Tool Release

Disarming Fiat-Shamir footguns

| | cryptography, Tool Release
By Opal Wright The Fiat-Shamir transform is an important building block in zero-knowledge proofs (ZKPs) and multi-party computation (MPC). It allows zero-knowledge proofs based on interactive protocols to be made non-interactive. Essentially, ...
Trail of Bits Blog

Introducing Ruzzy, a coverage-guided Ruby fuzzer

| | Application Security, fuzzing, Tool Release
By Matt Schwager Trail of Bits is excited to introduce Ruzzy, a coverage-guided fuzzer for pure Ruby code and Ruby C extensions. Fuzzing helps find bugs in software that processes untrusted input ...
Trail of Bits Blog
Streamline your static analysis triage with SARIF Explorer

Streamline your static analysis triage with SARIF Explorer

| | Static Analysis, Tool Release
By Vasco Franco Today, we’re releasing SARIF Explorer, the VSCode extension that we developed to streamline how we triage static analysis results. We make heavy use of static analysis tools during our ...
Trail of Bits Blog
Read code like a pro with our weAudit VSCode extension

Read code like a pro with our weAudit VSCode extension

| | Tool Release
By Filipe Casal Today, we’re releasing weAudit, the collaborative code-reviewing tool that we use during our security audits. With weAudit, we review code more efficiently by taking notes and tracking bugs in ...
Trail of Bits Blog
Introducing Attacknet: Chaos Testing for Consensus Protocols & Blockchain Nodes

Releasing the Attacknet: A new tool for finding bugs in blockchain nodes using chaos testing

| | blockchain, Tool Release
By Benjamin Samuels (@thebensams) Today, Trail of Bits is publishing Attacknet, a new tool that addresses the limitations of traditional runtime verification tools, built in collaboration with the Ethereum Foundation. Attacknet is ...
Trail of Bits Blog