WSPR | Wolfpack Security and Privacy Research Laboratory

image-title-here

Wolfpack Security and Privacy Research Lab

Welcome to the Wolfpack Security and Privacy Research (WSPR) Laboratory in the department of Computer Science at North Carolina State University.

The WSPR Laboratory (pronounced “whisper”) models, designs, builds, and validates technology that protects users, systems, and networks from malicious and privacy-infringing acts. The group’s seven faculty members and affiliated students work on all areas of cybersecurity, from designing new cryptographic constructs to ensure protected execution of code to empirical studies on how software is secured by developers; from finding flaws in existing operating systems to building systems resilient from known attacks; from detecting malicious activity such as malware and denial of service attacks to building networks and mechanisms to prevent abuse. The WSPR Lab works to secure all types of computer systems, from legacy telephone networks to emerging technologies like smartphones and Internet of Things devices.

How to Get Involved

If you are a student at NCSU and are interested in …

cybersecurity research, look at the research page and the web pages of the WSPR Faculty and feel free to contact them directly.
cybersecurity skills, get involved with the NCSU HackPack club run by Dr. Kapravelos. Join the discord server for more information.

If you are an industry organization seeking to collaborate, look at the research page and the web pages of the WSPR Faculty and feel free to contact them directly. You may also email our general contact alias, csc-wspr-lab@ncsu.edu.

Recent News

September 25, 2025: Our paper, Which Is Better For Reducing Outdated And Vulnerable Dependencies: Pinning Or Floating? has been accepted for publication at the 2025 IEEE/ACM International Conference on Automated Software Engineering (ASE)

Septeber 9, 2025: Our paper, Cosseter: GitHub Actions Permission Reduction Using Demand-Driven Static Analysis has been accepted for publicaton at the 2026 IEEE Symposium on Security and Privacy (S&P)

Septeber 9, 2025: Our paper, Fizzle: A Framework for Deterministic and Reproducible Network Fuzzing has been accepted for publicaton at the 2026 IEEE Symposium on Security and Privacy (S&P)

July 10, 2025: Our paper, How to Recover a Cryptographic Secret From the Cloud has been accepted for publication at the 2025 ACM Conference on Computer and Communications Security (CCS).

June 6, 2025: Our paper, Context Matters: Qualitative Insights into Developers' Approaches and Challenges with Software Composition Analysis has been accepted for publication at the 2025 USENIX Security Symposium.

(more news)