My core research topics are static and dynamic analysis of Java programs as well as applications on the Android mobile platform.
You can also find my papers on my Google Scholar profile.
I am one of the current maintainers of the Soot open-source program analysis framework. Soot is an ideal basis for developing static analyses for Android and Java application as well as for instrumenting these apps for runtime monitoring. Furthermore, I am the maintainer of the FlowDroid static data flow tracker which is used in various research projects around the world.
In 2014, I have served as chair for the Third International Workshop on The State of The Art in Java Program Analysis (SOAP 2014). I was subreviewer for FSE'2013, ISSTA'2014, ISSTA'2015, SOAP 2015, ICSE'2016, and CODASPY'2016. I served as a PC member for the ESEC/FSE 2015 tool track. I am a reviewer for the IEEE Transactions on Software Engineering and IEEE Transactions on Information Forensics & Security journals.
Together with Siegfried Rasthofer, I have organized the lab course Smartphone Security for Android Applications in 2013 and 2014.
If you are interested in a Bachelor's or Master's thesis in the field of program analysis or Smartphone application security in general, please have a look at our open theses. If you have an idea for a custom thesis project you wish to work on, feel free to contact me.