Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederblog.trailofbits.com
Trail of Bits Blog
Get the latest updates from Trail of Bits Blog directly as they happen.
Follow now 660 followers
Latest posts
Last updated about 14 hours ago
How we avoided side-channels in our new post-quantum Go cryptography libraries
about 15 hours ago
The Trail of Bits cryptography team is releasing our open-source pure Go...
Building checksec without boundaries with Checksec Anywhere
1 day ago
Since its original release in 2009, checksec has become widely used in...
Balancer hack analysis and guidance for the DeFi ecosystem
7 days ago
TL;DR The root cause of the hack was a rounding direction issue...
The cryptography behind electronic passports
15 days ago
Did you know that most modern passports are actually embedded devices containing...
Vulnerabilities in LUKS2 disk encryption for confidential VMs
16 days ago
Trail of Bits is disclosing vulnerabilities in eight different confidential computing systems...
Prompt injection to RCE in AI agents
24 days ago
We bypassed human approval protections for system command execution in AI agents...
Taming 2,500 compiler warnings with CodeQL, an OpenVPN2 case study
about 2 months ago
We created a CodeQL query that reduced 2,500+ compiler warnings about implicit...
Supply chain attacks are exploiting our assumptions
about 2 months ago
Supply chain attacks exploit fundamental trust assumptions in modern software development, from...
Use mutation testing to find the bugs your tests don't catch
about 2 months ago
Mutation testing reveals blind spots in test suites by systematically introducing bugs...
Fickling’s new AI/ML pickle file scanner
about 2 months ago
We’ve added a pickle file scanner to Fickling that uses an allowlist...
How Sui Move rethinks flash loan security
2 months ago
Sui’s Move language significantly improves flash loan security by replacing Solidity’s reliance...
Safer cold storage on Ethereum
2 months ago
By using smart contract programmability, exchanges can build custody solutions that remain...