all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
All InfoSec / Cybersecurity News

Source: blog.trailofbits.com / Trail of Bits Blog

https://blog.trailofbits.com
Follow source RSS
Pitfalls of relying on eBPF for security monitoring (and some solutions) 19 hours ago | blog.trailofbits.com
berkeley packet filter cilium dark ebpf +16
Don’t overextend your Oblivious Transfer 5 days, 18 hours ago | blog.trailofbits.com
attacker attacks don ecdsa +15
Security flaws in an SSO plugin for Caddy 1 week ago | blog.trailofbits.com
access applications attacks audits +30
Holy Macroni! A recipe for progressive language enhancement 2 weeks ago | blog.trailofbits.com
analysis clang code cpp +12
Secure your Apollo GraphQL server with Semgrep 3 weeks, 6 days ago | blog.trailofbits.com
apollo apollo graphql auditing clients +10
iVerify is now an independent company! 4 weeks ago | blog.trailofbits.com
bits data house iverify +13
The Engineer’s Guide to Blockchain Finality 1 month ago | blog.trailofbits.com
applications block blockchain cost +13
Can you pass the Rekt test? 1 month, 1 week ago | blog.trailofbits.com
address bits blockchain ceo +22
Use our suite of eBPF libraries 1 month, 2 weeks ago | blog.trailofbits.com
applications bits challenges code +16
A mistake in the bulletproofs paper could have led to the theft of millions of … 1 month, 3 weeks ago | blog.trailofbits.com
confidential critical critical vulnerability cryptography +13
How AI will affect cybersecurity: What we told the CFTC 1 month, 3 weeks ago | blog.trailofbits.com
advisory balance ceo cftc +17
The future of Clang-based tooling 1 month, 4 weeks ago | blog.trailofbits.com
book clang compiler compilers +9
Announcing the Trail of Bits Testing Handbook 1 month, 4 weeks ago | blog.trailofbits.com
analysis bits developers dynamic +11
Fuzzing on-chain contracts with Echidna 2 months ago | blog.trailofbits.com
blockchain code contract contracts +16
Trail of Bits’s Response to OSTP National Priorities for AI RFI 2 months, 1 week ago | blog.trailofbits.com
bits development information machine learning +18
Evaluating blockchain security maturity 2 months, 1 week ago | blog.trailofbits.com
address audits blockchain bugs +15
What we told the CFTC about blockchain threats 2 months, 1 week ago | blog.trailofbits.com
advisory agency blockchain ceo +19
Differential fuzz testing upgradeable smart contracts with Diffusc 2 months, 2 weeks ago | blog.trailofbits.com
binance binance coin bnb community +18
Trail of Bits’s Response to NTIA AI Accountability RFC 3 months, 1 week ago | blog.trailofbits.com
accountability administration ai audits artificial +21
Trusted publishing: a new benchmark for packaging security 4 months ago | blog.trailofbits.com
announcement api attacks authentication +21
Real World Crypto 2023 Recap 4 months, 1 week ago | blog.trailofbits.com
asia conference conferences crypto +7
Introducing Windows Notification Facility’s (WNF) Code Integrity 4 months, 1 week ago | blog.trailofbits.com
advanced alpc call code +17
Loose code, sinks nodes: What should governments consider when getting involved with blockchain? 5 months ago | blog.trailofbits.com
academia amp beyond blockchain +22
Typos that omit security features and how to test for them 5 months ago | blog.trailofbits.com
audit audits bugs corruption +13
A Winter’s Tale: Improving messages and types in GDB’s Python API 5 months, 1 week ago | blog.trailofbits.com
api bits debugger gnu +12
How to avoid the aCropalypse 5 months, 3 weeks ago | blog.trailofbits.com
acropalypse cve cve-2023-21036 detect +11
Can you pass The Rekt Test? 6 months ago | blog.trailofbits.com
audits bits current don +13
Codex (and GPT-4) can’t beat humans on smart contract audits 6 months ago | blog.trailofbits.com
artificial artificial intelligence auditing audits +25
Circomspect has more passes! 6 months ago | blog.trailofbits.com
analysis anonymous blockchain crytic +13
We need a new way to measure AI security 6 months, 1 week ago | blog.trailofbits.com
ai security artificial artificial intelligence assessment +18
Reusable properties for Ethereum contracts 6 months, 4 weeks ago | blog.trailofbits.com
blockchain called code community +10
Escaping well-configured VSCode extensions (for profit) 7 months ago | blog.trailofbits.com
browser chromium electron escape +10
Escaping misconfigured VSCode extensions 7 months ago | blog.trailofbits.com
blog bounty bypass cve +11
Readline crime: exploiting a SUID logic bug 7 months, 1 week ago | blog.trailofbits.com
attackers box bug crime +14
cURL audit: How a joke led to significant findings 7 months, 1 week ago | blog.trailofbits.com
audit audits bits command +10
Harnessing the eBPF Verifier 8 months ago | blog.trailofbits.com
bits door ebpf harness +7
Introducing RPC Investigator 8 months, 1 week ago | blog.trailofbits.com
aaron application bits clients +15
Announcing a stable release of sigstore-python 8 months, 1 week ago | blog.trailofbits.com
announcement bits blog client +13
Keeping the wolves out of wolfSSL 8 months, 1 week ago | blog.trailofbits.com
bits blog blog post critical +17
Another prolific year of open-source contributions 8 months, 2 weeks ago | blog.trailofbits.com
bits non pull requests repositories +4
How to share what you’ve learned from our audits 9 months ago | blog.trailofbits.com
audits curl guides share
Fast and accurate syntax searching for C and C++ 9 months ago | blog.trailofbits.com
clang compilers fast
What child is this? 9 months ago | blog.trailofbits.com
child microsoft windows program analysis
How I gave ManticoreUI a makeover 9 months, 1 week ago | blog.trailofbits.com
manticore symbolic execution
Manticore GUIs made easy 9 months, 1 week ago | blog.trailofbits.com
binary ninja ghidra manticore symbolic execution
Hybrid fuzzing: Sharpening the spikes of Echidna 9 months, 2 weeks ago | blog.trailofbits.com
echidna fuzzing hybrid maat +1
Specialized Zero-Knowledge Proof failures 9 months, 3 weeks ago | blog.trailofbits.com
cryptography zero knowledge
ABI compatibility in Python: How hard could it be? 10 months, 1 week ago | blog.trailofbits.com
audits hard python
We’re streamers now 10 months, 1 week ago | blog.trailofbits.com
education events fuzzing guides +4
Look out! Divergent representations are everywhere! 10 months, 2 weeks ago | blog.trailofbits.com
binary ninja codeql divergent internship projects +1
We sign code now 10 months, 2 weeks ago | blog.trailofbits.com
code cryptography products sign
Stranger Strings: An exploitable flaw in SQLite 11 months ago | blog.trailofbits.com
attacks flaw internship projects sqlite +1
We do Windows now 11 months, 1 week ago | blog.trailofbits.com
careers osquery press release research practice +1
Porting the Solana eBPF JIT compiler to ARM64 11 months, 1 week ago | blog.trailofbits.com
arm64 blockchain compiler crytic +5
Working on blockchains as a Trail of Bits intern 11 months, 2 weeks ago | blog.trailofbits.com
bits blockchain blockchains intern +3

Items published with this topic over the last 90 days.

Latest

Pitfalls of relying on eBPF for security monitoring (and some solutions) 19 hours ago | blog.trailofbits.com
berkeley packet filter cilium dark ebpf +16
Don’t overextend your Oblivious Transfer 5 days, 18 hours ago | blog.trailofbits.com
attacker attacks don ecdsa +15
Security flaws in an SSO plugin for Caddy 1 week ago | blog.trailofbits.com
access applications attacks audits +30
Holy Macroni! A recipe for progressive language enhancement 2 weeks ago | blog.trailofbits.com
analysis clang code cpp +12
Secure your Apollo GraphQL server with Semgrep 3 weeks, 6 days ago | blog.trailofbits.com
apollo apollo graphql auditing clients +10
iVerify is now an independent company! 4 weeks ago | blog.trailofbits.com
bits data house iverify +13
The Engineer’s Guide to Blockchain Finality 1 month ago | blog.trailofbits.com
applications block blockchain cost +13
Can you pass the Rekt test? 1 month, 1 week ago | blog.trailofbits.com
address bits blockchain ceo +22
Use our suite of eBPF libraries 1 month, 2 weeks ago | blog.trailofbits.com
applications bits challenges code +16
A mistake in the bulletproofs paper could have led to the theft of millions of … 1 month, 3 weeks ago | blog.trailofbits.com
confidential critical critical vulnerability cryptography +13
How AI will affect cybersecurity: What we told the CFTC 1 month, 3 weeks ago | blog.trailofbits.com
advisory balance ceo cftc +17
The future of Clang-based tooling 1 month, 4 weeks ago | blog.trailofbits.com
book clang compiler compilers +9
Announcing the Trail of Bits Testing Handbook 1 month, 4 weeks ago | blog.trailofbits.com
analysis bits developers dynamic +11
Fuzzing on-chain contracts with Echidna 2 months ago | blog.trailofbits.com
blockchain code contract contracts +16
Trail of Bits’s Response to OSTP National Priorities for AI RFI 2 months, 1 week ago | blog.trailofbits.com
bits development information machine learning +18
Evaluating blockchain security maturity 2 months, 1 week ago | blog.trailofbits.com
address audits blockchain bugs +15
What we told the CFTC about blockchain threats 2 months, 1 week ago | blog.trailofbits.com
advisory agency blockchain ceo +19
Differential fuzz testing upgradeable smart contracts with Diffusc 2 months, 2 weeks ago | blog.trailofbits.com
binance binance coin bnb community +18
Trail of Bits’s Response to NTIA AI Accountability RFC 3 months, 1 week ago | blog.trailofbits.com
accountability administration ai audits artificial +21
Trusted publishing: a new benchmark for packaging security 4 months ago | blog.trailofbits.com
announcement api attacks authentication +21
Real World Crypto 2023 Recap 4 months, 1 week ago | blog.trailofbits.com
asia conference conferences crypto +7
Introducing Windows Notification Facility’s (WNF) Code Integrity 4 months, 1 week ago | blog.trailofbits.com
advanced alpc call code +17
Loose code, sinks nodes: What should governments consider when getting involved with blockchain? 5 months ago | blog.trailofbits.com
academia amp beyond blockchain +22
Typos that omit security features and how to test for them 5 months ago | blog.trailofbits.com
audit audits bugs corruption +13
A Winter’s Tale: Improving messages and types in GDB’s Python API 5 months, 1 week ago | blog.trailofbits.com
api bits debugger gnu +12
How to avoid the aCropalypse 5 months, 3 weeks ago | blog.trailofbits.com
acropalypse cve cve-2023-21036 detect +11
Can you pass The Rekt Test? 6 months ago | blog.trailofbits.com
audits bits current don +13
Codex (and GPT-4) can’t beat humans on smart contract audits 6 months ago | blog.trailofbits.com
artificial artificial intelligence auditing audits +25
Circomspect has more passes! 6 months ago | blog.trailofbits.com
analysis anonymous blockchain crytic +13
We need a new way to measure AI security 6 months, 1 week ago | blog.trailofbits.com
ai security artificial artificial intelligence assessment +18
Reusable properties for Ethereum contracts 6 months, 4 weeks ago | blog.trailofbits.com
blockchain called code community +10
Escaping well-configured VSCode extensions (for profit) 7 months ago | blog.trailofbits.com
browser chromium electron escape +10
Escaping misconfigured VSCode extensions 7 months ago | blog.trailofbits.com
blog bounty bypass cve +11
Readline crime: exploiting a SUID logic bug 7 months, 1 week ago | blog.trailofbits.com
attackers box bug crime +14
cURL audit: How a joke led to significant findings 7 months, 1 week ago | blog.trailofbits.com
audit audits bits command +10
Harnessing the eBPF Verifier 8 months ago | blog.trailofbits.com
bits door ebpf harness +7
Introducing RPC Investigator 8 months, 1 week ago | blog.trailofbits.com
aaron application bits clients +15
Announcing a stable release of sigstore-python 8 months, 1 week ago | blog.trailofbits.com
announcement bits blog client +13
Keeping the wolves out of wolfSSL 8 months, 1 week ago | blog.trailofbits.com
bits blog blog post critical +17
Another prolific year of open-source contributions 8 months, 2 weeks ago | blog.trailofbits.com
bits non pull requests repositories +4
How to share what you’ve learned from our audits 9 months ago | blog.trailofbits.com
audits curl guides share
Fast and accurate syntax searching for C and C++ 9 months ago | blog.trailofbits.com
clang compilers fast
What child is this? 9 months ago | blog.trailofbits.com
child microsoft windows program analysis
How I gave ManticoreUI a makeover 9 months, 1 week ago | blog.trailofbits.com
manticore symbolic execution
Manticore GUIs made easy 9 months, 1 week ago | blog.trailofbits.com
binary ninja ghidra manticore symbolic execution
Hybrid fuzzing: Sharpening the spikes of Echidna 9 months, 2 weeks ago | blog.trailofbits.com
echidna fuzzing hybrid maat +1
Specialized Zero-Knowledge Proof failures 9 months, 3 weeks ago | blog.trailofbits.com
cryptography zero knowledge
ABI compatibility in Python: How hard could it be? 10 months, 1 week ago | blog.trailofbits.com
audits hard python
We’re streamers now 10 months, 1 week ago | blog.trailofbits.com
education events fuzzing guides +4
Look out! Divergent representations are everywhere! 10 months, 2 weeks ago | blog.trailofbits.com
binary ninja codeql divergent internship projects +1
We sign code now 10 months, 2 weeks ago | blog.trailofbits.com
code cryptography products sign
Stranger Strings: An exploitable flaw in SQLite 11 months ago | blog.trailofbits.com
attacks flaw internship projects sqlite +1
We do Windows now 11 months, 1 week ago | blog.trailofbits.com
careers osquery press release research practice +1
Porting the Solana eBPF JIT compiler to ARM64 11 months, 1 week ago | blog.trailofbits.com
arm64 blockchain compiler crytic +5
Working on blockchains as a Trail of Bits intern 11 months, 2 weeks ago | blog.trailofbits.com
bits blockchain blockchains intern +3

Top (last 7 days)

Don’t overextend your Oblivious Transfer 5 days, 18 hours ago | blog.trailofbits.com
attacker attacks don ecdsa +15
Pitfalls of relying on eBPF for security monitoring (and some solutions) 19 hours ago | blog.trailofbits.com
berkeley packet filter cilium dark ebpf +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA
View on infosec-jobs.com

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Chef de projet - Service PKI

@ Alter Solutions | Paris, France
View on infosec-jobs.com
View more jobs