Trail of Bits Blog

Menu

Skip to content

Home

Category Archives: Vulnerability Disclosure

The issue with ATS in Apple’s macOS and iOS October 30, 2023

Numbers turned weapons: DoS in Osmosis’ math library October 23, 2023

Security flaws in an SSO plugin for Caddy September 18, 2023

The Engineer’s Guide to Blockchain Finality August 23, 2023

Escaping well-configured VSCode extensions (for profit) February 23, 2023

Escaping misconfigured VSCode extensions February 21, 2023

Keeping the wolves out of wolfSSL January 12, 2023

Specialized Zero-Knowledge Proof failures November 29, 2022

Stranger Strings: An exploitable flaw in SQLite October 25, 2022

Coordinated disclosure of vulnerabilities affecting Girault, Bulletproofs, and PlonK April 13, 2022

Post navigation

← Older posts

Search

About Us

Since 2012, Trail of Bits has helped secure some of the world’s most targeted organizations and products. We combine high-end security research with a real world attacker mentality to reduce risk and fortify code.

Read more at www.trailofbits.com

Subscribe via RSS

Recent Posts

ETW internals for security research and forensics
How CISA can improve OSS security
Assessing the security posture of a widely used vision model: YOLOv7
Our audit of PyPI
Adding build provenance to Homebrew
The issue with ATS in Apple’s macOS and iOS
Numbers turned weapons: DoS in Osmosis’ math library
Introducing invariant development as a service
Pitfalls of relying on eBPF for security monitoring (and some solutions)
Don’t overextend your Oblivious Transfer
Security flaws in an SSO plugin for Caddy
Holy Macroni! A recipe for progressive language enhancement
Secure your Apollo GraphQL server with Semgrep
iVerify is now an independent company!
The Engineer’s Guide to Blockchain Finality

Yearly Archive

2023
2022
2021
2020
2019
2018
2017
2016
2015
2014
2013
2012

Categories

Trail of Bits Blog

Proudly powered by WordPress Theme: Everyday.

Loading Comments...

Write a Comment...

Email (Required)

Name (Required)

Website