Mathias Payer

@gannimo@infosec.exchange
1.2K Followers
232 Following
259 Posts
Securitatis inquisitor and professor at EPFL leading the HexHive 🐝 group, focusing on system/software security (he/him).
Homepagehttps://nebelwelt.net
Grouphttps://hexhive.epfl.ch
Mathias PayerJun 23
Well, the proposal has nothing to do with lasers "a priori" but I'm sure some cool laser-related research would fit. A 100W laser is a great place to start, right? 🔦🔦🔦
Mathias PayerMay 14

So many amazing papers at #IEEESSP Oakland'25 this year. Congratulations to all authors on your accepted papers and an amazing program overall.

This year, we had one paper "SoK: Challenges and Paths Toward Memory Safety for eBPF" where Kaiming Huang explores challenges in protecting the Linux kernel against bugs in the eBPF verifier. As it turns out, securing even a simple language is challenging and we need to carefully consider how optimizations are implemented. Check out the full paper for details: https://nebelwelt.net/files/25Oakland.pdf

Sadly, I could not make it to San Francisco this year. Luckily my alternative program to go hike with the kids was not too bad either!

Mathias PayerMay 1
These two selfies are less than 24hrs and less than 50km apart from each other. One of the reasons why I love #EPFL and Switzerland
Mathias PayerApr 12
The universe is sending a very clear signal that I should stay TF out of France. Flight cancelled after 3hr delay and we ended up driving all night because no flights or trains were available the next three days. Thanks #easyjet
Mathias PayerApr 10
The #THcon organizers suggested that I take a hotel in the city center and commute to the conference. In spite of bad past experiences in every major city in France, I took their advice and learned why Toulouse does not have a problem with transport strikes: they got rid of the conductors!
Mathias PayerApr 10
What great fun to speak at #THCON2025 in Toulouse and present some of the #HexHive research on Android (in-)security. Find me if you want to nerd out about fuzzing, system mitigations, and any insecure components.
Mathias PayerApr 8
In Switzerland we take our security and our pocket knives seriously. That's why you can buy pocket knives right before boarding at Geneva airport. 🗡️🛫
Mathias PayerFeb 28

What a great time at the #NDSS Symposium in beautiful San Diego. While it is always about meeting friends, catching up on projects, discussing new and exciting research and looking for potential collaborations, the #HexHive lab also had the pleasure to present a total of four research papers at this conference --- and we received two distinguished paper awards!

Check out the blog post with a discussion of the papers and some key takeaways at: https://nebelwelt.net/blog/2025/0227-ndss.html

NDSS25: Exploring San Diego

What a great time at the NDSS Symposium in San Diego. While it is always about meeting friends, catching up on projects, discussing new and...

Mathias PayerDec 30, 2024
As always, the congress #38c3 was amazing. Lots of great discussions, insane hacks, and some secret adventures. Check out my blog with some recommended talks: https://nebelwelt.net/blog/2024/1230-38c3.html
38c3: Hutzelwutze in Hamburg

Another year, another CCC. It's been a long road from Berlin to Leipzig and Hamburg. Each year, I repeat the ritual of going to the

Mathias PayerDec 29, 2024
Luca and Rokhaya rocking the #38c3 stage, shitting on ML and ranting about binary similarity. What a fun talk! https://events.ccc.de/congress/2024/hub/en/event/ultrawide-archaeology-on-android-native-libraries/
[38c3] Ultrawide archaeology on Android native libraries

A rumor has been going around: Android developers are slow to update native dependencies, leaving vulnerabilities unpatched. In this talk we will show how *wrong* this rumor is: Android developers are not slow to patch - they never heard of the w...

38c3