Hello, My name is Ly Vu Duc, I am from Binh Phuoc, Vietnam. Currently, I am a Ph.D. candidate at the University of Trento, Italy, supervised by Prof. Fabio Massacci, and I am working on software supply chain security for open-source software and automated program repair. I am a member of the Security and Cryptography at the University of Trento. From 01/04/2021, I am a contributing member of the Python Software Foundation (PSF). I was an Early Stage Researcher (ESR) of the NECS project from 2017 to 2020. Currently, I am working for the AssureMoss project.

I have had a chance to work at SAP Security Research (France) under the supervision of Henrik Plate and Antonino Sabetta, on the topic of software supply chain attacks. During the internship, we developed an approach and tool called LastPyMile to detect code injections in software supply chain attacks, and please check it out if you are interested in link. This work was mentioned on HackerNews and Reproducible-builds I have been maintaining a repository containing a list of papers and reports related to software supply chain security, check it out Here

I have been studying and developing malware detection tools for computer systems from Windows malware classifiers to malicious packages in package repositories. With my colleagues, We had developed an approach called HIT4MAL to classify malware using image transformations. Or a simple approach leveraging Levenshtein distance to flag potential combosquatting/typosquatting packages Link.

From 2015 to 2017, I was studying and researching computer security at Hongik University (Sejong Campus), South Korea. During that time, I had developed DeepMal a deep learning approach based on assembly files at the character level, and another approach that combines static and dynamic features to classify malware Link

I like teaching, and I have taught a few courses on Python programming and machine learning to both university students and engineers.

I love writing and sharing techniques about Python. I like learning new stuff, especially those in programming, security, and history. With a basic understanding of the Python programming language, I like to help others to automate the boring stuff and make some profit. In my free time, I like reading books (especially self-help books) and playing guitar (I am learning the keyboard now). I also write some medium posts @vuducly151092. You can contact me by Email.

I has been awarded the Marie-Cure Research Scholarship from 2017 to 2020. I have won an ACM silver medal at ASE SRC 2021 with the proposal py2src.

My LinkedIn

My Google Scholar

My ResearchGate

My HackerRank profile