Marius Momeu

Berkeley, California

I am a postdoc researcher in the Sky Computing Lab at UC Berkeley, in Koushik Sen’s group. I completed my PhD summa cum laude at TU Munich in the Chair of IT Security under the supervision of Claudia Eckert. I was also affiliated with Brown University, where I worked closely with Vasileios P. Kemerlis’s group.

My research goal is to make systems software reliable and secure by preventing and detecting flaws that programmers may introduce during development. I am currently building automated AI pipelines that leverage multi-agent orchestration to tackle hard problems in software engineering at scale:

Crustify: Porting large C codebases to Rust (DARPA’s TRACTOR program)
Ryno: Finding and fixing security vulnerabilities in arbitrary software
AI semantic reasoning to enhance testing and fuzzing coverage
KISS Sorcar: AI agent framework and dev assistant

Previously, I worked on hardware-assisted software hardening and vulnerability fuzzing, developing the following tools:

HyperMirage — direct state manipulation for hybrid virtual-CPU fuzzing of hypervisors
IUBIK — isolating user bytes in commodity OS kernels via ARM MTE
SafeSlab — mitigating use-after-free vulnerabilities with Intel MPK
ISLAB — protecting security-critical memory management metadata via Intel SMAP
xMP — selective memory protection for kernel and user space via Intel EPT

News

Apr 01, 2026	Started as a postdoctoral researcher in the Sky Computing Lab at UC Berkeley.
Mar 27, 2026	Successfully defended my PhD thesis summa cum laude at TU Munich.
Feb 23, 2026	HyperMirage appeared at NDSS 2026.
Nov 14, 2025	Presented IUBIK at the CSAW’25 Applied Research Competition final in Valence, France.
May 12, 2025	Presented IUBIK at IEEE S&P 2025.

Selected Publications

S&P

xMP: Selective Memory Protection for Kernel and User Space

Sergej Proskurin, Marius Momeu, Seyedhamed Ghavamnia, Vasileios P. Kemerlis, and Michalis Polychronakis

In IEEE Symposium on Security and Privacy (S&P), May 2020

Bib HTML Code

@inproceedings{proskurin2020xmp,
  title = {xMP: Selective Memory Protection for Kernel and User Space},
  author = {Proskurin, Sergej and Momeu, Marius and Ghavamnia, Seyedhamed and Kemerlis, Vasileios P. and Polychronakis, Michalis},
  booktitle = {IEEE Symposium on Security and Privacy (S&P)},
  pages = {563--577},
  year = {2020},
  month = may,
  organization = {IEEE},
}

CCS

Safeslab: Mitigating Use-After-Free Vulnerabilities via Memory Protection Keys

Marius Momeu, Simon Schnückel, Kai Angnis, Michalis Polychronakis, and Vasileios P. Kemerlis

In ACM SIGSAC Conference on Computer and Communications Security (CCS), Oct 2024

Bib HTML Code

@inproceedings{momeu2024safeslab,
  title = {Safeslab: Mitigating Use-After-Free Vulnerabilities via Memory Protection Keys},
  author = {Momeu, Marius and Schn{\"u}ckel, Simon and Angnis, Kai and Polychronakis, Michalis and Kemerlis, Vasileios P.},
  booktitle = {ACM SIGSAC Conference on Computer and Communications Security (CCS)},
  pages = {1345--1359},
  year = {2024},
  month = oct,
}

ASIACCS

ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels

Marius Momeu, Fabian Kilger, Christopher Roemheld, Simon Schnückel, Sergej Proskurin, Michalis Polychronakis, and Vasileios P. Kemerlis

In ACM Asia Conference on Computer and Communications Security (ASIACCS), Jul 2024

Bib HTML Code

@inproceedings{momeu2024islab,
  title = {ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels},
  author = {Momeu, Marius and Kilger, Fabian and Roemheld, Christopher and Schn{\"u}ckel, Simon and Proskurin, Sergej and Polychronakis, Michalis and Kemerlis, Vasileios P.},
  booktitle = {ACM Asia Conference on Computer and Communications Security (ASIACCS)},
  pages = {1159--1172},
  year = {2024},
  month = jul,
}

S&P

IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions

Marius Momeu, Alexander J. Gaidis, Jasper Heidt, and Vasileios P. Kemerlis

In IEEE Symposium on Security and Privacy (S&P), May 2025

Bib HTML Code

@inproceedings{momeu2025iubik,
  title = {IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions},
  author = {Momeu, Marius and Gaidis, Alexander J. and vd Heidt, Jasper and Kemerlis, Vasileios P.},
  booktitle = {IEEE Symposium on Security and Privacy (S&P)},
  pages = {867--885},
  year = {2025},
  month = may,
  organization = {IEEE},
}

NDSS

HyperMirage: Direct State Manipulation in Hybrid Virtual CPU Fuzzing

Manuel Andreas, Fabian Specht, and Marius Momeu

In Network and Distributed System Security Symposium (NDSS), Feb 2026

Bib HTML Code

@inproceedings{andreas2026hypermirage,
  title = {HyperMirage: Direct State Manipulation in Hybrid Virtual CPU Fuzzing},
  author = {Andreas, Manuel and Specht, Fabian and Momeu, Marius},
  booktitle = {Network and Distributed System Security Symposium (NDSS)},
  year = {2026},
  month = feb,
}