Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederblog.trailofbits.com
Trail of Bits Blog
Get the latest updates from Trail of Bits Blog directly as they happen.
Follow now 633 followers
Latest posts
Last updated 3 days ago
Buckle up, Buttercup, AIxCC’s scored round is underway!
3 days ago
Our CRS (Cyber Reasoning System), Buttercup, is now competing in the one...
Maturing your smart contracts beyond private key risk
11 days ago
Private key compromise accounted for 43.8% of crypto hacks in 2024, yet...
Unexpected security footguns in Go's parsers
17 days ago
File parsers in Go contain unexpected behaviors that can lead to serious...
What we learned reviewing one of the first DKLs23 libraries from Silence Laboratories
25 days ago
In October 2023, we audited Silence Laboratories’ DKLs23 threshold signature scheme (TSS)...
A deep dive into Axiom’s Halo2 circuits
about 1 month ago
Over two audits in 2023, we reviewed a blockchain system developed by...
The Custodial Stablecoin Rekt Test
about 1 month ago
Introducing the Custodial Stablecoin Rekt Test; a new spin on the classic...
The cryptography behind passkeys
about 2 months ago
This post will examine the cryptography behind passkeys, the guarantees they do...
Datasig: Fingerprinting AI/ML datasets to stop data-borne attacks
2 months ago
Datasig generates compact, unique fingerprints for AI/ML datasets that let you compare...
Making PyPI's test suite 81% faster
2 months ago
See how we slashed PyPI’s test suite runtime from 163 to 30...
Insecure credential storage plagues MCP
2 months ago
This post describes how many examples of MCP software store long-term API...
Deceiving users with ANSI terminal codes in MCP
2 months ago
This post describes attacks using ANSI terminal code escape sequences to hide...
How MCP servers can steal your conversation history
2 months ago
This post explains how malicious MCP servers can exploit the Model Context...