Feng Dong

Feng Dong


Biography

I am currently an Associate Professor at the School of Cyber Science and Engineering, Huazhong University of Science and Technology (HUST), and a member of the Security Pride Group led by Prof. Haoyu Wang. Before joining academia in 2023, I worked as a Senior Security Researcher at Sangfor Technologies for five years, gaining extensive industrial experience. I received my PhD degree in Computer Science from Beijing University of Posts and Telecommunications (BUPT) in 2018.

With a dual background in both industry and academia, I maintain close research collaborations with leading security enterprises, including Tencent, NSFOCUS, and Sangfor Technologies. My research is deeply rooted in solving practical security challenges within enterprise environments, with a primary focus on:

  • 1)Next-Generation Detection and Response: Including LLM-empowered APT attack detection, SOC alert noise reduction, and autonomous response agents.
  • 2)Endpoint Evasion and Defense: Including EDR evasion technique evaluation and adversarial gaming between EDR offensive and defensive agents.
  • 3)Vulnerability Research: Including LLM-empowered vulnerability mining and automated exploit generation (AEG).

I am actively looking for self-motivated Ph.D. and Master’s students to join my team. If you are passionate about security research, please email me with your CV.

📝 Publications

(* Equal Contribution, # Corresponding Author)

2025

  • Yunpeng Tian*, Feng Dong*, Junhai Wang, Mu Zhang, Zhiniang Peng, Zesen Ye, Xiapu Luo, Haoyu Wang. “Error Messages to Fuzzing: Detecting XPS Parsing Vulnerabilities in Windows Printing Components.” Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security (CCS ‘25 CCF-A).

  • Haoyi Liu*, Feng Dong*, Yunpeng Tian, Mu Zhang, Xuefeng Li, Fangming Gu, Zhiniang Peng, Haoyu Wang. “Needle in a Haystack: Automated and Scalable Vulnerability Hunting in the Windows ALPC Sea.” Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security (CCS ‘25 CCF-A).

  • Yunpeng Tian*, Feng Dong*, Haoyi Liu, Meng Xu, Zhiniang Peng, Zesen Ye, Shenghui Li, Xiapu Luo, Haoyu Wang. “Be Careful of What You Embed: Demystifying OLE Vulnerabilities.” Network and Distributed System Security Symposium (NDSS ‘25 CCF-A).

2024

  • Shenao Wang*, Feng Dong*, Hangfeng Yang, Jingheng Xu, Haoyu Wang. “CanCal: Towards Real-time and Lightweight Ransomware Detection and Response in Industrial Environments.” Proceedings of the 2024 ACM SIGSAC Conference on Computer and Communications Security (CCS ‘24 CCF-A).

  • Shaofei Li, Feng Dong, Xusheng Xiao, Haoyu Wang, Fei Shao, Jiedong Chen, Yao Guo, Xiangqun Chen, Ding Li. “Nodlink: An Online System for Fine-Grained APT Attack Detection and Investigation.” Network and Distributed System Security Symposium (NDSS ‘24 CCF-A).

2023

  • Feng Dong, Liu Wang, Xu Nie, Fei Shao, Haoyu Wang, Ding Li, Xiapu Luo, Xusheng Xiao. “DISTDET: A Cost-Effective Distributed Cyber Threat Detection System.” 32nd USENIX Security Symposium (USENIX Security ‘23 CCF-A).

  • Feng Dong, Shaofei Li, Peng Jiang, Ding Li, Haoyu Wang, Liangyi Huang, Xusheng Xiao, Jiedong Chen, Xiapu Luo, Yao Guo. “Are we there yet? An Industrial Viewpoint on Provenance-based Endpoint Detection and Response Tools.” Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security (CCS ‘23 CCF-A).

  • Jingjing Wang, Liu Wang, Feng Dong#, Haoyu Wang#. “Re-measuring the Label Dynamics of Online Anti-Malware Engines from Millions of Samples.” Proceedings of the 2023 ACM on Internet Measurement Conference (IMC ‘23 CCF-B).

Before 2023

  • Tianming Liu, Haoyu Wang, Li Li, Xiapu Luo, Feng Dong, Yao Guo, Liu Wang, Tegawendé F. Bissyandé, Jacques Klein. “MadDroid: Characterizing and Detecting Devious Ad Contents for Android Apps.” Proceedings of The Web Conference 2020 (WWW ‘20 CCF-A).

  • Feng Dong, Haoyu Wang, Li Li, Yao Guo, Tegawendé F. Bissyandé, Tianming Liu, Guoai Xu, Jacques Klein. “FraudDroid: Automated Ad Fraud Detection for Android Apps.” Proceedings of the 26th ACM Joint Meeting on ESEC/FSE (ESEC/FSE ‘18 CCF-A).

  • Feng Dong, Haoyu Wang, Li Li, Yao Guo, Guoai Xu, Shaodong Zhang. “How do Mobile Apps Violate the Behavioral Policy of Advertisement Libraries?” Proceedings of the 19th International Workshop on Mobile Computing Systems & Applications (HotMobile ‘18).

  • Feng Dong, Junfeng Wang, Qi Li, Guoai Xu, Shaodong Zhang. “Defect Prediction in Android Binary Executables Using Deep Neural Network.” Wireless Personal Communications.

  • Linshu Ouyang, Feng Dong, Miao Zhang. “Android Malware Detection Using 3-Level Ensemble.” 2016 4th International Conference on Cloud Computing and Intelligence Systems (CCIS ‘16).

🔗 Service

Journal Reviewer

  • IEEE Transactions on Information Forensics and Security (TIFS)
  • Journal of Software
  • IEEE Transactions on Network and Service Management
  • IEEE Open Journal of the Computer Society

Professional Society Membership

  • Executive Committee Member, Technical Committee on System Software, China Computer Federation (CCF)
  • Executive Committee Member, Technical Committee on Network and System Security, China Computer Federation (CCF)
  • Corresponding Committee Member, Technical Committee on Software Engineering, China Computer Federation (CCF)

Academic Appointments & Expertise

  • Expert Panelist, National Graduate Education Evaluation and Monitoring Expert Database, Ministry of Education of China

🏆 Honors & Awards

  • 2025 -National First-Class Undergraduate Course, Comprehensive Practice in Cyberspace Security, Ministry of Education of China.
  • 2025 -National Outstanding Advisor Award , The 4th China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2025 -National First Prize, The 4th China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2025 -National Third Prize, The 4th China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2024 -OpenHarmony Pioneer Project Award, OpenHarmony Technical Steering Committee (Only 5 projects nationwide).
  • 2024 -National Outstanding Advisor Award, The 3rd China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2024 -National First Prize, The 3rd China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2024 -National Third Prize, The 3rd China Post-graduate Network Security Innovation Competition, Ministry of Education of China.
  • 2024 -National Third Prize, The 1st China Post-graduate Operating System Open Source Innovation Competition, Ministry of Education of China.
  • 2024 -National Second Prize (Ranked 2nd Nationwide), OpenHarmony Competition Training Camp - Technical Challenge Track, OpenHarmony Technical Steering Committee.
  • 2021 -Annual Innovation First Prize, Sangfor Technologies Inc. (Ranked 2/9500, highest corporate honor).
  • 2020 -Annual Distinguished Employee, Sangfor Technologies Inc. (Top 3% of 9500 employees).
  • 2019 -Annual Outstanding Employee, Sangfor Technologies Inc. (Top 10% of 7000 employees).

🌟 Grants

I serve as the Principal Investigator (PI) for the following selected research projects:

National & Government Grants

  • National Natural Science Foundation of China (NSFC), “Research on Large-scale Endpoint APT Attack Detection Based on Distributed Profiling”, 2024.01 – 2026.12. (Principal Investigator)
  • Hubei Provincial Key Research and Development Program, “Research on Intelligent Detection of Highly Concealed Cyber Threats Based on Knowledge Graphs”, 2023.04 – 2025.12. (Principal Investigator)
  • National Key Laboratory of Data Space Technology and Systems, “Research on the Security Architecture of Data-Network”, 2024.06 – 2025.06. (Principal Investigator)

Industrial & Collaborative Grants

  • CCF-Tencent Rhino-Bird Young Faculty Open Research Fund, “Research on Threat Hunting Techniques Based on Provenance Graph Analysis”, 2025.10 – 2026.09. (Principal Investigator, Acceptance Rate: 9.5%, 37/390)
  • CCF-NSFOCUS Kunpeng Research Fund, “Research on Autonomous Event Investigation Techniques Based on Intelligent Agents”, 2025.12 – 2026.12. (Principal Investigator, Acceptance Rate: 17.5%, 14/80)

📚 Teaching

I am deeply committed to undergraduate education, consistently delivering core professional courses for students majoring in Cyberspace Security and Computer Science. My annual teaching load includes the following core curriculum:

  • Computer Network Security
    Main Instructor, Annual Undergraduate Core Course
  • Computer Network Security Experiment
    Hands-on laboratory sessions focusing on real-world security scenarios.
  • Assembly Language Programming
    Main Instructor, Fundamental Core Course for Computer Systems.
  • Assembly Language Programming Experiment
    Focusing on low-level system optimization and architectural understanding.
  • Comprehensive Practice in Cyberspace Security (III)
    Capstone practical course integrating advanced offensive and defensive techniques.

© Copyright 2026 Feng Dong. Last Updated: 18 Jan 2026