About Me

I'm now an assistant research fellow in the ZGC Labotary, working with Prof. Haixin Duan.

I received my Doctoral degree in the Institute for Network Sciences and Cyberspace from Tsinghua University in 2023 and my Bachelor degree in Communication Engineering from Beijing University of Posts and Communications (BUPT) in 2018.

Currently, my research studies network security, with a particular interest in data-driven security, Cybercrime and AI security.

Reserch Interests

Data-Driven Security; AI-applied Security; Cybercrime; Network Measurement

Contact Me

• National ZGC Labotary, Beijing 100084, P.R.China

• liumx [AT] mail [DOT] zgclab.edu.cn

Other Links: Github | NISL

Publications

Conference (14)

• Into the Dark: Unveiling Internal Site Search Abused for BlackHat SEO, [USENIX Security'24]
  Yunyi Zhang, Mingxuan Liu, Baojun Liu, Yiming Zhang, Haixin Duan, Min Zhang, Hui Jiang, Yanzhe Li, Fan Shi
  (Acceptance rate: x%)
  Tool website: ISAP Checker
  

• Tickets or Privacy? Understand the Ecosystem of Chinese Ticket Grabbing Apps, [USENIX Security'24]
  Yijing Liu, Yiming Zhang, Baojun Liu, Haixin Duan, Qiang Li, Mingxuan Liu, Ruixuan Li, Jia Yao
  (Acceptance rate: x%)
  

• ChatScam: Unveiling the Rising Impact of ChatGPT on Domain Name Abuse, [DSN'24]
  Mingxuan Liu, Zhenglong Jin, Jiahai Yang, Baojun Liu, Haixin Duan, Ying Liu, Ximeng Liu, Shujun Tang
  (Acceptance rate: 20.0%)
  Open-Source: Sampled ChatScam domains are publicly available on Github.
  

• Understanding the Implementation and Security Implications of Protective DNS Services, [NDSS'24]
  *Mingxuan Liu, *Yiming Zhang, Xiang Li, Chaoyi Lu, Baojun Liu, Haixin Duan, Xiaofeng Zheng
  (* are co-first authors.)
  (Acceptance rate: 13.0%)
  Open-Source: The methods for identifying Protective DNS and some anonymized measurement results are publicly available on Github.
  APNIC post: Exploring the implementation and security implications of Protective DNS.
  

• Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild, [CCS'23]
  *Zhenrui Zhang, *Geng Hong, Xiang Li, Zhuoqun Fu, Jia Zhang, Mingxuan Liu, Chuhan Wang, Jianjun Chen, Baojun Liu, Haixin Duan, Chao Zhang, Min Yang
  (* are co-first authors.)
  (Acceptance rate: 19.15%)

• Exploring the Characteristics and Security Risks of Emerging Emoji Domain Names, [ESORICS'22]
  Mingxuan Liu, Yiming Zhang, Baojun Liu, Haixin Duan
  (Acceptance rate: 18.5%)

• Encrypted Malware Traffic Detection via Graph-based Network Analysis, [RAID'22]
  Zhuoqun Fu, Mingxuan Liu, Yue Qin, Jia Zhang, Yuan Zou, Qilei Yin, Qi Li, Haixin Duan
  (Acceptance rate: 25%)

• Ethics in Security Research: Visions, Reality, and Paths Forward, [EthiCS'22]
  Yiming Zhang, Mingxuan Liu, Mingming Zhang, Chaoyi Lu, Haixin Duan

• ValCAT: Generating Variable-Length Contextualized Adversarial Transformations using Encoder-Decode, [NAACL'22]
  Chuyun Deng, Mingxuan Liu, Yue Qin, Jia Zhang, Haixin Duan, Donghong Sun
  (Acceptance rate: 26%)

• Detecting and Characterizing SMS Spearphising Attacks, [ACSAC'21]
  Mingxuan Liu, Yiming Zhang, Baojun Liu, Zhou Li, Haixin Duan, Donghong Sun
  (Acceptance rate: 24.5%)

• Argot: Generating Adversarial Readable Chinese Texts, [IJCAI'20]
  *Zihan Zhang, *Mingxuan Liu, Chao Zhang, Yiming Zhang, Zhou Li, Qi Li, Haixin Duan and Donghong Sun
  (* are co-first authors.)
  (Acceptance rate: 12.6%)

• Lies in the Air: Characterizing Fake-base-station Spam Ecosystem in China, [ACM CCS'20]
  Yiming Zhang, Baojun Liu, Chaoyi Lu, Zhou Li, Haixin Duan, Shuang Hao, Mingxuan Liu, Ying Liu, Dong Wang and Qiang Li
  Released Dataset
  (Acceptance rate: 16.9%)

• Casino Royale: A Deep Exploration of Illegal Online Gambling, [ACSAC'19]
  Hao Yang, Kun Du, Yubao Zhang, Shuang Hao, Zhou Li, Mingxuan Liu, Haining Wang, Haixin Duan, Yazhou Shi, Xiaodong Su, Guang Liu and Zhifeng Geng
  (Acceptance rate: 22.6%)

• TL;DR Hazard: A Comprehensive Study of Levelsquatting Scams, [SecureComm'19]
  Kun Du, Hao Yang, Zhou Li, Haixin Duan, Shuang Hao, Baojun Liu, Yuxiao Ye, Mingxuan Liu, Xiaodong Su, Guang Liu, Zhifeng Geng, Zaifeng Zhang and Jinjin Liang
  (Acceptance rate: 37.6%)

Jounal (1)

• Automatic Generation of Adversarial Readable Chinese Texts, [TDSC'22]
  Mingxuan Liu, Zihan Zhang, Chao Zhang, Yiming Zhang, Zhou Li, Qi Li, Haixin Duan and Donghong Sun

Awards

• Best Student Paper, EthiCS'22 Euro S&P
• 1st prize, Password Intelligence Guessing Competition, the 5th Qiangwangbei 2021 in Hebei
• Third prize, Stealth Challenge Competition, GeekPwn 2019 in Shanghai
• National Scholarships, Ministry of Education of China (MOE) 2015 and 2016

Services

External Reviewer

• SecureComm'23, AsiaCCS'23, TDSC'22, NDSS'22, Euro S&P'22, Esorics'21, siMLA'21, ESORICS'20

Community Service

---

Projects

• Automatic Adversarial Generation Project, [Huawei co.]
  Research on attack and defese technologies on adversarial texts

• Detection of Underground Website based on Natrual Langurage Processing (NLP), [Tsinghua]
  Completion of the website detection section based on semantic similarity comparison
  

• Detection of Malicious Traffic based on Machine Learning Technology, [Huawei co.]
  Completion of detection based on features extracted from HTTP traffic
  

• Detection of Malicious Encrypted Traffic, [Qi’anxin co.]
  Completion of detection system based on TLS flow features