unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
How we applied advanced fuzzing techniques to cURL
By Shaun MiraniNear the end of 2022, Trail of Bits was hired by the Open Source...
2024-3-1 22:30:25 | 阅读: 9 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
fuzzer
hsts
curlopt
tlv
security
When try, try, try again leads to out-of-order execution bugs
By Troy SargentHave you ever wondered how a rollup and its base chain—the chain...
2024-3-1 20:0:42 | 阅读: 7 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
retryable
rewards
l2
gaslimit
Our response to the US Army’s RFI on developing AIBOM tools
By Michael Brown and Adelin TraversThe US Army’s Program Executive Office for In...
2024-2-29 00:30:5 | 阅读: 9 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
aibom
security
proposed
hardware
Circomspect has been integrated into the Sindri CLI
By Jim MillerOur tool Circomspect is now integrated into the Sindri command-line...
2024-2-26 22:0:2 | 阅读: 8 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
circomspect
sindri
circuits
developers
circom
Continuously fuzzing Python C extensions
By Matt SchwagerDeserializing, decoding, and processing untrusted input are tell...
2024-2-23 22:30:3 | 阅读: 15 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
cbor2
python
python3
atheris
asan
Breaking the shared key in threshold signature schemes
By Fredrik DahlgrenToday we are disclosing a denial-of-service vulnerability tha...
2024-2-20 22:30:37 | 阅读: 2 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
dkg
frost
shamir
pedersen
A few notes on AWS Nitro Enclaves: Images and attestation
By Paweł Płatek (GrosQuildu)AWS Nitro Enclaves are locked-down virtual machines...
2024-2-16 22:30:32 | 阅读: 12 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
nitro
eif
enclave
pcr
enclaves
Cloud cryptography demystified: Amazon Web Services
By Scott ArciszewskiThis post, part of a series on cryptography in the cloud, pr...
2024-2-14 22:0:6 | 阅读: 4 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
encryption
kms
database
client
cloud
Why Windows can’t follow WSL symlinks
By Yarden ShafirDid you know that symbolic links (or symlinks) created through W...
2024-2-12 22:30:25 | 阅读: 10 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
windows
symlinks
targetfile
junction
filetest
Master fuzzing with our new Testing Handbook chapter
Our latest addition to the Trail of Bits Testing Handbook is a comprehensive guid...
2024-2-9 22:0:13 | 阅读: 8 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
chapter
trail
developers
fuzzers
handbook
Binary type inference in Ghidra
By Ian SmithTrail of Bits is releasing BTIGhidra, a Ghidra extension that helps...
2024-2-7 22:0:39 | 阅读: 6 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
btighidra
inference
ghidra
constraints
decompiler
Improving the state of Cosmos fuzzing
By Gustavo GriecoCosmos is a platform enabling the creation of blockchains in Go...
2024-2-5 22:0:53 | 阅读: 2 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
cosmos
simulation
elapsed
fuzzer
rng
Chaos Communication Congress (37C3) recap
Last month, two of our engineers attended the 37th Chaos Communication Congress (...
2024-2-2 22:0:1 | 阅读: 10 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
sgx
memory
security
trail
reverse
Introducing DIFFER, a new tool for testing and validating transformed programs
By Michael BrownWe recently released a new differential testing tool, called DIF...
2024-1-31 22:30:48 | 阅读: 7 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
differ
software
debloating
comparators
Enhancing trust for SGX enclaves
By Artur CyganCreating reproducible builds for SGX enclaves used in privacy-orie...
2024-1-26 22:0:31 | 阅读: 6 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
enclave
sgx
nix
enclaves
We build X.509 chains so you don’t have to
By William WoodruffFor the past eight months, Trail of Bits has worked with the...
2024-1-25 22:0:22 | 阅读: 12 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
x509
limbo
client
python
leaf
Celebrating our 2023 open-source contributions
At Trail of Bits, we pride ourselves on making our best tools open source, such a...
2024-1-24 22:0:22 | 阅读: 9 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
github
osquery
sigstore
pyca
woodruffw
Our thoughts on AIxCC’s competition format
By Michael BrownLate last month, DARPA officially opened registration for their...
2024-1-18 22:0:38 | 阅读: 11 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
competition
crss
aixcc
scoring
30 new Semgrep rules: Ansible, Java, Kotlin, shell scripts, and more
By Matt Schwager and Sam AlwsWe are publishing a set of 30 custom Semgrep rules...
2024-1-17 21:30:32 | 阅读: 14 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
semgrep
unencrypted
download
python
security
LeftoverLocals: Listening to LLM responses through leaked GPU local memory
By Tyler Sorensen and Heidy KhlaafWe are disclosing LeftoverLocals: a vulnerabil...
2024-1-17 01:0:39 | 阅读: 20 |
收藏
|
Trail of Bits Blog - blog.trailofbits.com
memory
gpus
attacker
llm
Previous
2
3
4
5
6
7
8
9
Next