asymmetric research (@asymmetric

asymmetric research

264 posts

asymmetric research

@asymmetric_re

Enabling secure innovation. Join us: asymmetric.re/careers

Joined August 2023

asymmetric research
@asymmetric_re
35m
Fuzzing @commonwarexyz isn't a pile of one-off harnesses. It's engineered: deterministic runtime, controlled randomness, reviewable fuzz targets, reproducible crashes, promoted regressions. The result: 60+ bugs found across its primitives, 90 targets running 24/7. Full post ↓
Made with AI
305
asymmetric research
@asymmetric_re
35m
Under the Hood: Engineering Commonware Fuzzing
From blog.asymmetric.re
63
asymmetric research
@asymmetric_re
Jun 23
The Open Protocol Security Coalition (OPSeC) is a new initiative by @fund_defi, in partnership with @_SEAL_Org and Asymmetric Research. What it does: → Curates existing, free cybersecurity resources → Hosts educational events → Engages with policymakers and regulators
3.5K
asymmetric research
@asymmetric_re
Jun 23
Join the pledge here ↓
defieducationfund.org
OPSeC — Take the pledge to advance cybersecurity across the blockchain ecosystem
An industry-wide security coalition convened by DeFi Education Foundation, in partnership with Asymmetric Research and Security Alliance (SEAL). It starts with a pledge.
476
asymmetric research reposted
Felix Wilhelm
@_fel1x
Jun 19
If you were affected by this and think @asymmetric_re might be a good fit for what's next, please reach out. DMs are open.
pashov
@pashov
Jun 18
🤯One of the big web3 security companies (Certora) has just laid off a BIG portion of their staff. Security Researchers, Sales, Management, even C-level positions. That's a shock, yesterday they were still hiring elite talent. Insane. Wish everyone to find the right new jobs🙏
8.6K
asymmetric research
@asymmetric_re
Jun 9
The STRIDE site is live. Explore the framework, assessment process, and what protocols need to qualify ↓
00:00
14K
asymmetric research
@asymmetric_re
Jun 9
Security failures aren't always about the code, but misconfigured multisigs, weak access controls, and operational risks. Along with @SolanaFndn, we launched STRIDE to address this gap and create a structured way to evaluate the security posture of Solana ecosystem projects.
1K
asymmetric research
@asymmetric_re
Jun 9
The response so far has been incredible, and every assessment strengthens our ecosystem. Learn more about STRIDE and how to take part.
STRIDE | A security program for the Solana ecosystem
From stride.asymmetric.re
1.7K
asymmetric research
@asymmetric_re
Jun 4
Crucible just got its first native integration: it now ships inside the Anchor CLI. Every command runs under anchor fuzz (init, run, tmin, show) with no separate setup needed.
asymmetric research
@asymmetric_re
May 4
Today we're launching Crucible, a coverage-guided fuzzing framework for Solana programs. Built for Anchor, with v2 support from day one. Just one example of what Crucible can find: a years-old bug in Solana's stake program, surfaced in seconds ↓
00:00
3.1K
asymmetric research
@asymmetric_re
Jun 2
Pragma is one of Starknet's main oracles, pricing collateral and liquidations for lending protocols holding tens of millions on-chain. @u_0x8888 explains how a missing access-control check could have let anyone disable its core price feeds for a few cents.
4K
asymmetric research
@asymmetric_re
Jun 2
Full breakdown ↓
All Roads Lead to Panic: A Starknet Oracle Story
From blog.asymmetric.re
640
asymmetric research
@asymmetric_re
Jun 2
Thanks to the @PragmaOracle team for their quick response and collaboration here.
423
asymmetric research
@asymmetric_re
May 28
We're joining @TheHUB as a @fogo validator. Colocated infrastructure optimized for low latency and deterministic execution.
00:00
3.7K
asymmetric research
@asymmetric_re
May 4
Today we're launching Crucible, a coverage-guided fuzzing framework for Solana programs. Built for Anchor, with v2 support from day one. Just one example of what Crucible can find: a years-old bug in Solana's stake program, surfaced in seconds ↓
00:00
49K
asymmetric research
@asymmetric_re
May 4
Replying to @asymmetric_re
This is the kind of bug coverage-guided fuzzing is built to find. Manual review eventually caught this one, but a generic invariant plus sequence exploration would have flagged it much earlier.
1.4K
asymmetric research
@asymmetric_re
May 4
Write the property. Run the fuzzer. Crucible is live ↓
Crucible | Solana Fuzzing Framework by Asymmetric Research
From asymmetric.re
1.3K