning and disposition.

CCS 2019

Effective and Light-Weight Deobfuscation and Semantic-Aware Attack Detection for PowerShell Scripts

Zhenyuan Li, Qi Alfred Chen, Chunlin Xiong, Yan Chen, Tiantian Zhu, Hai Yang

Project

The first effective and light-weight deobfuscation approach for PowerShell scripts. Adopted in the product of an startup security company .

TDSC 2022 RATScope: Recording and Reconstructing Missing RAT Semantic Behaviors for Forensic Analysis on Windows, Runqing Yang, Xutong Chen, Haitao Xu, Yueqiang Chen, Chunlin Xiong, Linqi Ruan, Mohammad Kavousl, Zhenyuan Li, Liheng Xu, Yan Chen
NDSS 2022 Poster Poster: Towards automated and large-scale cyber attack reconstruction with apt reports, Chunlin Xiong, Zhenyuan Li, Yan Chen, Tiantian Zhu, Jian Wang, Hai Yang, Wei Ruan
FITEE 2022 Generic, Efficient, and Effective Deobfuscation and Semantic-Aware Attack Detection for PowerShell Scripts, Chunlin Xiong, Zhenyuan Li, Qi Alfred Chen, Yan Chen, Tiantian Zhu, Hai Yang, and Wei Ruan
COSE 2021 Threat Detection and Investigation with System-level Provenance Graphs: A Survey, Zhenyuan Li, Qi Alfred Chen, Yang Runqing, Yan Chen
ACSAC 2020 Poster Poster: Mimic the Whole Attack Chain: A First Look at Evasion against Provenance Graph based Detection, Zhenyuan Li, Qi Alfred Chen, Yang Runqing, Yan Chen

🎖 Honors and Awards

2021.02 Zhejiang Lab’s International Talent Fund for Young Professionals
2020-12 Zhejiang University’s Academic Rising Star
2017-05 Outstanding Graduate of Xidian University (Top 1%)
2015-11 National Scholarship (Undergraduate) (Top 1%)

📖 Educations

2017.09 - 2022.06, Ph.D. in Cyber Security, Zhejiang University, Advised by Prof. Yan Chen.
2021.05 - 2022.04, Visiting Ph.D. Student, National University of Singapore, Advised by Prof. Zhenkai Liang.
2015.09 - 2019.06, B.S. in Information Security, Xidian University.
2010.09 - 2013.06, Zhenhai Middle School, Ningbo.

💬 Invited Talks

2020.10, InForSec Cyber Security Academic Papers Sharing (Co-located with Beijing Cyber Security Conference) | [video]
2019.11, Effective and Light-Weight Deobfuscation and Semantic-Aware Attack Detection for PowerShell Scripts, CCS’19, London

💻 Work Experience

2022.07 - 2023.07, Huawei, 2012 Lab, Hangzhou, China.

🎓 Academic Service

Subreviewer/External reviewer : NDSS’22, AsiaCCS’21, CCS’19, ICDCS’19, ESORICS’19, CCS’18
Reviewer : IEEE Access (2020)

Li Zhenyuan