aligned layer fuzzinglabs security audit bugs vulnerability eigen layer assessment
| | |

Aligned Layer Security Assessment Completed

SECURING THE FUTURE OF ZK PROOFS & ETHEREUM SCALABILITY In-Depth Audit of Aligned Layer’s Smart Contracts and Batch Processing At FuzzingLabs, we recently completed a comprehensive security audit of Aligned Layer, a decentralized network designed to provide fast, efficient, and low-cost verification of zero-knowledge (ZK) and validity proofs on the Ethereum blockchain. This post summarizes the key…

astria astria-geth protobuf
| | | |

When Debug Logs Go Wrong & Crash Your gRPC Node: A Bug in Astria-geth

When Debug Logs Go Wrong & Crash Your gRPC Node Deep Dive into Astria-Geth GRPC Logging Bug In blockchain technology, even small mistakes can cause big problems. Imagine if sending an empty request to a node’s API could crash the entire node. Hard to believe? That’s exactly what we found in the Astria-geth node. In…

fuzzing news newsletter august september 2024
|

Fuzzing News / August & September 2024

Fuzzing Newsletter August & September 2024 📺 Videos/Podcasts Fuzzing for Bugs 🎸🤘 AI-generated Rock Song for Security Researcher 😎 – 📝 Blogposts/Papers/Slides SoK: Where to Fuzz? Assessing Target Selection Methods in Directed Fuzzing – https://www.mlsec.org/docs/2024c-asiaccs.pdf Expand the reach of Fuzzing – https://thuanpv.github.io/publications/NUS_Summer_School_Thuan_Pham_Final_Public.pdf On Understanding and Forecasting Fuzzers Performance with Static Analysis – https://s3.eurecom.fr/docs/ccs24_zhang.pdf Ring Around The Regex: Lessons…

worldcoin optee ord foundation op-tee trusctzone fuzzer fuzzing
| | |

FuzzingLabs and the Worldcoin Foundation Partner to Enhance the Security in the Worldcoin Orb

FuzzingLabs and the Worldcoin Foundation Partner to Enhance the Security in the Worldcoin Orb Introduction We are thrilled to announce an exciting partnership between FuzzingLabs and the Worldcoin Foundation. Fuzzing Labs team, in close collaboration with Worldcoin contributing teams will work on OP-TEE fuzzing enhancing the Worldcoin Orb integrity, protection of biometric data and transaction…

fuzzing news newsletter fuzzinglabs july 2024
|

Newsletter – Fuzzing News / July 2024

📡 [Monthly Fuzzing] July 2024 📺 Videos/Podcasts How to Fuzz Your Way to Android Universal Root: Attacking Android Binder – https://www.youtube.com/watch?v=U-xSM159YLI&list=PLYvhPWR_XYJlg1SfcKdZY6eXUTPPqnh_G&index=9  📝 Blogposts/Papers/Slides Fuzzing embedded systems – Part 1, Introduction – https://blog.sparrrgh.me//fuzzing/embedded/2024/06/05/fuzzing-embedded-systems-1.html Driving forward in Android drivers – https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html Automated security testing of unexplored targets through feedback-guided fuzzing – https://depositonce.tu-berlin.de/items/c3aaf2ec-8036-4651-a609-9c3b11a7f705 Finding mispriced opcodes with fuzzing…

fuzzing news newsletter fuzzinglabs june 2024
|

Newsletter – Fuzzing News / June 2024

📡 [Monthly Fuzzing] June 2024 📺 Videos/Podcasts FuzzyAI: Attacking LLMs With Coverage-Guided Fuzzing – https://youtu.be/hBPiiaUiOH8?si=nUE5JHVrdFxgQbR5 Your NVMe Had Been Syz’ed – https://youtu.be/Jc25CM1Ppgo?si=jsz0Beqpr2nJ6h8g Linux Fuzzing Tutorial with AFL Fuzzer – https://www.youtube.com/watch?v=g6BQ-Ae_E4Q A Bug Hunter’s Reflections on Fuzzing – https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf / https://www.youtube.com/watch?v=wTbFmdx7wG8 📝 Blogposts/Papers/Slides Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller –…

fuzzing news newsletter fuzzinglabs may 2024
|

Newsletter – Fuzzing News / May 2024

📡 [Monthly Fuzzing] May 2024 📺 Videos/Podcasts Discoveries from Analyzing 141 Real-World ZK-SNARK Vulnerabilities! 🧐 – https://youtu.be/oxvcEXha69c https://youtu.be/oxvcEXha69c 📝 Blogposts/Papers/Slides ImageIO, the infamous iOS Zero Click Attack Vector. – https://r00tkitsmm.github.io/fuzzing/2024/03/29/iOSImageIO.html The Windows Registry Adventure #1: Introduction and research results – https://googleprojectzero.blogspot.com/2024/04/the-windows-registry-adventure-1.html A Basic Guide to AFL QEMU – https://medium.com/@cy1337/a-basic-guide-to-afl-qemu-495df504b5fb ⚙️ Tools/Repositories what the fuzz: Linux…

osint ipfs cti invetigation threat intelligence blockchain summit hacklu
| |

IPFS OSINT & Blockchain CTI: Exploring IPFS Data Collection & Analysis [hack.lu 2023]

IPFS OSINT & Blockchain CTI: Exploring IPFS Data Collection & Analysis – hack.lu 2023 Abstract This talk was given at hack.lu 2023, will dive into exclusive data collection and analysis techniques specific to this IPFS. We’ll also briefly tour IPFS’s wide range of applications and provide practical tips and tricks to help you secure your…

sui foundation fuzzinglabs move smart contracts audit fuzz sui-fuzzer
| |

FuzzingLabs and Sui Foundation Partner to Enhance Smart Contract Security

FuzzingLabs and Sui Foundation Partner to Enhance Sui Smart Contract Security Introduction We are thrilled to announce an exciting partnership between FuzzingLabs and the Sui Foundation. Our collaboration is set to bring a revolutionary tool to the world of blockchain – a specialized fuzzer designed for Sui smart contracts, sui-fuzzer. This collaboration marks a significant…