Niu Zhi

View on GitHub

Niu Zhi

Intro

Most perople call me small Niu. I work @ ZTE, where I focus on Penetration testing, Code inspection and Code audit. I have a Master Degree from Chongqing University(CQU).I passed the following certification CCSK,CISP-PTE,CISSP.

Research Interests

Various topics relating to program analysis,model checking,Code inspection,TLA+, Code audit and peneration testing.

Interested Projects:

Infer:https://github.com/facebook/infer
CodeQL:https://github.com/github/codeql
ShiftLeft:https://github.com/ShiftLeftSecurity
joern:https://github.com/ShiftLeftSecurity/joern
ikos:https://github.com/NASA-SW-VnV/ikos
SPARTA:https://github.com/facebookincubator/SPARTA
codechecker:https://github.com/Ericsson/codechecker
sast-scan:https://github.com/ShiftLeftSecurity/sast-scan
pyre-check:https://github.com/facebook/pyre-check
flow:https://flow.org
FlowDroid:https://github.com/secure-software-engineering/soot-infoflow-android
TLA+:https://github.com/tlaplus/tlaplus Apalache:https://github.com/informalsystems/apalache Modelator:https://github.com/informalsystems/modelator Atomkraft:https://github.com/informalsystems/atomkraft PGO:https://github.com/DistCompiler/pgo

CVE vulnerabilities found:

CVE-2020-24804
1.https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24804 2.https://github.com/cms-dev/cms/issues/1160

Academic papers:

1.The Runtime model checking Method for Zero Trust Security Policy https://dl.acm.org/doi/abs/10.1145/3558819.3558821
2.Verifying Zookeeper based on Model-Based runtime Trace-Checking using TLA+ https://dl.acm.org/doi/abs/10.1145/3558819.3558822
3.Specifying and Verifying SDP Protocol Based Zero Trust Architecture Using TLA+ https://dl.acm.org/doi/10.1145/3558819.3558826
4.Enhancing Code Quality with LLM in Software Static Analysis https://oversea.cnki.net/kcms/detail/34.1294.TN.20240725.1454.002.html
5.Deadlock Detection: Background, Techniques, and Future Improvements
https://www.zte.com.cn/content/dam/zte-site/res-www-zte-com-cn/mediares/magazine/publication/com_en/article/en202402/20240209.pdf