I am a Ph.D. student at NC State University interested in Systems Security, Reverse engineering, Threat Intelligence, Online Phishing/SPAM, and web security. Currently co-advised by Dr. Brad Reaves and Dr. Alexandros Kapravelos. In my free time, I compete as part of NC State’s CTF Team Hackpack, sometimes doing solo games and HackTheBox under the username St4rl3ss.

Here I host my blog, where I catalog exciting research findings, CTF solutions, and more! I find most things cyber exciting and love exploring CS with a “Poke it with a stick” attitude; I’m looking forward to sharing my findings and research here.

Looking to hire? Check out my CV!

Publications⌗

On SMS Phishing Tactics and Infrastructure
Aleksandr Nahapetyan, Sathvik Prasad, Kevin Childs, Adam Oest, Yeganeh Ladwig, Alexandros Kapravelos, Brad Reaves
Proceedings of the IEEE Symposium on Security and Privacy, 2024
[PDF]

---

ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions
Siddharth Muralee, Igibek Koishybayev, Aleksandr Nahapetyan, Greg Tystahl, Brad Reaves, Antonio Bianchi, William Enck, Alexandros Kapravelos, Aravind Machiry
Proceedings of the USENIX Security Symposium, 2023
[PDF] [Code] [Website]

---

Characterizing the Security of Github CI Workflows
Igibek Koishybayev, Aleksandr Nahapetyan, Raima Zachariah, Siddharth Muralee, Brad Reaves, Alexandros Kapravelos, Aravind Machiry
Proceedings of the USENIX Security Symposium, 2022
[PDF] [Code] [Website]

---

Poster: Looking at the landscape of SMS Phishing
Aleksandr Nahapetyan, Kevin Childs, Sathvik Prasad, Bradley Reaves and Alexandros Kapravelos
Network and Distributed System Security Symposium (NDSS), 2022
[PDF]

---

Service⌗

• Teaching Assistant for CSC405: Intro Computer Security
• Teaching Assistant for CSC474: Computer Security
• Sub-reviewer for IEEE Symposium on Security and Privacy 2022
• Mentored Teaching Fellowships for CSC405: Intro Computer Security