Welcome! I'm Lianglu Pan

Associate Lecturer at The University of Melbourne

My research focuses on scalable techniques for detecting security and privacy vulnerabilities in web applications, with the goal of making real-world web systems more secure.
In education, I aim to translate cutting-edge research into effective teaching practice across a broad range of cybersecurity topics, equipping students with both strong theoretical foundations and practical skills to address security challenges in diverse computing environments.

Research Areas

Web API Testing

Techniques for systematically exercising RESTful and GraphQL APIs to uncover security flaws, data exposure issues, and logic inconsistencies.

Automated Software Testing

Design of scalable fuzzing approaches that automatically explore application behaviours with minimal manual configuration.

Vulnerability Hunting

Practical methods for discovering security vulnerabilities in complex web applications, with a focus on actionable and low-noise findings.

Recent Publications

Trailblazer: Practical End-to-end Web API Fuzzing

Proceedings of the 34th ACM SIGSOFT International Symposium on Software Testing and Analysis • 2025

Edefuzz: A web api fuzzer for excessive data exposures

Proceedings of the 46th IEEE/ACM International Conference on Software Engineering • 2024

Reconstruction of shredded paper documents by feature matching

Mathematical Problems in Engineering • 2014