Niklas

Awesome Fuzzing Zulip for the AFL++ and broader fuzzing community.

Wanna learn more about #fuzzing? The AFL++ community has moved to Zulip: fuzz.zulipchat.com

Come join us!

We've been a bit excited about this one.
We are excited and honored to have partnered with Bitcoin, brink, Chaincode Labs, and @quarkslab.bsky.social to collaborate on a security audit of Bitcoin Core. This was Bitcoin Core's first external audit.
Read more at our blog: ostif.org/bitcoin-core...

Bitcoiner Jobs | Bitcoin Core Fuzzing Internship @ Brink About the internship We are seeking a motivated intern, remote or in London, to join...

We're hiring fuzzing interns at Brink.

Consider applying if you're interested in building out Bitcoin Core's fuzz testing, tooling and infrastructure!

bitcoinerjobs.com/job/1801236-...

[DO NOT MERGE] Erlay: bandwidth-efficient transaction relay protocol (Full implementation) by sr-gi · Pull Request #30277 · bitcoin/bitcoin Erlay Project Tracking: #30249 This is a full implementation of Erlay. Its purpose is to check the integrity and correctness of the implementation against changes/additions that may originate from...

It's a remotely triggerable assertion crash in the deserialization code of minisketch (github.com/bitcoin/bitc...)

Fuzzamoto just found its first bug on a Bitcoin Core PR🐛

As a PoC it includes a harness that can find CVE-2024-35202 (no refactoring within Bitcoin Core required, all testing is performed through the publicly reachable p2p port):

GitHub - dergoegge/fuzzamoto: Holistic Fuzzing for Bitcoin Protocol Implementations Holistic Fuzzing for Bitcoin Protocol Implementations - dergoegge/fuzzamoto

I've been exploring the use of full-system snapshot fuzzing (heavily leaning on nyx-fuzz.com) for Bitcoin Core and just open sourced my work so far: github.com/dergoegge/fu...