Hi there, I'm Emanuel! Online I mostly go by rolbk. I'm a security researcher finishing my MSc in Cyber Security at ETH Zürich - this account collects my public research, tooling, and side projects.
- Master's thesis (Google × ETH COMSEC): a Spectre fuzzer built on a high-fidelity speculation detector, driving AMD's Debug State Machine through custom microcode (EntrySign). It re-detects Spectre v1/v2, Retbleed, and Phantom - with the fuzzing campaign for novel gadgets currently running. Fixes from this work landed upstream in google/security-research (zentool).
- AOSP-fuzzer-autogen: automated fuzz-harness generation for Android system services (AIDL + libFuzzer), built with the HexHive lab at EPFL.
- CTF: playing pwn with 0rganizers - including DEF CON CTF Finals 2025 in Las Vegas. Occasional writeups on my blog.
- SCION: merged upstream contributions (standalone daemon mode, library refactoring) from my work at ETH's Network Security Group.
- Kathará: merged PRs across the network-emulation framework - core, Docker images (SCION support), and the lab checker (OSPF/SCION/HTTP checks) powering ETH's networking labs for 350+ students.
- BoostHut: Barnes-Hut N-body simulation, microarchitecturally optimized - cache-aware data layout, SIMD, and per-hotspot profiling.
- VitalVision: mobile platform for wearable ECG/PPG signal validation - my BSc thesis, written at ETH's SIPLAB.
Everything else - small tools, experiments, and archived history - lives in my repositories list. My fully open-source, no-cloud smart home (including the electrically extendable sofa) lives over on the blog.
Proficient with C / Python / Go / Swift / Kotlin. Reversing and pwning with IDA / Ghidra / Frida / pwntools / gdb. Fuzzing with libFuzzer / AFL++. Having fun with Rust / Nix / Typst! Occasionally you'll find me using Java / Docker / K8s / Proxmox / PostgreSQL / LaTeX / a soldering iron ;-)

