← Find more feeds

blog.trailofbits.com

Trail of Bits Blog

Get the latest updates from Trail of Bits Blog directly as they happen.

Follow now 627 followers

Latest posts

Last updated 2 days ago

Sneak peek: A new ASN.1 API for Python

2 days ago

We’re working on integrating an ASN.1 API into PyCA Cryptography built on...

Read full

Mitigating ELUSIVE COMET threats: Protecting against Zoom remote control attacks

4 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Neutralizing ELUSIVE COMET Zoom Remote Control Attacks

4 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Mitigating ELUSIVE COMET Zoom remote control attacks

4 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Introducing a new section on snapshot fuzzing for kernel-level testing in the Testing Handbook

11 days ago

Snapshot Fuzzing enables security engineers to effectively test software that is traditionally...

Read full

Benchmarking OpenSearch and Elasticsearch

about 2 months ago

This post concludes a four-month performance study of OpenSearch and Elasticsearch search...

Read full

Continuous TRAIL

about 2 months ago

You and your team should incrementally update your threat model as your...

Read full

Threat modeling the TRAIL of Bits way

about 2 months ago

In this blog, we’ll talk about our threat modeling process, TRAIL, which...

Read full

How Threat Modeling Could Have Prevented the $1.5B Bybit Hack

about 2 months ago

In this blog, we’ll talk about one of our most popular, but...

Read full

Don’t recurse on untrusted input

about 2 months ago

We developed a simple CodeQL query to find denial-of-service (DoS) vulnerabilities in...

Read full

The $1.5B Bybit Hack: The Era of Operational Security Failures Has Arrived

about 2 months ago

The $1.5B Bybit Hack demonstrates how the Era of Operational Security Failures...

Read full

Unleashing Medusa: Fast and scalable smart contract fuzzing

2 months ago

Introducing Medusa v1, a cutting-edge fuzzing framework designed to enhance smart contract...

Read full

Or log in

Everything you care about in one place

Trail of Bits Blog

Latest posts

Sneak peek: A new ASN.1 API for Python

Mitigating ELUSIVE COMET threats: Protecting against Zoom remote control attacks

Neutralizing ELUSIVE COMET Zoom Remote Control Attacks

Mitigating ELUSIVE COMET Zoom remote control attacks

Introducing a new section on snapshot fuzzing for kernel-level testing in the Testing Handbook

Benchmarking OpenSearch and Elasticsearch

Continuous TRAIL

Threat modeling the TRAIL of Bits way

How Threat Modeling Could Have Prevented the $1.5B Bybit Hack

Don’t recurse on untrusted input

The $1.5B Bybit Hack: The Era of Operational Security Failures Has Arrived

Unleashing Medusa: Fast and scalable smart contract fuzzing

Try Feeder for free