EVM Security – Insights from Zer0Con 2025
| | | |

EVM Security – Insights from Zer0Con 2025

EVM Security Insights from Zer0Con 2025 At Zer0Con 2025, the FuzzingLabs team, Mathieu Hoste and Bryton Bernard, delivered an engaging and insightful presentation on one of the most critical aspects of Ethereum’s security: the vulnerabilities within the Ethereum Virtual Machine (EVM). In our session, titled “Ethereum’s Achilles’ Heel: Attacking and Fuzzing EVMs for Fun (and…

Uncovering a Subtle Bug in EVM Arithmetic: The Case of Negating Zero
| | | |

Uncovering a Subtle Bug in EVM Arithmetic: The Case of Negating Zero

Uncovering a Subtle Bug in Ethereum Virtual Machine (EVM) The Case of Arithmetic Negating Zero Our team at FuzzingLabs has been auditing the Ethereum Virtual Machine (EVM) implementation by LambdaClass. Throughout the audit, we’ve identified several vulnerabilities, but in this post, we’ll focus on one particularly interesting issue involving the SDIV operation and its handling…

osint blockchain web3 profiling tracking deanonimization ethereum evm on-chain off-chain
| |

Cryptocurrency & NFT OSINT: Introduction to Web3/Ethereum Profiling & Deanonymization [LeHack OSINT village 2023]

Cryptocurrency & NFT OSINT: Introduction to Web3/Ethereum Profiling & Deanonymization This talk unravels the intricacies of blockchain, cryptocurrencies, and NFTs from an Open Source Intelligence (OSINT) perspective. We’ll demystify how these technologies operate and explore relevant OSINT techniques. Delving into real-world use cases, we’ll highlight how OSINT can help profile public personalities, identify victims of…

ethereum evm slither mythril echidna fuzzing audit solidity security vulnerability ETH result foundry forge test code4rena
| |

$100,000 in Bug Bounty 💸 by learning Smart Contract Auditing from CODE4RENA Reports!

$100,000 in Bug Bounty 💸 by learning Smart Contract Auditing from CODE4RENA Reports! How to become an Ethereum/Solidity smart contract auditor? Where to start? How to improve your smart contract auditing process? Which tool to use? The paper analyzed in this video: “Demystifying Exploitable Bugs in Smart Contracts” is a compilation of all the findings…

ethereum evm slither mythril echidna fuzzing audit solidity security vulnerability ETH result foundry forge test
| |

Fuzzing Solidity/Ethereum Smart Contract using Foundry/Forge – Blockchain Security #5

Fuzzing Solidity/Ethereum Smart Contract using Foundry/Forge – Blockchain Security In this video, I will show the basis of running and customizing Foundry/Forge to fuzz an Ethereum smart contract in Solidity. I will also mention “Invariant testing” implementation in Foundry fuzzing compare to Echidna.https://youtu.be/2bTmB3cwhxs You will get access of the complete tutorial with source code, cheat sheet…

ziion halborn kali linux blockchain security ethereum solana algorand near rust go evm solidity
| |

Ziion: Discovery of this New Kali Linux for Blockchain Security

Ziion: Kali Linux for Blockchain Security Today, I’m presenting Ziion, a “Kali Linux” like VM for blockchain security engineers made by Halborn. It’s a dedicated virtual machine that contains a bunch of security tools like static analyzer, fuzzer, analyzer, etc. for various blockchain protocols and smart contract languages such as Ethereum, Solidity, EVM, Rust, Go,…

state art ethereum solidity fuzzing echidna foundry harvey
| | |

State of the Art of Ethereum Smart Contract Fuzzing in 2022 [EthCC5]

State of the Art of Ethereum Smart Contract Fuzzing in 2022 [EthCC5] Fuzzing is known as one of the most efficient techniques to find bugs in software. Sadly, when dealing with Ethereum smart contracts, the number of fuzzers and documentation available is really limited. During this talk, we will explain why fuzz testing EVM smart…

ethereum evm slither mythril echidna fuzzing audit solidity security vulnerability ETH
| | |

Solidity/Ethereum Smart Contract Audit using Slither – Blockchain Security #4

Solidity/Ethereum Smart Contract Audit using SlitherBlockchain Security In this video, I will show how to audit and find vulnerabilities inside an Ethereum smart contract written in Solidity using Slither, one of the best EVM smart contract analysis tools. https://youtu.be/s3FL5caAy5w You will get access of the complete tutorial with source code, cheat sheet and or complete…

evm reversing ethereum smart contract reverse engineering disassembly bytecode opcodes
| |

Ethereum/EVM Smart Contract Reverse Engineering & Disassembly

Ethereum Smart Contract Reverse Engineering &EVM Disassembly Today I’m showing how EVM disassembly works and how to reconstruct the control flow graph (CFG) of an Ethereum smart contract when you only have access to the bytecode (closed-source). It’s really useful when you’re looking to analyze in-depth a contract at the EVM bytecode level. https://youtu.be/I6VDBvX9Pkw You…

beaconfuzz eth eth2.0 ethereum 2 beaconchain beacon node fuzzing nimbus prysm lighthouse lodestar
| | | | |

Beaconfuzz – A Journey into Ethereum 2.0 Blockchain Fuzzing and Vulnerability Discovery

Beaconfuzz – A Journey into Ethereum 2.0 Blockchain Fuzzing and Vulnerability Discovery @ OffensiveCon 2022 Abstract This talk is about our journey and step-by-step process into fuzzing Ethereum 2.0 implementations software. We will start with a brief introduction to Ethereum 2.0 specification and ecosystem. Then, we will explain the architecture of this type of software…