Everything you care about in one place

Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.

Get Feeder

blog.trailofbits.com

Trail of Bits Blog

Get the latest updates from Trail of Bits Blog directly as they happen.

Follow now 675 followers

Latest posts

Last updated 3 days ago

Extending Ruzzy with LibAFL

3 days ago

LibAFL is all the rage in the fuzzing community these days, especially...

Trailmark turns code into graphs

9 days ago

We’re open-sourcing Trailmark, a library that parses source code into a queryable...

We beat Google’s zero-knowledge proof of quantum cryptanalysis

15 days ago

Two weeks ago, Google’s Quantum AI group published a zero-knowledge proof of...

Master C and C++ with our new Testing Handbook chapter

23 days ago

We added a new chapter to our Testing Handbook: a comprehensive security...

What we learned about TEE security from auditing WhatsApp's Private Inference

25 days ago

WhatsApp’s new “Private Inference” feature represents one of the most ambitious attempts...

Simplifying MBA obfuscation with CoBRA

29 days ago

Mixed Boolean-Arithmetic (MBA) obfuscation disguises simple operations like x + y behind...

Mutation testing for the agentic era

about 1 month ago

Code coverage is one of the most dangerous quality metrics in software...

How we made Trail of Bits AI-native (so far)

about 1 month ago

This post is adapted from a talk I gave at [un]prompted, the...

Try our new dimensional analysis Claude plugin

about 1 month ago

We’re releasing a new Claude plugin for developing and auditing code that...

Spotting issues in DeFi with dimensional analysis

about 1 month ago

Using dimensional analysis, you can categorically rule out a whole category of...

Six mistakes in ERC-4337 smart accounts

about 2 months ago

Account abstraction transforms fixed “private key can do anything” models into programmable...

mquire: Linux memory forensics without external dependencies

2 months ago

If you’ve ever done Linux memory forensics, you know the frustration: without...