https://blog.trailofbits.com/2026/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/authors/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/c/c++/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/authors/kyle-elliott/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/llvm/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/open-source/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/research-practice/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/reversing/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/2026/04/03/simplifying-mba-obfuscation-with-cobra/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/tool-release/2026-04-03T00:00:00-04:00https://blog.trailofbits.com/categories/blockchain/2026-04-01T00:00:00-04:00https://blog.trailofbits.com/authors/bo-henderson/2026-04-01T00:00:00-04:00https://blog.trailofbits.com/2026/04/01/mutation-testing-for-the-agentic-era/2026-04-01T00:00:00-04:00https://blog.trailofbits.com/categories/mutation-testing/2026-04-01T00:00:00-04:00https://blog.trailofbits.com/categories/ai/2026-03-31T00:00:00-04:00https://blog.trailofbits.com/authors/dan-guido/2026-03-31T00:00:00-04:00https://blog.trailofbits.com/2026/03/31/how-we-made-trail-of-bits-ai-native-so-far/2026-03-31T00:00:00-04:00https://blog.trailofbits.com/categories/artificial-intelligence/2026-03-25T00:00:00-04:00https://blog.trailofbits.com/authors/benjamin-samuels/2026-03-25T00:00:00-04:00https://blog.trailofbits.com/categories/large-language-models/2026-03-25T00:00:00-04:00https://blog.trailofbits.com/2026/03/25/try-our-new-dimensional-analysis-claude-plugin/2026-03-25T00:00:00-04:00https://blog.trailofbits.com/authors/coriolan-pinhas/2026-03-24T00:00:00-04:00https://blog.trailofbits.com/categories/guides/2026-03-24T00:00:00-04:00https://blog.trailofbits.com/2026/03/24/spotting-issues-in-defi-with-dimensional-analysis/2026-03-24T00:00:00-04:00https://blog.trailofbits.com/categories/ethereum/2026-03-11T00:00:00-04:00https://blog.trailofbits.com/2026/03/11/six-mistakes-in-erc-4337-smart-accounts/2026-03-11T00:00:00-04:00https://blog.trailofbits.com/categories/vulnerabilities/2026-03-11T00:00:00-04:00https://blog.trailofbits.com/authors/alessandro-gario/2026-02-25T00:00:00-05:00https://blog.trailofbits.com/categories/linux/2026-02-25T00:00:00-05:00https://blog.trailofbits.com/categories/memory-safety/2026-02-25T00:00:00-05:00https://blog.trailofbits.com/2026/02/25/mquire-linux-memory-forensics-without-external-dependencies/2026-02-25T00:00:00-05:00https://blog.trailofbits.com/categories/audits/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/categories/machine-learning/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/categories/prompt-injection/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/categories/threat-modeling/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/authors/trail-of-bits/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/2026/02/20/using-threat-modeling-and-prompt-injection-to-audit-comet/2026-02-20T00:00:00-05:00https://blog.trailofbits.com/2026/02/18/carelessness-versus-craftsmanship-in-cryptography/2026-02-18T00:00:00-05:00https://blog.trailofbits.com/categories/cryptography/2026-02-18T00:00:00-05:00https://blog.trailofbits.com/authors/opal-wright/2026-02-18T00:00:00-05:00https://blog.trailofbits.com/categories/vulnerability-disclosure/2026-02-18T00:00:00-05:00https://blog.trailofbits.com/2026/01/30/celebrating-our-2025-open-source-contributions/2026-01-30T00:00:00-05:00https://blog.trailofbits.com/categories/compilers/2026-01-30T00:00:00-05:00https://blog.trailofbits.com/authors/emilio-l%C3%B3pez/2026-01-30T00:00:00-05:00https://blog.trailofbits.com/categories/supply-chain/2026-01-30T00:00:00-05:00https://blog.trailofbits.com/2026/01/29/building-cryptographic-agility-into-sigstore/2026-01-29T00:00:00-05:00https://blog.trailofbits.com/authors/riccardo-schirone/2026-01-29T00:00:00-05:00https://blog.trailofbits.com/categories/attacks/2026-01-13T00:00:00-05:00https://blog.trailofbits.com/categories/exploits/2026-01-13T00:00:00-05:00https://blog.trailofbits.com/2026/01/13/lack-of-isolation-in-agentic-browsers-resurfaces-old-vulnerabilities/2026-01-13T00:00:00-05:00https://blog.trailofbits.com/authors/lucas-bourtoule/2026-01-13T00:00:00-05:00https://blog.trailofbits.com/2025/2025-12-31T00:00:00-05:00https://blog.trailofbits.com/2025/12/31/detect-gos-silent-arithmetic-bugs-with-go-panikint/2025-12-31T00:00:00-05:00https://blog.trailofbits.com/categories/go/2025-12-31T00:00:00-05:00https://blog.trailofbits.com/authors/kevin-valerio/2025-12-31T00:00:00-05:00https://blog.trailofbits.com/2025/12/19/can-chatbots-craft-correct-code/2025-12-19T00:00:00-05:00https://blog.trailofbits.com/categories/engineering-practice/2025-12-19T00:00:00-05:00https://blog.trailofbits.com/authors/evan-sultanik/2025-12-19T00:00:00-05:00https://blog.trailofbits.com/categories/program-analysis/2025-12-19T00:00:00-05:00https://blog.trailofbits.com/authors/dominik-czarnota/2025-12-16T00:00:00-05:00https://blog.trailofbits.com/authors/dominik-klemba/2025-12-16T00:00:00-05:00https://blog.trailofbits.com/categories/mitigations/2025-12-16T00:00:00-05:00https://blog.trailofbits.com/2025/12/16/use-gwp-asan-to-detect-exploits-in-production-environments/2025-12-16T00:00:00-05:00https://blog.trailofbits.com/2025/12/12/catching-malicious-package-releases-using-a-transparency-log/2025-12-12T00:00:00-05:00https://blog.trailofbits.com/categories/ecosystem-security/2025-12-12T00:00:00-05:00https://blog.trailofbits.com/authors/facundo-tuesca/2025-12-12T00:00:00-05:00https://blog.trailofbits.com/categories/codeql/2025-12-11T00:00:00-05:00https://blog.trailofbits.com/2025/12/11/introducing-mrva-a-terminal-first-approach-to-codeql-multi-repo-variant-analysis/2025-12-11T00:00:00-05:00https://blog.trailofbits.com/authors/matt-schwager/2025-12-11T00:00:00-05:00https://blog.trailofbits.com/categories/static-analysis/2025-12-11T00:00:00-05:00https://blog.trailofbits.com/2025/12/02/introducing-constant-time-support-for-llvm-to-protect-cryptographic-code/2025-12-02T00:00:00-05:00https://blog.trailofbits.com/authors/julius-alexandre/2025-12-02T00:00:00-05:00https://blog.trailofbits.com/categories/internship-projects/2025-11-18T00:00:00-05:00https://blog.trailofbits.com/authors/markus-schiffermuller/2025-11-18T00:00:00-05:00https://blog.trailofbits.com/2025/11/18/we-found-cryptography-bugs-in-the-elliptic-library-using-wycheproof/2025-11-18T00:00:00-05:00https://blog.trailofbits.com/2025/11/15/level-up-your-solidity-llm-tooling-with-slither-mcp/2025-11-15T00:00:00-05:00https://blog.trailofbits.com/categories/mcp/2025-11-15T00:00:00-05:00https://blog.trailofbits.com/categories/slither/2025-11-15T00:00:00-05:00https://blog.trailofbits.com/2025/11/14/how-we-avoided-side-channels-in-our-new-post-quantum-go-cryptography-libraries/2025-11-14T00:00:00-05:00https://blog.trailofbits.com/categories/post-quantum/2025-11-14T00:00:00-05:00https://blog.trailofbits.com/authors/scott-arciszewski/2025-11-14T00:00:00-05:00https://blog.trailofbits.com/categories/binary-analysis/2025-11-13T00:00:00-05:00https://blog.trailofbits.com/2025/11/13/building-checksec-without-boundaries-with-checksec-anywhere/2025-11-13T00:00:00-05:00https://blog.trailofbits.com/categories/capture-the-flag/2025-11-13T00:00:00-05:00https://blog.trailofbits.com/authors/gabe-sherman/2025-11-13T00:00:00-05:00https://blog.trailofbits.com/authors/anish-naik/2025-11-07T00:00:00-05:00https://blog.trailofbits.com/2025/11/07/balancer-hack-analysis-and-guidance-for-the-defi-ecosystem/2025-11-07T00:00:00-05:00https://blog.trailofbits.com/authors/jim-miller/2025-11-07T00:00:00-05:00https://blog.trailofbits.com/authors/joop-van-de-pol/2025-10-31T00:00:00-04:00https://blog.trailofbits.com/2025/10/31/the-cryptography-behind-electronic-passports/2025-10-31T00:00:00-04:00https://blog.trailofbits.com/categories/zero-knowledge/2025-10-31T00:00:00-04:00https://blog.trailofbits.com/categories/confidential-computing/2025-10-30T00:00:00-04:00https://blog.trailofbits.com/authors/tjaden-hess/2025-10-30T00:00:00-04:00https://blog.trailofbits.com/categories/trusted-execution-environment/2025-10-30T00:00:00-04:00https://blog.trailofbits.com/2025/10/30/vulnerabilities-in-luks2-disk-encryption-for-confidential-vms/2025-10-30T00:00:00-04:00https://blog.trailofbits.com/2025/10/22/prompt-injection-to-rce-in-ai-agents/2025-10-22T00:00:00-04:00https://blog.trailofbits.com/categories/remote-code-execution/2025-10-22T00:00:00-04:00https://blog.trailofbits.com/authors/will-vandevanter/2025-10-22T00:00:00-04:00https://blog.trailofbits.com/authors/jay-little/2025-09-25T00:00:00-04:00https://blog.trailofbits.com/authors/pawe%C5%82-p%C5%82atek/2025-09-25T00:00:00-04:00https://blog.trailofbits.com/2025/09/25/taming-2500-compiler-warnings-with-codeql-an-openvpn2-case-study/2025-09-25T00:00:00-04:00https://blog.trailofbits.com/authors/brad-swain/2025-09-24T00:00:00-04:00https://blog.trailofbits.com/2025/09/24/supply-chain-attacks-are-exploiting-our-assumptions/2025-09-24T00:00:00-04:00https://blog.trailofbits.com/authors/guillermo-larregay/2025-09-18T00:00:00-04:00https://blog.trailofbits.com/2025/09/18/use-mutation-testing-to-find-the-bugs-your-tests-dont-catch/2025-09-18T00:00:00-04:00https://blog.trailofbits.com/authors/boyan-milanov/2025-09-16T00:00:00-04:00https://blog.trailofbits.com/2025/09/16/ficklings-new-ai/ml-pickle-file-scanner/2025-09-16T00:00:00-04:00https://blog.trailofbits.com/2025/09/10/how-sui-move-rethinks-flash-loan-security/2025-09-10T00:00:00-04:00https://blog.trailofbits.com/authors/nicolas-donboly/2025-09-10T00:00:00-04:00https://blog.trailofbits.com/categories/cold-storage/2025-09-05T00:00:00-04:00https://blog.trailofbits.com/2025/09/05/safer-cold-storage-on-ethereum/2025-09-05T00:00:00-04:00https://blog.trailofbits.com/categories/application-security/2025-09-03T00:00:00-04:00https://blog.trailofbits.com/authors/darius-houle/2025-09-03T00:00:00-04:00https://blog.trailofbits.com/2025/09/03/subverting-code-integrity-checks-to-locally-backdoor-signal-1password-slack-and-more/2025-09-03T00:00:00-04:00https://blog.trailofbits.com/authors/aidan-kwok/2025-08-28T00:00:00-04:00https://blog.trailofbits.com/2025/08/28/intern-projects-that-outlived-the-internship/2025-08-28T00:00:00-04:00https://blog.trailofbits.com/categories/working-at-trail-of-bits/2025-08-28T00:00:00-04:00https://blog.trailofbits.com/2025/08/27/implement-eip-7730-today/2025-08-27T00:00:00-04:00https://blog.trailofbits.com/categories/empire-hacking/2025-08-25T00:00:00-04:00https://blog.trailofbits.com/2025/08/25/speedrunning-the-new-york-subway/2025-08-25T00:00:00-04:00https://blog.trailofbits.com/authors/kikimora-morozova/2025-08-21T00:00:00-04:00https://blog.trailofbits.com/authors/suha-sabi-hussain/2025-08-21T00:00:00-04:00https://blog.trailofbits.com/2025/08/21/weaponizing-image-scaling-against-production-ai-systems/2025-08-21T00:00:00-04:00https://blog.trailofbits.com/2025/08/20/marshal-madness-a-brief-history-of-ruby-deserialization-exploits/2025-08-20T00:00:00-04:00https://blog.trailofbits.com/categories/ruby/2025-08-20T00:00:00-04:00https://blog.trailofbits.com/categories/aixcc/2025-08-09T00:00:00-04:00https://blog.trailofbits.com/categories/darpa/2025-08-09T00:00:00-04:00https://blog.trailofbits.com/2025/08/09/trail-of-bits-buttercup-wins-2nd-place-in-aixcc-challenge/2025-08-09T00:00:00-04:00https://blog.trailofbits.com/2025/08/08/buttercup-is-now-open-source/2025-08-08T00:00:00-04:00https://blog.trailofbits.com/authors/michael-brown/2025-08-08T00:00:00-04:00https://blog.trailofbits.com/2025/08/07/aixcc-finals-tale-of-the-tape/2025-08-07T00:00:00-04:00https://blog.trailofbits.com/authors/trent-brunson/2025-08-07T00:00:00-04:00https://blog.trailofbits.com/authors/kevin-higgs/2025-08-06T00:00:00-04:00https://blog.trailofbits.com/2025/08/06/prompt-injection-engineering-for-attackers-exploiting-github-copilot/2025-08-06T00:00:00-04:00https://blog.trailofbits.com/categories/people/2025-08-04T00:00:00-04:00https://blog.trailofbits.com/2025/08/04/uncovering-memory-corruption-in-nvidia-triton-as-a-new-hire/2025-08-04T00:00:00-04:00https://blog.trailofbits.com/categories/education/2025-08-01T00:00:00-04:00https://blog.trailofbits.com/categories/sponsorships/2025-08-01T00:00:00-04:00https://blog.trailofbits.com/2025/08/01/the-unconventional-innovator-scholarship/2025-08-01T00:00:00-04:00https://blog.trailofbits.com/2025/07/31/hijacking-multi-agent-systems-in-your-pajamas/2025-07-31T00:00:00-04:00https://blog.trailofbits.com/categories/multi-agent-systems/2025-07-31T00:00:00-04:00https://blog.trailofbits.com/authors/cliff-smith/2025-07-28T00:00:00-04:00https://blog.trailofbits.com/2025/07/28/we-built-the-security-layer-mcp-always-needed/2025-07-28T00:00:00-04:00https://blog.trailofbits.com/authors/alan-cao/2025-07-25T00:00:00-04:00https://blog.trailofbits.com/categories/conferences/2025-07-25T00:00:00-04:00https://blog.trailofbits.com/2025/07/25/exploiting-zero-days-in-abandoned-hardware/2025-07-25T00:00:00-04:00https://blog.trailofbits.com/authors/will-tan/2025-07-25T00:00:00-04:00https://blog.trailofbits.com/2025/07/23/inside-ethcc8-becoming-a-smart-contract-auditor/2025-07-23T00:00:00-04:00https://blog.trailofbits.com/2025/07/21/detecting-code-copying-at-scale-with-vendetect/2025-07-21T00:00:00-04:00https://blog.trailofbits.com/2025/07/18/building-secure-messaging-is-hard-a-nuanced-take-on-the-bitchat-security-debate/2025-07-18T00:00:00-04:00https://blog.trailofbits.com/authors/andrew-pan/2025-07-08T00:00:00-04:00https://blog.trailofbits.com/2025/07/08/investigate-your-dependencies-with-deptective/2025-07-08T00:00:00-04:00https://blog.trailofbits.com/2025/07/02/buckle-up-buttercup-aixccs-scored-round-is-underway/2025-07-02T00:00:00-04:00https://blog.trailofbits.com/2025/06/25/maturing-your-smart-contracts-beyond-private-key-risk/2025-06-25T00:00:00-04:00https://blog.trailofbits.com/2025/06/17/unexpected-security-footguns-in-gos-parsers/2025-06-17T00:00:00-04:00https://blog.trailofbits.com/authors/vasco-franco/2025-06-17T00:00:00-04:00https://blog.trailofbits.com/authors/joe-doyle/2025-06-10T00:00:00-04:00https://blog.trailofbits.com/2025/06/10/what-we-learned-reviewing-one-of-the-first-dkls23-libraries-from-silence-laboratories/2025-06-10T00:00:00-04:00https://blog.trailofbits.com/2025/05/30/a-deep-dive-into-axioms-halo2-circuits/2025-05-30T00:00:00-04:00https://blog.trailofbits.com/authors/filipe-casal/2025-05-30T00:00:00-04:00https://blog.trailofbits.com/authors/fredrik-dahlgren/2025-05-30T00:00:00-04:00https://blog.trailofbits.com/authors/marc-ilunga/2025-05-30T00:00:00-04:00https://blog.trailofbits.com/categories/policy/2025-05-29T00:00:00-04:00https://blog.trailofbits.com/categories/stablecoins/2025-05-29T00:00:00-04:00https://blog.trailofbits.com/2025/05/29/the-custodial-stablecoin-rekt-test/2025-05-29T00:00:00-04:00https://blog.trailofbits.com/2025/05/14/the-cryptography-behind-passkeys/2025-05-14T00:00:00-04:00https://blog.trailofbits.com/2025/05/02/datasig-fingerprinting-ai/ml-datasets-to-stop-data-borne-attacks/2025-05-02T00:00:00-04:00https://blog.trailofbits.com/authors/alexis-challande/2025-05-01T00:00:00-04:00https://blog.trailofbits.com/2025/05/01/making-pypis-test-suite-81-faster/2025-05-01T00:00:00-04:00https://blog.trailofbits.com/2025/04/30/insecure-credential-storage-plagues-mcp/2025-04-30T00:00:00-04:00https://blog.trailofbits.com/authors/keith-hoodlet/2025-04-30T00:00:00-04:00https://blog.trailofbits.com/2025/04/29/deceiving-users-with-ansi-terminal-codes-in-mcp/2025-04-29T00:00:00-04:00https://blog.trailofbits.com/2025/04/23/how-mcp-servers-can-steal-your-conversation-history/2025-04-23T00:00:00-04:00https://blog.trailofbits.com/2025/04/21/jumping-the-line-how-mcp-servers-can-attack-you-before-you-ever-use-them/2025-04-21T00:00:00-04:00https://blog.trailofbits.com/2025/04/21/kicking-off-aixccs-finals-with-buttercup/2025-04-21T00:00:00-04:00https://blog.trailofbits.com/2025/04/18/sneak-peek-a-new-asn.1-api-for-python/2025-04-18T00:00:00-04:00https://blog.trailofbits.com/authors/william-woodruff/2025-04-18T00:00:00-04:00https://blog.trailofbits.com/2025/04/17/mitigating-elusive-comet-zoom-remote-control-attacks/2025-04-17T00:00:00-04:00https://blog.trailofbits.com/categories/operational-security/2025-04-17T00:00:00-04:00https://blog.trailofbits.com/categories/fuzzing/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/2025/04/09/introducing-a-new-section-on-snapshot-fuzzing-for-kernel-level-testing-in-the-testing-handbook/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/categories/kernel/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/authors/maciej-doma%C5%84ski/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/categories/snapshot-fuzzing/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/categories/testing-handbook/2025-04-09T00:00:00-04:00https://blog.trailofbits.com/categories/benchmarking/2025-03-06T00:00:00-05:00https://blog.trailofbits.com/2025/03/06/benchmarking-opensearch-and-elasticsearch/2025-03-06T00:00:00-05:00https://blog.trailofbits.com/authors/evan-downing/2025-03-06T00:00:00-05:00https://blog.trailofbits.com/2025/03/03/continuous-trail/2025-03-03T00:00:00-05:00https://blog.trailofbits.com/authors/kelly-kaoudis/2025-03-03T00:00:00-05:00https://blog.trailofbits.com/authors/spencer-michaels/2025-03-03T00:00:00-05:00https://blog.trailofbits.com/2025/02/28/threat-modeling-the-trail-of-bits-way/2025-02-28T00:00:00-05:00https://blog.trailofbits.com/2025/02/25/how-threat-modeling-could-have-prevented-the-1.5b-bybit-hack/2025-02-25T00:00:00-05:00https://blog.trailofbits.com/2025/02/21/dont-recurse-on-untrusted-input/2025-02-21T00:00:00-05:00https://blog.trailofbits.com/categories/java/2025-02-21T00:00:00-05:00https://blog.trailofbits.com/categories/recursion/2025-02-21T00:00:00-05:00https://blog.trailofbits.com/2025/02/21/the-1.5b-bybit-hack-the-era-of-operational-security-failures-has-arrived/2025-02-21T00:00:00-05:00https://blog.trailofbits.com/authors/josselin-feist/2025-02-14T00:00:00-05:00https://blog.trailofbits.com/2025/02/14/unleashing-medusa-fast-and-scalable-smart-contract-fuzzing/2025-02-14T00:00:00-05:00https://blog.trailofbits.com/2025/02/13/were-partnering-to-strengthen-tons-defi-ecosystem/2025-02-13T09:00:03-05:00https://blog.trailofbits.com/categories/invariant-development/2025-02-12T09:30:36-05:00https://blog.trailofbits.com/2025/02/12/the-call-for-invariant-driven-development/2025-02-12T09:30:36-05:00https://blog.trailofbits.com/2025/02/05/preventing-account-takeover-on-centralized-cryptocurrency-exchanges-in-2025/2025-02-05T09:00:37-05:00https://blog.trailofbits.com/2025/01/30/pypi-now-supports-archiving-projects/2025-01-30T09:00:22-05:00https://blog.trailofbits.com/2025/01/28/best-practices-for-key-derivation/2025-01-28T09:00:18-05:00https://blog.trailofbits.com/2025/01/23/celebrating-our-2024-open-source-contributions/2025-01-23T09:00:30-05:00https://blog.trailofbits.com/2024/2024-12-11T09:00:59-05:00https://blog.trailofbits.com/2024/12/11/auditing-the-ruby-ecosystems-central-package-repository/2024-12-11T09:00:59-05:00https://blog.trailofbits.com/authors/holly-womack/2024-12-11T09:00:59-05:00https://blog.trailofbits.com/2024/12/09/35-more-semgrep-rules-infrastructure-supply-chain-and-ruby/2024-12-09T09:00:43-05:00https://blog.trailofbits.com/categories/semgrep/2024-12-09T09:00:43-05:00https://blog.trailofbits.com/authors/travis-peters/2024-12-09T09:00:43-05:00https://blog.trailofbits.com/authors/artem-dinaburg/2024-11-19T09:00:37-05:00https://blog.trailofbits.com/2024/11/19/evaluating-solidity-support-in-ai-coding-assistants/2024-11-19T09:00:37-05:00https://blog.trailofbits.com/2024/11/14/attestations-a-new-generation-of-signatures-on-pypi/2024-11-14T09:00:15-05:00https://blog.trailofbits.com/2024/11/13/killing-filecoin-nodes/2024-11-13T06:00:12-05:00https://blog.trailofbits.com/authors/simone-monica/2024-11-13T06:00:12-05:00https://blog.trailofbits.com/authors/artur-cygan/2024-10-31T09:00:18-04:00https://blog.trailofbits.com/2024/10/31/fuzzing-between-the-lines-in-popular-barcode-software/2024-10-31T09:00:18-04:00https://blog.trailofbits.com/2024/10/25/a-deep-dive-into-linuxs-new-mseal-syscall/2024-10-25T09:00:18-04:00https://blog.trailofbits.com/2024/10/10/auditing-gradio-5-hugging-faces-ml-gui-framework/2024-10-10T12:00:29-04:00https://blog.trailofbits.com/2024/10/01/securing-the-software-supply-chain-with-the-slsa-framework/2024-10-01T09:00:58-04:00https://blog.trailofbits.com/2024/09/24/notes-on-aws-nitro-enclaves-attack-surface/2024-09-24T09:00:36-04:00https://blog.trailofbits.com/2024/09/19/announcing-the-trail-of-bits-and-semgrep-partnership/2024-09-19T09:00:30-04:00https://blog.trailofbits.com/2024/09/17/inside-def-con-michael-brown-on-how-ai-ml-is-revolutionizing-cybersecurity/2024-09-17T09:00:08-04:00https://blog.trailofbits.com/2024/09/13/friends-dont-let-friends-reuse-nonces/2024-09-13T09:00:54-04:00https://blog.trailofbits.com/2024/09/10/sanitize-your-c-containers-asan-annotations-step-by-step/2024-09-10T09:00:42-04:00https://blog.trailofbits.com/2024/09/06/unstripping-binaries-restoring-debugging-information-in-gdb-with-pwndbg/2024-09-06T09:00:21-04:00https://blog.trailofbits.com/categories/binary-ninja/2024-09-06T09:00:21-04:00https://blog.trailofbits.com/authors/jason-an/2024-09-06T09:00:21-04:00https://blog.trailofbits.com/authors/peter-goodman/2024-09-05T09:00:11-04:00https://blog.trailofbits.com/2024/09/05/what-would-you-do-with-that-old-gpu/2024-09-05T09:00:11-04:00https://blog.trailofbits.com/2024/08/27/provisioning-cloud-infrastructure-the-wrong-way-but-faster/2024-08-27T09:00:06-04:00https://blog.trailofbits.com/2024/08/21/yolo-is-not-a-valid-hash-construction/2024-08-21T09:00:51-04:00https://blog.trailofbits.com/2024/08/15/we-wrote-the-code-and-the-code-won/2024-08-15T00:00:00-04:00https://blog.trailofbits.com/2024/08/12/trail-of-bits-advances-to-aixcc-finals/2024-08-12T19:23:13-04:00https://blog.trailofbits.com/2024/08/09/trail-of-bits-buttercup-heads-to-darpas-aixcc/2024-08-09T09:10:29-04:00https://blog.trailofbits.com/2024/08/05/cloud-cryptography-demystified-google-cloud-platform/2024-08-05T09:00:03-04:00https://blog.trailofbits.com/2024/07/30/our-audit-of-homebrew/2024-07-30T09:00:34-04:00https://blog.trailofbits.com/authors/justin-jacob/2024-07-25T09:00:36-04:00https://blog.trailofbits.com/2024/07/25/our-crypto-experts-answer-10-key-questions/2024-07-25T09:00:36-04:00https://blog.trailofbits.com/2024/07/12/announcing-aes-gem-aes-with-galois-extended-mode/2024-07-12T09:00:35-04:00https://blog.trailofbits.com/categories/press-release/2024-07-09T07:00:45-04:00https://blog.trailofbits.com/2024/07/09/trail-of-bits-named-a-leader-in-cybersecurity-consulting-services/2024-07-09T07:00:45-04:00https://blog.trailofbits.com/2024/07/05/auditing-the-ask-astro-llm-qa-app/2024-07-05T09:00:28-04:00https://blog.trailofbits.com/2024/07/01/quantum-is-unimportant-to-post-quantum/2024-07-01T09:00:01-04:00https://blog.trailofbits.com/2024/06/24/disarming-fiat-shamir-footguns/2024-06-24T09:00:38-04:00https://blog.trailofbits.com/2024/06/21/eurollvm-2024-trip-report/2024-06-21T09:00:22-04:00https://blog.trailofbits.com/authors/henrich-lauko/2024-06-21T09:00:22-04:00https://blog.trailofbits.com/authors/marek-surovi%C4%8D/2024-06-21T09:00:22-04:00https://blog.trailofbits.com/2024/06/18/themes-from-real-world-crypto-2024/2024-06-18T09:00:27-04:00https://blog.trailofbits.com/2024/06/17/finding-mispriced-opcodes-with-fuzzing/2024-06-17T09:00:43-04:00https://blog.trailofbits.com/authors/max-ammann/2024-06-17T09:00:43-04:00https://blog.trailofbits.com/2024/06/14/understanding-apples-on-device-and-server-foundations-model-release/2024-06-14T16:49:37-04:00https://blog.trailofbits.com/authors/adelin-travers/2024-06-14T15:46:48-04:00https://blog.trailofbits.com/2024/06/14/pcc-bold-step-forward-not-without-flaws/2024-06-14T15:46:48-04:00https://blog.trailofbits.com/2024/06/14/announcing-the-burp-suite-professional-chapter-in-the-testing-handbook/2024-06-14T09:00:23-04:00https://blog.trailofbits.com/2024/06/11/exploiting-ml-models-with-pickle-file-attacks-part-2/2024-06-11T11:00:17-04:00https://blog.trailofbits.com/2024/06/11/exploiting-ml-models-with-pickle-file-attacks-part-1/2024-06-11T09:00:36-04:00https://blog.trailofbits.com/2024/06/07/announcing-ai-ml-safety-and-security-trainings/2024-06-07T09:00:41-04:00https://blog.trailofbits.com/categories/training/2024-06-07T09:00:41-04:00https://blog.trailofbits.com/2024/05/16/understanding-addresssanitizer-better-memory-safety-for-your-code/2024-05-16T09:00:57-04:00https://blog.trailofbits.com/2024/05/14/a-peek-into-build-provenance-for-homebrew/2024-05-14T09:00:05-04:00https://blog.trailofbits.com/authors/joe-sweeney/2024-05-14T09:00:05-04:00https://blog.trailofbits.com/authors/ben-siraphob/2024-05-08T09:30:07-04:00https://blog.trailofbits.com/categories/echidna/2024-05-08T09:30:07-04:00https://blog.trailofbits.com/2024/05/08/using-benchmarks-to-speed-up-echidna/2024-05-08T09:30:07-04:00https://blog.trailofbits.com/authors/francesco-bertolaccini/2024-05-02T09:00:06-04:00https://blog.trailofbits.com/2024/05/02/the-life-and-times-of-an-abstract-syntax-tree/2024-05-02T09:00:06-04:00https://blog.trailofbits.com/2024/04/30/curvance-invariants-unleashed/2024-04-30T09:30:43-04:00https://blog.trailofbits.com/authors/nat-chin/2024-04-30T09:30:43-04:00https://blog.trailofbits.com/2024/04/26/announcing-two-new-lms-libraries/2024-04-26T09:00:32-04:00https://blog.trailofbits.com/authors/will-song/2024-04-26T09:00:32-04:00https://blog.trailofbits.com/2024/04/15/5-reasons-to-strive-for-better-disclosure-processes/2024-04-15T09:00:53-04:00https://blog.trailofbits.com/2024/03/29/introducing-ruzzy-a-coverage-guided-ruby-fuzzer/2024-03-29T09:30:44-04:00https://blog.trailofbits.com/authors/gustavo-grieco/2024-03-22T09:00:28-04:00https://blog.trailofbits.com/authors/tarun-bansal/2024-03-22T09:00:28-04:00https://blog.trailofbits.com/2024/03/22/why-fuzzing-over-formal-verification/2024-03-22T09:00:28-04:00https://blog.trailofbits.com/2024/03/20/streamline-the-static-analysis-triage-process-with-sarif-explorer/2024-03-20T09:30:45-04:00https://blog.trailofbits.com/2024/03/19/read-code-like-a-pro-with-our-weaudit-vscode-extension/2024-03-19T09:30:00-04:00https://blog.trailofbits.com/2024/03/18/releasing-the-attacknet-a-new-tool-for-finding-bugs-in-blockchain-nodes-using-chaos-testing/2024-03-18T09:00:59-04:00https://blog.trailofbits.com/2024/03/13/secure-your-blockchain-project-from-the-start/2024-03-13T09:00:45-04:00https://blog.trailofbits.com/2024/03/11/darpa-awards-1-million-to-trail-of-bits-for-ai-cyber-challenge/2024-03-11T13:46:31-04:00https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/2024-03-08T09:00:48-05:00https://blog.trailofbits.com/2024/03/05/cryptographic-design-review-of-ockam/2024-03-05T09:00:38-05:00https://blog.trailofbits.com/categories/design-review/2024-03-05T09:00:38-05:00https://blog.trailofbits.com/2024/03/04/relishing-new-fickling-features-for-securing-ml-systems/2024-03-04T09:00:44-05:00https://blog.trailofbits.com/2024/03/01/toward-more-effective-curl-fuzzing/2024-03-01T09:30:25-05:00https://blog.trailofbits.com/authors/shaun-mirani/2024-03-01T09:30:25-05:00https://blog.trailofbits.com/authors/troy-sargent/2024-03-01T07:00:42-05:00https://blog.trailofbits.com/2024/03/01/when-try-try-try-again-leads-to-out-of-order-execution-bugs/2024-03-01T07:00:42-05:00https://blog.trailofbits.com/2024/02/28/our-response-to-the-us-armys-rfi-on-developing-aibom-tools-2/2024-02-28T11:30:05-05:00https://blog.trailofbits.com/2024/02/26/circomspect-has-been-integrated-into-the-sindri-cli/2024-02-26T09:00:02-05:00https://blog.trailofbits.com/2024/02/23/continuously-fuzzing-python-c-extensions/2024-02-23T09:30:03-05:00https://blog.trailofbits.com/2024/02/20/breaking-the-shared-key-in-threshold-signature-schemes/2024-02-20T09:30:37-05:00https://blog.trailofbits.com/2024/02/16/a-few-notes-on-aws-nitro-enclaves-images-and-attestation/2024-02-16T09:30:32-05:00https://blog.trailofbits.com/2024/02/14/cloud-cryptography-demystified-amazon-web-services/2024-02-14T09:00:06-05:00https://blog.trailofbits.com/2024/02/12/why-windows-cant-follow-wsl-symlinks/2024-02-12T09:30:25-05:00https://blog.trailofbits.com/categories/windows/2024-02-12T09:30:25-05:00https://blog.trailofbits.com/authors/yarden-shafir/2024-02-12T09:30:25-05:00https://blog.trailofbits.com/2024/02/09/master-fuzzing-with-our-new-testing-handbook-chapter/2024-02-09T09:00:13-05:00https://blog.trailofbits.com/categories/rust/2024-02-09T09:00:13-05:00https://blog.trailofbits.com/2024/02/07/binary-type-inference-in-ghidra/2024-02-07T09:00:39-05:00https://blog.trailofbits.com/authors/ian-smith/2024-02-07T09:00:39-05:00https://blog.trailofbits.com/2024/02/05/improving-the-state-of-cosmos-fuzzing/2024-02-05T09:00:53-05:00https://blog.trailofbits.com/2024/02/02/chaos-communication-congress-37c3-recap/2024-02-02T09:00:01-05:00https://blog.trailofbits.com/categories/dynamic-analysis/2024-01-31T09:30:48-05:00https://blog.trailofbits.com/2024/01/31/introducing-differ-a-new-tool-for-testing-and-validating-transformed-programs/2024-01-31T09:30:48-05:00https://blog.trailofbits.com/2024/01/26/enhancing-trust-for-sgx-enclaves/2024-01-26T09:00:31-05:00https://blog.trailofbits.com/categories/authentication/2024-01-25T09:00:22-05:00https://blog.trailofbits.com/2024/01/25/we-build-x-509-chains-so-you-dont-have-to/2024-01-25T09:00:22-05:00https://blog.trailofbits.com/2024/01/24/celebrating-our-2023-open-source-contributions/2024-01-24T09:00:22-05:00https://blog.trailofbits.com/categories/osquery/2024-01-24T09:00:22-05:00https://blog.trailofbits.com/categories/events/2024-01-18T09:00:38-05:00https://blog.trailofbits.com/2024/01/18/our-thoughts-on-aixccs-competition-format/2024-01-18T09:00:38-05:00https://blog.trailofbits.com/2024/01/17/30-new-semgrep-rules-ansible-java-kotlin-shell-scripts-and-more/2024-01-17T08:30:32-05:00https://blog.trailofbits.com/categories/containers/2024-01-17T08:30:32-05:00https://blog.trailofbits.com/authors/sam-alws/2024-01-17T08:30:32-05:00https://blog.trailofbits.com/authors/heidy-khlaaf/2024-01-16T12:00:39-05:00https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/2024-01-16T12:00:39-05:00https://blog.trailofbits.com/authors/tyler-sorensen/2024-01-16T12:00:39-05:00https://blog.trailofbits.com/2024/01/15/internet-freedom-with-the-open-technology-fund/2024-01-15T08:30:54-05:00https://blog.trailofbits.com/authors/jeff-braswell/2024-01-15T08:30:54-05:00https://blog.trailofbits.com/2024/01/12/how-to-introduce-semgrep-to-your-organization/2024-01-12T09:00:26-05:00https://blog.trailofbits.com/categories/kubernetes/2024-01-09T09:00:08-05:00https://blog.trailofbits.com/2024/01/09/securing-open-source-infrastructure-with-ostif/2024-01-09T09:00:08-05:00https://blog.trailofbits.com/2024/01/02/tag-youre-it-signal-tagging-in-circom/2024-01-02T09:00:01-05:00https://blog.trailofbits.com/2023/2023-12-29T09:00:51-05:00https://blog.trailofbits.com/2023/12/29/billion-times-emptiness/2023-12-29T09:00:51-05:00https://blog.trailofbits.com/2023/12/27/ai-in-windows-investigating-windows-copilot/2023-12-27T00:00:00-05:00https://blog.trailofbits.com/2023/12/26/weve-added-more-content-to-zkdocs/2023-12-26T09:00:59-05:00https://blog.trailofbits.com/2023/12/22/catching-openssl-misuse-using-codeql/2023-12-22T09:00:35-05:00https://blog.trailofbits.com/authors/damien-santiago/2023-12-22T09:00:35-05:00https://blog.trailofbits.com/2023/12/20/summer-associates-2023-recap/2023-12-20T09:00:13-05:00https://blog.trailofbits.com/2023/12/18/a-trail-of-flipping-bits/2023-12-18T08:30:16-05:00https://blog.trailofbits.com/categories/cyber-grand-challenge/2023-12-14T09:00:45-05:00https://blog.trailofbits.com/2023/12/14/darpas-ai-cyber-challenge-were-in/2023-12-14T09:00:45-05:00https://blog.trailofbits.com/2023/12/11/say-hello-to-the-next-chapter-of-the-testing-handbook/2023-12-11T08:30:16-05:00https://blog.trailofbits.com/2023/12/06/publishing-trail-of-bits-codeql-queries/2023-12-06T08:30:25-05:00https://blog.trailofbits.com/2023/11/22/etw-internals-for-security-research-and-forensics/2023-11-22T07:00:12-05:00https://blog.trailofbits.com/2023/11/20/how-cisa-can-improve-oss-security/2023-11-20T09:35:59-05:00https://blog.trailofbits.com/authors/alvin-crighton/2023-11-15T10:15:05-05:00https://blog.trailofbits.com/authors/anusha-ghosh/2023-11-15T10:15:05-05:00https://blog.trailofbits.com/2023/11/15/assessing-the-security-posture-of-a-widely-used-vision-model-yolov7/2023-11-15T10:15:05-05:00https://blog.trailofbits.com/2023/11/14/our-audit-of-pypi/2023-11-14T08:00:37-05:00https://blog.trailofbits.com/2023/11/06/adding-build-provenance-to-homebrew/2023-11-06T00:00:00-05:00https://blog.trailofbits.com/2023/10/30/the-issue-with-ats-in-apples-macos-and-ios/2023-10-30T08:00:57-04:00https://blog.trailofbits.com/authors/will-brattain/2023-10-30T08:00:57-04:00https://blog.trailofbits.com/2023/10/23/numbers-turned-weapons-dos-in-osmosis-math-library/2023-10-23T14:27:31-04:00https://blog.trailofbits.com/2023/10/05/introducing-invariant-development-as-a-service/2023-10-05T08:00:52-04:00https://blog.trailofbits.com/categories/ebpf/2023-09-25T07:00:47-04:00https://blog.trailofbits.com/2023/09/25/pitfalls-of-relying-on-ebpf-for-security-monitoring-and-some-solutions/2023-09-25T07:00:47-04:00https://blog.trailofbits.com/2023/09/20/dont-overextend-your-oblivious-transfer/2023-09-20T08:00:53-04:00https://blog.trailofbits.com/categories/threshold-signatures/2023-09-20T08:00:53-04:00https://blog.trailofbits.com/authors/david-pokora/2023-09-18T08:00:42-04:00https://blog.trailofbits.com/2023/09/18/security-flaws-in-an-sso-plugin-for-caddy/2023-09-18T08:00:42-04:00https://blog.trailofbits.com/authors/brent-pappas/2023-09-11T08:00:12-04:00https://blog.trailofbits.com/2023/09/11/holy-macroni-a-recipe-for-progressive-language-enhancement/2023-09-11T08:00:12-04:00https://blog.trailofbits.com/categories/mlir/2023-09-11T08:00:12-04:00https://blog.trailofbits.com/categories/vast/2023-09-11T08:00:12-04:00https://blog.trailofbits.com/2023/08/29/secure-your-apollo-graphql-server-with-semgrep/2023-08-29T08:00:14-04:00https://blog.trailofbits.com/categories/iverify/2023-08-28T07:00:45-04:00https://blog.trailofbits.com/2023/08/28/iverify-is-now-an-independent-company/2023-08-28T07:00:45-04:00https://blog.trailofbits.com/categories/products/2023-08-28T07:00:45-04:00https://blog.trailofbits.com/2023/08/23/the-engineers-guide-to-blockchain-finality/2023-08-23T07:00:53-04:00https://blog.trailofbits.com/2023/08/14/can-you-pass-the-rekt-test/2023-08-14T04:00:50-04:00https://blog.trailofbits.com/2023/08/09/use-our-suite-of-ebpf-libraries/2023-08-09T06:45:15-04:00https://blog.trailofbits.com/2023/08/02/a-mistake-in-the-bulletproofs-paper-could-have-led-to-the-theft-of-millions-of-dollars/2023-08-02T07:00:30-04:00https://blog.trailofbits.com/2023/07/31/how-ai-will-affect-cybersecurity-what-we-told-the-cftc/2023-07-31T07:00:32-04:00https://blog.trailofbits.com/2023/07/28/the-future-of-clang-based-tooling/2023-07-28T07:00:19-04:00https://blog.trailofbits.com/2023/07/26/announcing-the-trail-of-bits-testing-handbook/2023-07-26T07:00:28-04:00https://blog.trailofbits.com/authors/elvis-skozdopolj/2023-07-21T07:00:31-04:00https://blog.trailofbits.com/2023/07/21/fuzzing-on-chain-contracts-with-echidna/2023-07-21T07:00:31-04:00https://blog.trailofbits.com/2023/07/18/trail-of-bitss-response-to-ostp-national-priorities-for-ai-rfi/2023-07-18T13:46:44-04:00https://blog.trailofbits.com/2023/07/14/evaluating-blockchain-security-maturity/2023-07-14T03:00:03-04:00https://blog.trailofbits.com/2023/07/12/what-we-told-the-cftc-about-crypto-threats/2023-07-12T07:00:13-04:00https://blog.trailofbits.com/2023/07/07/differential-fuzz-testing-upgradeable-smart-contracts-with-diffusc/2023-07-07T07:00:33-04:00https://blog.trailofbits.com/authors/william-bodell/2023-07-07T07:00:33-04:00https://blog.trailofbits.com/2023/06/16/trail-of-bitss-response-to-ntia-ai-accountability-rfc/2023-06-16T08:00:10-04:00https://blog.trailofbits.com/2023/06/15/finding-bugs-with-mlir-and-vast/2023-06-15T07:00:10-04:00https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/2023-05-23T07:00:20-04:00https://blog.trailofbits.com/2023/05/16/real-world-crypto-2023-recap/2023-05-16T09:54:43-04:00https://blog.trailofbits.com/2023/05/15/introducing-windows-notification-facilitys-wnf-code-integrity/2023-05-15T07:00:45-04:00https://blog.trailofbits.com/2023/04/25/loose-code-sinks-nodes/2023-04-25T07:00:57-04:00https://blog.trailofbits.com/2023/04/20/typos-that-omit-security-features-and-how-to-test-for-them/2023-04-20T07:00:08-04:00https://blog.trailofbits.com/2023/04/18/a-winters-tale-improving-types-and-messages-in-gdbs-python-api/2023-04-18T07:00:43-04:00https://blog.trailofbits.com/authors/matheus-branco-borella/2023-04-18T07:00:43-04:00https://blog.trailofbits.com/authors/henrik-brodin/2023-03-30T00:00:00-04:00https://blog.trailofbits.com/2023/03/30/acropalypse-polytracker-blind-spots/2023-03-30T00:00:00-04:00https://blog.trailofbits.com/2023/03/22/codex-and-gpt4-cant-beat-humans-on-smart-contract-audits/2023-03-22T07:00:49-04:00https://blog.trailofbits.com/2023/03/21/circomspect-static-analyzer-circom-more-passes/2023-03-21T08:00:24-04:00https://blog.trailofbits.com/categories/crytic/2023-03-21T08:00:24-04:00https://blog.trailofbits.com/2023/03/14/ai-security-safety-audit-assurance-heidy-khlaaf-odd/2023-03-14T00:00:00-04:00https://blog.trailofbits.com/2023/02/27/reusable-properties-ethereum-contracts-echidna/2023-02-27T08:00:54-05:00https://blog.trailofbits.com/2023/02/23/escaping-well-configured-vscode-extensions-for-profit/2023-02-23T08:00:42-05:00https://blog.trailofbits.com/2023/02/21/vscode-extension-escape-vulnerability/2023-02-21T08:00:50-05:00https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/2023-02-16T08:00:00-05:00https://blog.trailofbits.com/authors/rory-m/2023-02-16T08:00:00-05:00https://blog.trailofbits.com/2023/02/14/curl-audit-fuzzing-libcurl-command-line-interface/2023-02-14T08:00:14-05:00https://blog.trailofbits.com/2023/01/19/ebpf-verifier-harness/2023-01-19T08:00:42-05:00https://blog.trailofbits.com/authors/laura-bauman/2023-01-19T08:00:42-05:00https://blog.trailofbits.com/authors/aaron-lemasters/2023-01-17T08:00:06-05:00https://blog.trailofbits.com/2023/01/17/rpc-investigator-microsoft-windows-remote-procedure-call/2023-01-17T08:00:06-05:00https://blog.trailofbits.com/2023/01/13/sigstore-python/2023-01-13T10:00:58-05:00https://blog.trailofbits.com/2023/01/12/wolfssl-vulnerabilities-tlspuffin-fuzzing-ssh/2023-01-12T00:00:00-05:00https://blog.trailofbits.com/2023/01/10/open-source-contributions-2022/2023-01-10T08:00:32-05:00https://blog.trailofbits.com/authors/samuel-moelius/2023-01-10T08:00:32-05:00https://blog.trailofbits.com/categories/year-in-review/2023-01-10T08:00:32-05:00https://blog.trailofbits.com/2022/2022-12-22T15:10:39-05:00https://blog.trailofbits.com/2022/12/22/curl-security-audit-threat-model/2022-12-22T15:10:39-05:00https://blog.trailofbits.com/authors/nick-selby/2022-12-22T15:10:39-05:00https://blog.trailofbits.com/2022/12/22/syntax-searching-c-c-clang-ast/2022-12-22T08:00:52-05:00https://blog.trailofbits.com/authors/mate-kukri/2022-12-22T08:00:52-05:00https://blog.trailofbits.com/2022/12/20/process-reparenting-microsoft-windows/2022-12-20T08:00:25-05:00https://blog.trailofbits.com/authors/calvin-fong/2022-12-15T08:00:23-05:00https://blog.trailofbits.com/2022/12/15/manitcoreui-symbolic-execution-gui/2022-12-15T08:00:23-05:00https://blog.trailofbits.com/categories/manticore/2022-12-15T08:00:23-05:00https://blog.trailofbits.com/categories/symbolic-execution/2022-12-15T08:00:23-05:00https://blog.trailofbits.com/2022/12/13/manticore-gui-plugin-binary-ninja-ghidra/2022-12-13T08:00:04-05:00https://blog.trailofbits.com/authors/wong-kok-rui/2022-12-13T08:00:04-05:00https://blog.trailofbits.com/2022/12/08/hybrid-echidna-fuzzing-optik-maat/2022-12-08T08:00:36-05:00https://blog.trailofbits.com/authors/tom-malcolm/2022-12-08T08:00:36-05:00https://blog.trailofbits.com/2022/11/29/specialized-zero-knowledge-proof-failures/2022-11-29T07:30:56-05:00https://blog.trailofbits.com/2022/11/15/python-wheels-abi-abi3audit/2022-11-15T07:30:00-05:00https://blog.trailofbits.com/2022/11/14/livestream-workshop-fuzzing-echidna-slither/2022-11-14T08:30:23-05:00https://blog.trailofbits.com/authors/andreas-kellas/2022-11-10T07:30:53-05:00https://blog.trailofbits.com/2022/11/10/divergent-representations-variable-overflows-c-compiler/2022-11-10T07:30:53-05:00https://blog.trailofbits.com/2022/11/08/sigstore-code-signing-verification-software-supply-chain/2022-11-08T07:30:15-05:00https://blog.trailofbits.com/2022/10/25/sqlite-vulnerability-july-2022-library-api/2022-10-25T07:30:10-04:00https://blog.trailofbits.com/authors/andrew-haberlandt/2022-10-12T08:00:55-04:00https://blog.trailofbits.com/2022/10/12/solana-jit-compiler-ebpf-arm64/2022-10-12T08:00:55-04:00https://blog.trailofbits.com/authors/vara-prasad-bandaru/2022-10-05T09:00:42-04:00https://blog.trailofbits.com/2022/10/05/trail-of-bits-internship-blockchain-tealer/2022-10-05T09:00:42-04:00https://blog.trailofbits.com/2022/10/03/semgrep-maching-learning-static-analysis/2022-10-03T09:00:53-04:00https://blog.trailofbits.com/2022/09/15/it-pays-to-be-circomspect/2022-09-15T00:00:43-04:00https://blog.trailofbits.com/authors/alan-chang/2022-08-25T09:00:30-04:00https://blog.trailofbits.com/2022/08/25/magnifier-an-experiment-with-interactive-decompilation/2022-08-25T09:00:30-04:00https://blog.trailofbits.com/authors/alex-groce/2022-08-17T09:00:12-04:00https://blog.trailofbits.com/2022/08/17/using-mutants-to-improve-slither/2022-08-17T09:00:12-04:00https://blog.trailofbits.com/categories/careers/2022-08-12T09:00:13-04:00https://blog.trailofbits.com/2022/08/12/the-road-to-the-apprenticeship/2022-08-12T09:00:13-04:00https://blog.trailofbits.com/2022/07/28/shedding-smart-contract-storage-with-slither/2022-07-28T09:00:07-04:00https://blog.trailofbits.com/2022/07/01/libmagic-the-blathering/2022-07-01T07:00:27-04:00https://blog.trailofbits.com/2022/06/30/a-typical-day-as-a-trail-of-bits-engineer-consultant/2022-06-30T09:00:29-04:00https://blog.trailofbits.com/categories/meta/2022-06-28T09:00:10-04:00https://blog.trailofbits.com/2022/06/28/the-trail-of-bits-hiring-process/2022-06-28T09:00:10-04:00https://blog.trailofbits.com/2022/06/24/managing-risk-in-blockchain-deployments/2022-06-24T09:00:09-04:00https://blog.trailofbits.com/2022/06/21/are-blockchains-decentralized/2022-06-21T05:00:39-04:00https://blog.trailofbits.com/2022/06/20/announcing-the-new-trail-of-bits-podcast/2022-06-20T22:00:42-04:00https://blog.trailofbits.com/categories/podcast/2022-06-20T22:00:42-04:00https://blog.trailofbits.com/authors/adam-meily/2022-06-09T07:00:19-04:00https://blog.trailofbits.com/2022/06/09/themes-from-pycon-us-2022/2022-06-09T07:00:19-04:00https://blog.trailofbits.com/2022/05/17/interactive-decompilation-with-rellic-xref/2022-05-17T07:00:09-04:00https://blog.trailofbits.com/2022/05/03/themes-from-real-world-crypto-2022/2022-05-03T07:00:04-04:00https://blog.trailofbits.com/authors/christian-presa-schnell/2022-04-26T07:00:18-04:00https://blog.trailofbits.com/2022/04/26/improving-the-state-of-go-fuzz/2022-04-26T07:00:18-04:00https://blog.trailofbits.com/2022/04/20/amarna-static-analysis-for-cairo-programs/2022-04-20T07:00:04-04:00https://blog.trailofbits.com/2022/04/18/the-frozen-heart-vulnerability-in-plonk/2022-04-18T07:00:01-04:00https://blog.trailofbits.com/2022/04/15/the-frozen-heart-vulnerability-in-bulletproofs/2022-04-15T07:00:52-04:00https://blog.trailofbits.com/2022/04/14/the-frozen-heart-vulnerability-in-giraults-proof-of-knowledge/2022-04-14T07:00:32-04:00https://blog.trailofbits.com/2022/04/13/part-1-coordinated-disclosure-of-vulnerabilities-affecting-girault-bulletproofs-and-plonk/2022-04-13T07:00:00-04:00https://blog.trailofbits.com/2022/03/25/towards-practical-security-optimizations-for-binaries/2022-03-25T08:58:54-04:00https://blog.trailofbits.com/2022/03/02/optimizing-a-smart-contract-fuzzer/2022-03-02T07:00:33-05:00https://blog.trailofbits.com/2022/02/23/maat-symbolic-execution-made-easy/2022-02-23T07:00:08-05:00https://blog.trailofbits.com/2022/02/01/part-2-rusty-crypto/2022-02-01T07:00:25-05:00https://blog.trailofbits.com/2022/01/26/part-1-the-life-of-an-optimization-barrier/2022-01-26T07:00:35-05:00https://blog.trailofbits.com/2022/01/19/c-your-data-structures-with-rellic-headergen/2022-01-19T07:00:12-05:00https://blog.trailofbits.com/2022/01/11/finding-unhandled-errors-using-codeql/2022-01-11T07:00:58-05:00https://blog.trailofbits.com/authors/stefan-nagy/2022-01-05T07:00:51-05:00https://blog.trailofbits.com/2022/01/05/toward-a-best-of-both-worlds-binary-disassembler/2022-01-05T07:00:51-05:00https://blog.trailofbits.com/2021/2021-12-31T07:00:56-05:00https://blog.trailofbits.com/2021/12/31/celebrating-our-2021-open-source-contributions/2021-12-31T07:00:56-05:00https://blog.trailofbits.com/authors/sam-moelius/2021-12-31T07:00:56-05:00https://blog.trailofbits.com/2021/12/21/disclosing-shamirs-secret-sharing-vulnerabilities-and-announcing-zkdocs/2021-12-21T07:00:04-05:00https://blog.trailofbits.com/2021/12/16/detecting-miso-and-opyns-msg-value-reuse-vulnerability-with-slither/2021-12-16T13:00:49-05:00https://blog.trailofbits.com/2021/12/16/it-depends/2021-12-16T08:00:14-05:00https://blog.trailofbits.com/2021/11/17/mui-visualizing-symbolic-execution-with-manticore-and-binary-ninja/2021-11-17T07:00:55-05:00https://blog.trailofbits.com/2021/11/12/how-to-choose-an-interesting-project/2021-11-12T00:09:53-05:00https://blog.trailofbits.com/2021/11/11/motivating-global-stabilization/2021-11-11T10:39:56-05:00https://blog.trailofbits.com/2021/11/10/announcing-osquery-5-now-with-endpointsecurity-on-macos/2021-11-10T01:05:55-05:00https://blog.trailofbits.com/authors/sharvil-shah/2021-11-10T01:05:55-05:00https://blog.trailofbits.com/authors/philip-wang/2021-11-09T00:45:55-05:00https://blog.trailofbits.com/categories/privacy/2021-11-09T00:45:55-05:00https://blog.trailofbits.com/2021/11/09/privacyraven-implementing-a-proof-of-concept-for-model-inversion/2021-11-09T00:45:55-05:00https://blog.trailofbits.com/2021/11/09/write-rust-lints-without-forking-clippy/2021-11-09T00:30:40-05:00https://blog.trailofbits.com/2021/11/09/all-your-tracing-are-belong-to-bpf/2021-11-09T00:00:00-05:00https://blog.trailofbits.com/authors/alex-useche/2021-11-08T23:28:45-05:00https://blog.trailofbits.com/2021/11/08/discovering-goroutine-leaks-with-semgrep/2021-11-08T23:28:45-05:00https://blog.trailofbits.com/authors/aaron-yoo/2021-04-02T00:52:39-04:00https://blog.trailofbits.com/2021/04/02/solar-context-free-interactive-analysis-for-solidity/2021-04-02T00:52:39-04:00https://blog.trailofbits.com/2021/03/23/a-year-in-the-life-of-a-compiler-fuzzing-campaign/2021-03-23T11:00:37-04:00https://blog.trailofbits.com/authors/allison-husain/2021-03-19T10:00:15-04:00https://blog.trailofbits.com/2021/03/19/un-bee-lievable-performance-fast-coverage-guided-fuzzing-with-honeybee-and-intel-processor-trace/2021-03-19T10:00:15-04:00https://blog.trailofbits.com/2021/03/15/never-a-dill-moment-exploiting-machine-learning-pickle-files/2021-03-15T11:06:18-04:00https://blog.trailofbits.com/authors/paul-kehrer/2021-02-26T10:31:47-05:00https://blog.trailofbits.com/2021/02/26/the-tao-of-continuous-integration/2021-02-26T10:31:47-05:00https://blog.trailofbits.com/2021/02/19/serving-up-zero-knowledge-proofs/2021-02-19T06:59:31-05:00https://blog.trailofbits.com/2021/02/05/confessions-of-a-smart-contract-paper-reviewer/2021-02-05T06:59:10-05:00https://blog.trailofbits.com/2021/02/02/pdf-is-broken-a-justctf-challenge/2021-02-02T07:50:28-05:00https://blog.trailofbits.com/2020/2020-12-16T11:01:55-05:00https://blog.trailofbits.com/2020/12/16/breaking-aave-upgradeability/2020-12-16T11:01:55-05:00https://blog.trailofbits.com/authors/ben-perez/2020-12-14T07:50:27-05:00https://blog.trailofbits.com/2020/12/14/reverie-an-optimized-zero-knowledge-proof-system/2020-12-14T07:50:27-05:00https://blog.trailofbits.com/2020/11/25/high-fidelity-build-instrumentation-with-blight/2020-11-25T09:38:10-05:00https://blog.trailofbits.com/authors/johanna-ratliff/2020-11-24T08:00:04-05:00https://blog.trailofbits.com/2020/11/24/smart-and-simple-ways-to-prevent-symlink-attacks-in-go/2020-11-24T08:00:04-05:00https://blog.trailofbits.com/2020/10/30/good-idea-bad-design-how-the-diamond-standard-falls-short/2020-10-30T13:19:18-04:00https://blog.trailofbits.com/2020/10/23/efficient-audits-with-machine-learning-and-slither-simil/2020-10-23T07:00:51-04:00https://blog.trailofbits.com/authors/sina-pilehchiha/2020-10-23T07:00:51-04:00https://blog.trailofbits.com/2020/10/22/lets-build-a-high-performance-fuzzer-with-gpus/2020-10-22T06:00:14-04:00https://blog.trailofbits.com/authors/ryan-eberhardt/2020-10-22T06:00:14-04:00https://blog.trailofbits.com/2020/10/14/osquery-using-d-bus-to-query-systemd-data/2020-10-14T08:00:17-04:00https://blog.trailofbits.com/authors/rachel-cipkins/2020-10-14T08:00:17-04:00https://blog.trailofbits.com/2020/10/09/detecting-iterator-invalidation-with-codeql/2020-10-09T08:30:22-04:00https://blog.trailofbits.com/2020/10/08/privacyraven-has-left-the-nest/2020-10-08T08:00:36-04:00https://blog.trailofbits.com/2020/08/28/graphtage/2020-08-28T07:00:27-04:00https://blog.trailofbits.com/categories/safedocs/2020-08-28T07:00:27-04:00https://blog.trailofbits.com/2020/08/17/using-echidna-to-test-a-smart-contract-library/2020-08-17T07:00:17-04:00https://blog.trailofbits.com/categories/apple/2020-08-12T01:41:16-04:00https://blog.trailofbits.com/authors/mike-myers/2020-08-12T01:41:16-04:00https://blog.trailofbits.com/categories/sinter/2020-08-12T01:41:16-04:00https://blog.trailofbits.com/2020/08/12/sinter-new-user-mode-security-enforcement-for-macos/2020-08-12T01:41:16-04:00https://blog.trailofbits.com/2020/08/05/accidentally-stepping-on-a-defi-lego/2020-08-05T07:00:03-04:00https://blog.trailofbits.com/authors/sam-sun/2020-08-05T07:00:03-04:00https://blog.trailofbits.com/2020/07/12/new-manticore-verifier-for-smart-contracts/2020-07-12T15:00:46-04:00https://blog.trailofbits.com/2020/06/17/advocating-for-change/2020-06-17T00:00:00-04:00https://blog.trailofbits.com/2020/06/12/upgradeable-contracts-made-safer-with-crytic/2020-06-12T07:50:52-04:00https://blog.trailofbits.com/2020/06/11/ecdsa-handle-with-care/2020-06-11T07:50:20-04:00https://blog.trailofbits.com/2020/06/09/how-to-check-if-a-mutex-is-locked-in-go/2020-06-09T07:50:53-04:00https://blog.trailofbits.com/2020/06/05/breaking-the-solidity-compiler-with-a-fuzzer/2020-06-05T07:50:24-04:00https://blog.trailofbits.com/2020/05/29/detecting-bad-openssl-usage/2020-05-29T07:50:06-04:00https://blog.trailofbits.com/authors/william-wang/2020-05-29T07:50:06-04:00https://blog.trailofbits.com/2020/05/27/verifying-windows-binaries-without-windows/2020-05-27T07:50:31-04:00https://blog.trailofbits.com/2020/05/22/emerging-talent-winternship-2020-highlights/2020-05-22T07:50:14-04:00https://blog.trailofbits.com/2020/05/21/reinventing-vulnerability-disclosure-using-zero-knowledge-proofs/2020-05-21T07:50:27-04:00https://blog.trailofbits.com/2020/05/15/bug-hunting-with-crytic/2020-05-15T07:50:31-04:00https://blog.trailofbits.com/2020/04/23/announcing-the-1st-international-workshop-on-smart-contract-analysis/2020-04-23T07:50:29-04:00https://blog.trailofbits.com/2020/04/17/revisiting-2000-cuts-using-binary-ninjas-new-decompiler/2020-04-17T15:53:10-04:00https://blog.trailofbits.com/authors/ryan-stortz/2020-04-17T15:53:10-04:00https://blog.trailofbits.com/2020/04/07/announcing-our-first-virtual-empire-hacking/2020-04-07T07:00:06-04:00https://blog.trailofbits.com/2020/03/30/an-echidna-for-all-seasons/2020-03-30T07:00:46-04:00https://blog.trailofbits.com/2020/03/23/announcing-the-zeek-agent/2020-03-23T07:00:25-04:00https://blog.trailofbits.com/2020/03/18/financial-cryptography-2020-recap/2020-03-18T07:50:32-04:00https://blog.trailofbits.com/categories/paper-review/2020-03-18T07:50:32-04:00https://blog.trailofbits.com/2020/03/16/real-time-file-monitoring-on-windows-with-osquery/2020-03-16T07:12:42-04:00https://blog.trailofbits.com/2020/03/13/our-full-report-on-the-voatz-mobile-voting-platform/2020-03-13T07:52:37-04:00https://blog.trailofbits.com/2020/03/03/manticore-discovers-the-ens-bug/2020-03-03T14:21:52-05:00https://blog.trailofbits.com/authors/eric-hennenfent/2020-01-31T09:00:26-05:00https://blog.trailofbits.com/2020/01/31/symbolically-executing-webassembly-in-manticore/2020-01-31T09:00:26-05:00https://blog.trailofbits.com/2020/01/23/themes-from-real-world-crypto-2020/2020-01-23T07:00:07-05:00https://blog.trailofbits.com/2020/01/16/exploiting-the-windows-cryptoapi-vulnerability/2020-01-16T11:28:34-05:00https://blog.trailofbits.com/2019/2019-12-09T07:00:52-05:00https://blog.trailofbits.com/authors/jp-smith/2019-12-09T07:00:52-05:00https://blog.trailofbits.com/2019/12/09/introducing-mainnet360-a-joint-economic-and-security-assessment-with-prysm-group/2019-12-09T07:00:52-05:00https://blog.trailofbits.com/2019/11/27/64-bits-ought-to-be-enough-for-anybody/2019-11-27T06:01:30-05:00https://blog.trailofbits.com/2019/11/14/introducing-iverify-the-security-toolkit-for-iphone-users/2019-11-14T09:38:48-05:00https://blog.trailofbits.com/2019/11/13/announcing-the-crytic-10k-research-prize/2019-11-13T07:00:35-05:00https://blog.trailofbits.com/2019/11/11/test-case-reduction/2019-11-11T07:00:11-05:00https://blog.trailofbits.com/authors/robert-tonic/2019-11-07T07:00:06-05:00https://blog.trailofbits.com/2019/11/07/attacking-go-vr-ttps/2019-11-07T07:00:06-05:00https://blog.trailofbits.com/2019/11/01/two-new-tools-that-tame-the-treachery-of-files/2019-11-01T07:00:18-04:00https://blog.trailofbits.com/2019/10/31/destroying-x86_64-instruction-decoders-with-differential-fuzzing/2019-10-31T07:00:01-04:00https://blog.trailofbits.com/2019/10/30/how-safe-browsing-fails-to-protect-user-privacy/2019-10-30T07:00:57-04:00https://blog.trailofbits.com/2019/10/29/grace-hopper-celebration-2019/2019-10-29T11:30:14-04:00https://blog.trailofbits.com/authors/anne-ouyang/2019-10-25T07:00:56-04:00https://blog.trailofbits.com/2019/10/25/formal-analysis-of-the-cbc-casper-consensus-algorithm-with-tla/2019-10-25T07:00:56-04:00https://blog.trailofbits.com/2019/10/24/watch-your-language-our-first-vyper-audit/2019-10-24T07:00:04-04:00https://blog.trailofbits.com/2019/10/04/multi-party-computation-on-machine-learning/2019-10-04T10:13:15-04:00https://blog.trailofbits.com/2019/10/03/tsc-frequency-for-all-better-profiling-and-benchmarking/2019-10-03T06:58:24-04:00https://blog.trailofbits.com/2019/09/27/tethered-jailbreaks-are-back/2019-09-27T15:09:08-04:00https://blog.trailofbits.com/authors/lauren-pearl/2019-09-20T07:00:58-04:00https://blog.trailofbits.com/2019/09/20/querycon-2019-a-turning-point-for-osquery/2019-09-20T07:00:58-04:00https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/2019-09-11T06:50:16-04:00https://blog.trailofbits.com/2019/09/03/deepstate-now-supports-ensemble-fuzzing/2019-09-03T06:50:44-04:00https://blog.trailofbits.com/authors/aditi-gupta/2019-09-02T06:50:31-04:00https://blog.trailofbits.com/categories/mcsema/2019-09-02T06:50:31-04:00https://blog.trailofbits.com/2019/09/02/rewriting-functions-in-compiled-binaries/2019-09-02T06:50:31-04:00https://blog.trailofbits.com/2019/08/30/binary-symbolic-execution-with-klee-native/2019-08-30T06:50:08-04:00https://blog.trailofbits.com/authors/sai-vegasena/2019-08-30T06:50:08-04:00https://blog.trailofbits.com/authors/henry-wildermuth/2019-08-29T06:50:20-04:00https://blog.trailofbits.com/2019/08/29/reverse-taint-analysis-using-binary-ninja/2019-08-29T06:50:20-04:00https://blog.trailofbits.com/authors/patrick-palka/2019-08-26T00:00:00-04:00https://blog.trailofbits.com/2019/08/26/wrappers-delight/2019-08-26T00:00:00-04:00https://blog.trailofbits.com/2019/08/09/a-day-in-the-life-of-alessandro-gario-senior-security-engineer/2019-08-09T08:00:18-04:00https://blog.trailofbits.com/2019/08/08/246-findings-from-our-smart-contract-audits-an-executive-summary/2019-08-08T06:50:40-04:00https://blog.trailofbits.com/authors/chris-evans/2019-08-07T06:50:51-04:00https://blog.trailofbits.com/2019/08/07/from-the-depths-of-counterfeit-smartphones/2019-08-07T06:50:51-04:00https://blog.trailofbits.com/categories/malware/2019-08-07T06:50:51-04:00https://blog.trailofbits.com/2019/08/06/better-encrypted-group-chat/2019-08-06T06:50:24-04:00https://blog.trailofbits.com/authors/michael-rosenberg/2019-08-06T06:50:24-04:00https://blog.trailofbits.com/2019/08/02/crytic-continuous-assurance-for-smart-contracts/2019-08-02T06:50:36-04:00https://blog.trailofbits.com/2019/07/19/understanding-docker-container-escapes/2019-07-19T21:01:09-04:00https://blog.trailofbits.com/2019/07/16/trail-of-bits-named-in-forrester-wave-as-a-leader-in-midsize-cybersecurity-consulting-services/2019-07-16T11:20:19-04:00https://blog.trailofbits.com/2019/07/12/librabft/2019-07-12T06:50:24-04:00https://blog.trailofbits.com/2019/07/08/fuck-rsa/2019-07-08T06:50:43-04:00https://blog.trailofbits.com/2019/07/03/avoiding-smart-contract-gridlock-with-slither/2019-07-03T14:42:53-04:00https://blog.trailofbits.com/authors/rajeev-gopalakrishna/2019-07-03T14:42:53-04:00https://blog.trailofbits.com/2019/07/02/state/2019-07-02T06:50:11-04:00https://blog.trailofbits.com/2019/07/01/siderophile-expose-your-crates-unsafety/2019-07-01T11:30:06-04:00https://blog.trailofbits.com/2019/06/27/use-constexpr-for-faster-smaller-and-safer-code/2019-06-27T06:50:06-04:00https://blog.trailofbits.com/2019/06/26/panicking-the-right-way-in-go/2019-06-26T06:50:58-04:00https://blog.trailofbits.com/authors/carson-harmon/2019-06-25T06:50:21-04:00https://blog.trailofbits.com/2019/06/25/creating-an-llvm-sanitizer-from-hopes-and-dreams/2019-06-25T06:50:21-04:00https://blog.trailofbits.com/2019/06/20/getting-2fa-right-in-2019/2019-06-20T06:50:12-04:00https://blog.trailofbits.com/2019/06/19/trail-of-bits-icse-2019-recap/2019-06-19T10:35:13-04:00https://blog.trailofbits.com/2019/06/18/why-you-should-go-to-querycon-this-week/2019-06-18T06:50:09-04:00https://blog.trailofbits.com/2019/06/17/leaves-of-hash/2019-06-17T06:50:58-04:00https://blog.trailofbits.com/2019/06/07/announcing-manticore-0-3-0/2019-06-07T06:50:57-04:00https://blog.trailofbits.com/2019/05/31/using-osquery-for-remote-forensics/2019-05-31T11:59:48-04:00https://blog.trailofbits.com/2019/05/31/fuzzing-unit-tests-with-deepstate-and-eclipser/2019-05-31T07:00:31-04:00https://blog.trailofbits.com/2019/05/30/announcing-automated-reverse-engineering-trainings/2019-05-30T07:00:28-04:00https://blog.trailofbits.com/authors/josh-watson/2019-05-30T07:00:28-04:00https://blog.trailofbits.com/2019/05/27/slither-the-leading-static-analyzer-for-smart-contracts/2019-05-27T06:30:58-04:00https://blog.trailofbits.com/2019/04/18/announcing-the-community-oriented-osquery-fork-osql/2019-04-18T12:24:51-04:00https://blog.trailofbits.com/2019/04/09/announcing-querycon-2019/2019-04-09T07:50:47-04:00https://blog.trailofbits.com/2019/04/08/user-friendly-fuzzing-with-sienna-locomotive/2019-04-08T07:50:13-04:00https://blog.trailofbits.com/2019/04/01/performing-concolic-execution-on-cryptographic-primitives/2019-04-01T07:50:55-04:00https://blog.trailofbits.com/2019/03/28/fuzzing-in-the-year-2000/2019-03-28T07:50:56-04:00https://blog.trailofbits.com/2019/03/25/what-application-developers-need-to-know-about-tls-early-data-0rtt/2019-03-25T09:00:23-04:00https://blog.trailofbits.com/2019/01/25/symbolic-path-merging-in-manticore/2019-01-25T07:50:16-05:00https://blog.trailofbits.com/authors/vaibhav-sharma/2019-01-25T07:50:16-05:00https://blog.trailofbits.com/2019/01/23/fuzzing-an-api-with-deepstate-part-2/2019-01-23T07:50:06-05:00https://blog.trailofbits.com/2019/01/22/fuzzing-an-api-with-deepstate-part-1/2019-01-22T07:50:21-05:00https://blog.trailofbits.com/authors/akshay-kumar/2019-01-21T07:50:27-05:00https://blog.trailofbits.com/2019/01/21/how-mcsema-handles-c-exceptions/2019-01-21T07:50:27-05:00https://blog.trailofbits.com/2019/01/18/empire-hacking-ethereum-edition-2/2019-01-18T07:50:58-05:00https://blog.trailofbits.com/2019/01/17/how-to-write-a-rootkit-without-really-trying/2019-01-17T07:50:53-05:00https://blog.trailofbits.com/2019/01/14/on-bounties-and-boffins/2019-01-14T06:50:53-05:00https://blog.trailofbits.com/2019/01/02/what-do-la-croix-octonions-and-second-life-have-in-common/2019-01-02T00:00:00-05:00https://blog.trailofbits.com/2018/2018-12-31T06:50:18-05:00https://blog.trailofbits.com/2018/12/31/fuzzing-like-its-1989/2018-12-31T06:50:18-05:00https://blog.trailofbits.com/2018/12/20/10000-research-fellowships-for-underrepresented-talent/2018-12-20T10:00:32-05:00https://blog.trailofbits.com/2018/12/17/csaw-ctf-crypto-challenge-breaking-dsa/2018-12-17T06:50:42-05:00https://blog.trailofbits.com/2018/11/27/10-rules-for-the-secure-use-of-cryptocurrency-hardware-wallets/2018-11-27T06:50:43-05:00https://blog.trailofbits.com/2018/11/19/return-of-the-blockchain-security-empire-hacking/2018-11-19T11:20:10-05:00https://blog.trailofbits.com/2018/11/16/trail-of-bits-devcon-iv-recap/2018-11-16T06:50:22-05:00https://blog.trailofbits.com/2018/11/07/we-crypto-now/2018-11-07T00:00:00-05:00https://blog.trailofbits.com/2018/10/29/how-contract-migration-works/2018-10-29T06:50:16-04:00https://blog.trailofbits.com/authors/sophia-dantoine/2018-10-26T06:50:13-04:00https://blog.trailofbits.com/2018/10/26/the-good-the-bad-and-the-weird/2018-10-26T06:50:13-04:00https://blog.trailofbits.com/2018/10/22/a-guide-to-post-quantum-cryptography/2018-10-22T06:50:12-04:00https://blog.trailofbits.com/2018/10/19/slither-a-solidity-static-analysis-framework/2018-10-19T06:50:09-04:00https://blog.trailofbits.com/2018/10/12/introduction-to-verifiable-delay-functions-vdfs/2018-10-12T06:50:10-04:00https://blog.trailofbits.com/2018/10/05/how-to-spot-good-fuzzing-research/2018-10-05T06:50:52-04:00https://blog.trailofbits.com/2018/10/04/ethereum-security-guidance-for-all/2018-10-04T06:50:23-04:00https://blog.trailofbits.com/2018/09/26/effortless-security-feature-detection-with-winchecksec/2018-09-26T06:50:53-04:00https://blog.trailofbits.com/2018/09/10/protecting-software-against-exploitation-with-darpas-cfar/2018-09-10T09:00:55-04:00https://blog.trailofbits.com/2018/09/06/rattle-an-ethereum-evm-binary-analysis-framework/2018-09-06T02:30:38-04:00https://blog.trailofbits.com/2018/09/05/contract-upgrade-anti-patterns/2018-09-05T06:00:21-04:00https://blog.trailofbits.com/authors/andy-ying/2018-08-23T07:50:39-04:00https://blog.trailofbits.com/2018/08/23/introducing-windows-acl-working-with-acls-in-rust/2018-08-23T07:50:39-04:00https://blog.trailofbits.com/2018/08/22/get-an-open-source-security-multiplier/2018-08-22T00:05:44-04:00https://blog.trailofbits.com/2018/08/14/fault-analysis-on-rsa-signing/2018-08-14T12:39:52-04:00https://blog.trailofbits.com/2018/08/01/bluetooth-invalid-curve-points/2018-08-01T07:05:38-04:00https://blog.trailofbits.com/2018/07/06/optimizing-lifted-bitcode-with-dead-store-elimination/2018-07-06T07:50:11-04:00https://blog.trailofbits.com/authors/tim-alberdingk/2018-07-06T07:50:11-04:00https://blog.trailofbits.com/2018/06/29/trail-of-bits-donates-100000-to-support-young-researchers-through-summercon/2018-06-29T07:50:15-04:00https://blog.trailofbits.com/2018/06/27/announcing-the-trail-of-bits-osquery-support-group/2018-06-27T07:50:53-04:00https://blog.trailofbits.com/2018/06/08/querycon-2018-our-talks-and-takeaways/2018-06-08T07:50:05-04:00https://blog.trailofbits.com/authors/garret-reece/2018-05-30T11:06:46-04:00https://blog.trailofbits.com/2018/05/30/manage-your-fleets-firewalls-with-osquery/2018-05-30T11:06:46-04:00https://blog.trailofbits.com/2018/05/29/manage-santa-within-osquery/2018-05-29T07:50:31-04:00https://blog.trailofbits.com/2018/05/28/collect-ntfs-forensic-information-with-osquery/2018-05-28T12:06:07-04:00https://blog.trailofbits.com/2018/05/03/state-machine-testing-with-echidna/2018-05-03T06:50:48-04:00https://blog.trailofbits.com/2018/04/10/what-do-you-wish-osquery-could-do/2018-04-10T06:50:44-04:00https://blog.trailofbits.com/2018/04/06/how-to-prepare-for-a-security-audit/2018-04-06T06:50:33-04:00https://blog.trailofbits.com/2018/04/04/vulnerability-modeling-with-binary-ninja/2018-04-04T06:50:35-04:00https://blog.trailofbits.com/2018/03/23/use-our-suite-of-ethereum-security-tools/2018-03-23T00:28:08-04:00https://blog.trailofbits.com/2018/03/22/an-accessible-overview-of-meltdown-and-spectre-part-2/2018-03-22T00:00:00-04:00https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/2018-03-15T00:00:00-04:00https://blog.trailofbits.com/2018/03/09/echidna-a-smart-fuzzer-for-ethereum/2018-03-09T13:19:34-05:00https://blog.trailofbits.com/2018/03/08/2017-in-review/2018-03-08T07:50:56-05:00https://blog.trailofbits.com/2018/02/09/parity-technologies-engages-trail-of-bits/2018-02-09T07:50:46-05:00https://blog.trailofbits.com/2018/01/30/an-accessible-overview-of-meltdown-and-spectre-part-1/2018-01-30T07:50:39-05:00https://blog.trailofbits.com/2018/01/23/heavy-lifting-with-mcsema-2-0/2018-01-23T07:50:03-05:00https://blog.trailofbits.com/2017/2017-12-22T07:50:57-05:00https://blog.trailofbits.com/2017/12/22/videos-from-ethereum-focused-empire-hacking/2017-12-22T07:50:57-05:00https://blog.trailofbits.com/2017/12/21/osquery-pain-points/2017-12-21T07:50:08-05:00https://blog.trailofbits.com/2017/12/14/announcing-the-trail-of-bits-osquery-extension-repository/2017-12-14T08:51:41-05:00https://blog.trailofbits.com/2017/11/22/securing-ethereum-at-empire-hacking/2017-11-22T07:50:31-05:00https://blog.trailofbits.com/2017/11/09/how-are-teams-currently-using-osquery/2017-11-09T08:10:26-05:00https://blog.trailofbits.com/2017/11/06/hands-on-the-ethernaut-ctf/2017-11-06T14:32:19-05:00https://blog.trailofbits.com/2017/10/19/trail-of-bits-joins-the-enterprise-ethereum-alliance/2017-10-19T07:50:38-04:00https://blog.trailofbits.com/2017/10/16/our-team-is-growing/2017-10-16T07:50:25-04:00https://blog.trailofbits.com/2017/10/12/ios-jailbreak-detection-toolkit-now-available/2017-10-12T07:50:22-04:00https://blog.trailofbits.com/2017/10/10/tracking-a-stolen-code-signing-certificate-with-osquery/2017-10-10T08:53:35-04:00https://blog.trailofbits.com/2017/08/02/microsoft-didnt-sandbox-windows-defender-so-i-did/2017-08-02T06:50:55-04:00https://blog.trailofbits.com/2017/07/30/an-extra-bit-of-analysis-for-clemency/2017-07-30T18:41:30-04:00https://blog.trailofbits.com/authors/douglas-gastonguay/2017-05-15T07:50:05-04:00https://blog.trailofbits.com/2017/05/15/magic-with-manticore/2017-05-15T07:50:05-04:00https://blog.trailofbits.com/2017/04/27/manticore-symbolic-execution-for-humans/2017-04-27T00:00:00-04:00https://blog.trailofbits.com/authors/mark-mossberg/2017-04-27T00:00:00-04:00https://blog.trailofbits.com/2017/04/14/a-walk-down-memory-lane/2017-04-14T06:50:11-04:00https://blog.trailofbits.com/2017/03/23/april-means-infiltrate/2017-03-23T06:50:49-04:00https://blog.trailofbits.com/2017/03/14/mcsema-im-liftin-it/2017-03-14T06:50:41-04:00https://blog.trailofbits.com/2017/02/20/the-challenges-of-deploying-security-mitigations/2017-02-20T09:15:41-05:00https://blog.trailofbits.com/2017/02/16/the-smart-fuzzer-revolution/2017-02-16T06:50:08-05:00https://blog.trailofbits.com/2017/02/13/devirtualizing-c-with-binary-ninja/2017-02-13T06:50:32-05:00https://blog.trailofbits.com/2017/01/31/breaking-down-binary-ninjas-low-level-il/2017-01-31T06:50:09-05:00https://blog.trailofbits.com/2017/01/09/2016-year-in-review/2017-01-09T08:28:15-05:00https://blog.trailofbits.com/2016/2016-12-27T06:00:29-05:00https://blog.trailofbits.com/2016/12/27/lets-talk-about-cfi-microsoft-edition/2016-12-27T06:00:29-05:00https://blog.trailofbits.com/2016/12/12/meet-algo-the-vpn-that-works/2016-12-12T07:50:41-05:00https://blog.trailofbits.com/2016/11/02/shin-grr-make-fuzzing-fast-again/2016-11-02T07:50:40-04:00https://blog.trailofbits.com/2016/10/26/come-find-us-at-oreilly-security/2016-10-26T07:50:09-04:00https://blog.trailofbits.com/2016/10/17/lets-talk-about-cfi-clang-edition/2016-10-17T07:50:15-04:00https://blog.trailofbits.com/2016/10/04/first-ever-automated-code-audit/2016-10-04T07:50:46-04:00https://blog.trailofbits.com/2016/09/27/windows-network-security-now-easier-with-osquery/2016-09-27T07:50:01-04:00https://blog.trailofbits.com/2016/09/12/plug-into-new-yorks-infosec-community/2016-09-12T07:00:35-04:00https://blog.trailofbits.com/2016/08/09/work-for-us-fall-and-winter-internship-opportunities/2016-08-09T07:50:59-04:00https://blog.trailofbits.com/2016/08/02/engineering-solutions-to-hard-program-analysis-problems/2016-08-02T07:50:34-04:00https://blog.trailofbits.com/2016/08/01/your-tool-works-better-than-mine-prove-it/2016-08-01T07:50:18-04:00https://blog.trailofbits.com/2016/07/11/why-i-didnt-catch-any-pokemon-today/2016-07-11T23:37:27-04:00https://blog.trailofbits.com/2016/06/28/start-using-the-secure-enclave-crypto-api/2016-06-28T07:50:42-04:00https://blog.trailofbits.com/2016/06/23/its-time-to-take-ownership-of-our-image/2016-06-23T07:50:59-04:00https://blog.trailofbits.com/2016/06/03/2000-cuts-with-binary-ninja/2016-06-03T00:00:00-04:00https://blog.trailofbits.com/2016/05/19/empire-hacking-turns-one/2016-05-19T07:50:13-04:00https://blog.trailofbits.com/2016/05/18/protofuzz-a-protobuf-fuzzer/2016-05-18T07:50:57-04:00https://blog.trailofbits.com/authors/yan-ivnitskiy/2016-05-18T07:50:57-04:00https://blog.trailofbits.com/2016/05/05/the-dbirs-forest-of-exploit-signatures/2016-05-05T16:56:12-04:00https://blog.trailofbits.com/2016/04/01/hacker-handle-bounty/2016-04-01T07:50:44-04:00https://blog.trailofbits.com/2016/03/09/the-problem-with-dynamic-program-analysis/2016-03-09T13:53:34-05:00https://blog.trailofbits.com/2016/02/17/apple-can-comply-with-the-fbi-court-order/2016-02-17T02:42:34-05:00https://blog.trailofbits.com/2016/02/09/tidas-a-new-service-for-building-password-less-apps/2016-02-09T06:50:54-05:00https://blog.trailofbits.com/2016/02/04/join-us-at-code-as-craft/2016-02-04T07:50:24-05:00https://blog.trailofbits.com/2016/02/02/software-security-ideas-ahead-of-their-time/2016-02-02T07:50:18-05:00https://blog.trailofbits.com/2016/01/13/hacking-for-charity-automated-bug-finding-in-libotr/2016-01-13T07:50:25-05:00https://blog.trailofbits.com/2016/01/07/2015-in-review/2016-01-07T00:00:00-05:00https://blog.trailofbits.com/2016/01/05/lets-encrypt-the-internet/2016-01-05T07:50:59-05:00https://blog.trailofbits.com/2015/2015-12-15T08:00:24-05:00https://blog.trailofbits.com/2015/12/15/self-hosted-video-chat-with-tuber/2015-12-15T08:00:24-05:00https://blog.trailofbits.com/2015/10/30/why-we-give-so-much-to-csaw/2015-10-30T00:00:00-04:00https://blog.trailofbits.com/authors/loren-maggiore/2015-09-10T07:50:45-04:00https://blog.trailofbits.com/2015/09/10/summer-trail-of-bits/2015-09-10T07:50:45-04:00https://blog.trailofbits.com/2015/09/09/flare-on-reversing-challenges-2015/2015-09-09T07:50:00-04:00https://blog.trailofbits.com/2015/07/21/hardware-side-channels-in-the-cloud/2015-07-21T07:50:01-04:00https://blog.trailofbits.com/2015/07/15/how-we-fared-in-the-cyber-grand-challenge/2015-07-15T07:00:09-04:00https://blog.trailofbits.com/2015/07/07/how-to-harden-your-google-apps/2015-07-07T14:52:12-04:00https://blog.trailofbits.com/2015/06/08/introducing-the-rubysec-field-guide/2015-06-08T07:50:54-04:00https://blog.trailofbits.com/2015/05/13/closing-the-windows-gap/2015-05-13T17:26:29-04:00https://blog.trailofbits.com/2015/05/05/empire-hacking/2015-05-05T14:50:58-04:00https://blog.trailofbits.com/2015/01/05/the-foundation-of-2015-2014-in-review/2015-01-05T07:50:00-05:00https://blog.trailofbits.com/2014/2014-12-04T08:50:36-05:00https://blog.trailofbits.com/2014/12/04/close-encounters-with-symbolic-execution-part-2/2014-12-04T08:50:36-05:00https://blog.trailofbits.com/2014/11/25/close-encounters-with-symbolic-execution/2014-11-25T08:50:54-05:00https://blog.trailofbits.com/2014/10/02/threads-14-scaling-security/2014-10-02T08:00:20-04:00https://blog.trailofbits.com/2014/09/29/nyu-womens-cybersecurity-symposium/2014-09-29T08:50:11-04:00https://blog.trailofbits.com/2014/09/02/enabling-two-factor-authentication-2fa-for-apple-id-and-dropbox/2014-09-02T17:00:37-04:00https://blog.trailofbits.com/authors/nick-depetrillo/2014-09-02T17:00:37-04:00https://blog.trailofbits.com/2014/08/20/remastering-applications-by-obfuscating-during-compilation/2014-08-20T08:50:45-04:00https://blog.trailofbits.com/2014/08/07/mcsema-is-officially-open-source/2014-08-07T08:50:47-04:00https://blog.trailofbits.com/2014/08/01/education-initiative-spotlight-threads-call-for-papers/2014-08-01T08:50:49-04:00https://blog.trailofbits.com/2014/07/30/education-initiative-spotlight-build-it-break-it/2014-07-30T02:10:03-04:00https://blog.trailofbits.com/2014/07/28/education-initiative-spotlight-csaw-summer-program-for-women/2014-07-28T08:50:00-04:00https://blog.trailofbits.com/2014/07/15/trail-of-bits-adds-mobile-security-researcher-nicholas-depetrillo-to-growing-team/2014-07-15T08:50:09-04:00https://blog.trailofbits.com/2014/06/23/a-preview-of-mcsema/2014-06-23T09:00:21-04:00https://blog.trailofbits.com/2014/06/04/weve-moved/2014-06-04T00:00:00-04:00https://blog.trailofbits.com/2014/06/03/dear-darpa-challenge-accepted/2014-06-03T18:45:41-04:00https://blog.trailofbits.com/2014/05/20/trail-of-bits-releases-capture-the-flag-field-guide/2014-05-20T09:00:33-04:00https://blog.trailofbits.com/authors/andrew-ruef/2014-04-27T12:25:50-04:00https://blog.trailofbits.com/2014/04/27/using-static-analysis-and-clang-to-find-heartbleed/2014-04-27T12:25:50-04:00https://blog.trailofbits.com/2014/02/24/introducing-javelin/2014-02-24T08:44:38-05:00https://blog.trailofbits.com/2014/02/23/semantic-analysis-of-native-programs-introducing-codereason/2014-02-23T22:59:13-05:00https://blog.trailofbits.com/2013/2013-07-24T12:53:09-04:00https://blog.trailofbits.com/2013/07/24/iverify-is-now-available-on-github/2013-07-24T12:53:09-04:00https://blog.trailofbits.com/2013/06/03/free-ruby-security-workshop/2013-06-03T12:15:50-04:00https://blog.trailofbits.com/2013/05/20/writing-exploits-with-the-elderwood-kit-part-2/2013-05-20T11:34:05-04:00https://blog.trailofbits.com/2013/05/14/writing-exploits-with-the-elderwood-kit-part-1/2013-05-14T12:00:57-04:00https://blog.trailofbits.com/2013/05/13/elderwood-and-the-department-of-labor-hack/2013-05-13T12:00:10-04:00https://blog.trailofbits.com/2012/2012-10-29T11:36:24-04:00https://blog.trailofbits.com/2012/10/29/ending-the-love-affair-with-exploitshield/2012-10-29T11:36:24-04:00https://blog.trailofbits.com/authors/alex-sotirov/2012-06-11T15:59:47-04:00https://blog.trailofbits.com/2012/06/11/analyzing-the-md5-collision-in-flame/2012-06-11T15:59:47-04:00https://blog.trailofbits.com/tags/