1. BITBILIHome
  2. Article

Consensys releases new tool for enhanced smart contract security

30 views

TL;DR Breakdown

  • Consensys has announced the release of a new diligence fuzzing tool to enhance smart contract security.
  • Embracing sophisticated fuzzing to mitigate Defi vulnerabilities.

Description

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, … Read more

Blockchain technology firm ConsenSys has taken a significant step in bolstering the security of decentralized finance (DeFi) platforms by publicly releasing its “Diligence Fuzzing” tool for smart contract testing. The announcement, made on August 1, highlights the tool’s capability to generate “random and invalid data points” to detect vulnerabilities in contracts before they are deployed, potentially preventing millions of dollars in losses due to hacks and security breaches.

Consensys plans to prevent breaches with the tool

The urgency for better testing tools stems from the staggering $2.8 billion lost to DeFi hacks in 2022. As hackers continue to exploit vulnerabilities in smart contracts, developers are turning to more sophisticated testing methods to identify weaknesses before malicious actors can do so. The “Diligence Fuzzing” tool was initially accessible only through a closed beta version, which required developers to seek approval for access. However, as of August 1, the tool has been made available to all without the need for prior approval.

Additionally, it has been integrated into the smart contract toolkit Foundry, offering developers a free version to evaluate its effectiveness before committing to a full-fledged version. To implement the “Diligence Fuzzing” tool effectively, developers can use “Scribble,” a machine language developed by ConsenSys, to annotate their contracts. These annotations enable the fuzzing tool to understand the contract’s behavior and subsequently produce “unexpected” inputs to assess whether the contract can be manipulated to execute unintended actions.

It is important to note that the “Diligence Fuzzing” tool differs from a conventional “black box fuzzer” that generates completely random data. Instead, it operates as a “grey-box fuzzer,” leveraging insights into the program’s current state to produce data types more likely to uncover potential vulnerabilities. This approach increases the tool’s efficiency, allowing developers to uncover security risks more effectively. According to ConsenSys security researcher Gonçalo Sá, there has been a notable increase in developers’ interest in fuzzing.

Embracing sophisticated fuzzing to mitigate Defi vulnerabilities

Foundry’s popularity has led developers to utilize its default black-box fuzzer, becoming more comfortable with fuzzing methodologies. However, some developers are now seeking more sophisticated fuzzing capabilities, which Diligence Fuzzer aims to provide. Sá emphasized the growing awareness among developers about the power of security tools, including fuzzing. The need for enhanced security measures has become increasingly evident as the number of smart contract hacks continues to rise.

In the first half of 2023, excluding rug pulls and phishing scams, losses from Web3 security vulnerabilities exceeded $471.43 million. While Diligence Fuzzing represents a valuable step towards minimizing smart contract vulnerabilities, ConsenSys security services lead Liz Daldalian cautioned that it is not a “silver bullet” to eradicate all smart contract hacks. Nonetheless, it serves as a crucial tool that developers can use to write more secure smart contracts, mitigating potential losses from malicious attacks.

The public release of ConsenSys’ “Diligence Fuzzing” tool marks a significant milestone in the efforts to enhance smart contract security within the DeFi ecosystem. By enabling developers to identify vulnerabilities before contract deployment, the tool can potentially save millions of dollars lost to hacks and security breaches. While it may not provide an absolute solution to all security challenges, it stands as an essential asset in the ongoing battle to safeguard the Web3 community from malicious attacks. With an increasing number of developers recognizing the importance of fuzzing and security tools, the path toward a more secure DeFi landscape becomes clearer.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Consensys releases new tool for enhanced smart contract security

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年8月2日 12:04
Next 2023年8月2日 13:25

Related articles

  • Avalanche’s HyperSDK: A game-changer in blockchain technology

    TL;DR Breakdown Avalanche’s HyperSDK testnet reaches an impressive 143,322 transactions per second, surpassing major blockchain players like Ethereum and Solana. The HyperSDK framework simplifies and accelerates custom VM development, with blockchains functioning as versatile subnets called HyperChains. Description The blockchain world is exciting as Avalanche’s HyperSDK blockchain upgrade achieves a staggering 143,322 transactions per second (TPS) on its testnet. This breakthrough is a testament to the relentless pursuit of innovation by Ava Labs, the team behind Avalanche. The HyperSDK upgrade promises to revolutionize how developers approach blockchain development, offering a high-throughput framework that … Read more The blockchain world is exciting as Avalanche’s HyperSDK blockchain upgrade achieves a staggering 143,322 transactions per second (TPS) on its testnet. This breakthrough is a testament to the relentless pursuit of innovation by Ava Labs, the team behind Avalanche. The HyperSDK upgrade promises to revolutionize how developers approach blockchain development, offering a high-throughput framework that paves the way for creating custom virtual machines (VMs). Contents hide 1 Setting new benchmarks in transaction speeds 2 HyperSDK: Simplifying and accelerating blockchain development 3 The future of…

    Article 2023年9月11日

  • Binance axes privacy tokens in European crackdown

    TL;DR Breakdown Major cryptocurrency exchange Binance is delisting privacy tokens for customers in France, Italy, Spain, and Poland due to local regulatory pressures. A total of 12 coins will be impacted by this move, including well-known privacy tokens like Monero (XMR) and Zcash (ZEC). The move to delist privacy tokens is part of Binance’s strategy to comply with local laws and regulations governing such tokens. In a move that signifies the mounting pressure faced by the cryptocurrency industry, Binance, a leading cryptocurrency exchange, has decided to delist privacy-focused tokens for customers residing in certain European nations. Countries such as France, Italy, Spain, and Poland will witness the termination of trading in privacy tokens including Monero (XMR) and Zcash (ZEC) from June 26. The impetus for this decision seems to lie in a bid to comply with local regulations and laws that oversee the trading of privacy-centric coins. A total of twelve coins will be impacted by the change including Decred (DCR), Dash (DASH), ZEC, Horizen (ZEN), PIVX (PIVX), Navcoin (NAV), Secret (SCRT), Verge (XVG), Firo (FIRO), Beam (BEAM), XMR, and…

    Article 2023年6月4日

  • CBDC anti-surveillance state act advances in congress

    TL;DR Breakdown The CBDC Anti-Surveillance State Act has garnered notable support within Congress, boasting the backing of 60 members. The Act contains critical provisions aimed at preventing the Federal Reserve from issuing a CBDC directly to individuals.  The debate over CBDCs revolves around finding a balance between embracing financial innovation and safeguarding individual privacy and freedom. Description In a significant development on the legislative front, the CBDC Anti-Surveillance State Act, designed to curtail the issuance of a central bank digital currency (CBDC), has cleared a crucial hurdle. On September 20, the House Financial Services Committee passed the bill, moving it closer to a congressional vote. The CBDC Anti-Surveillance State Act, spearheaded by … Read more In a significant development on the legislative front, the CBDC Anti-Surveillance State Act, designed to curtail the issuance of a central bank digital currency (CBDC), has cleared a crucial hurdle. On September 20, the House Financial Services Committee passed the bill, moving it closer to a congressional vote. The CBDC Anti-Surveillance State Act, spearheaded by Representative Tom Emmer, has garnered notable support within Congress, boasting…

    Article 2023年9月22日

  • Credit Suisse’s massive job cuts in Hong Kong

    TL;DR Breakdown Credit Suisse is planning significant layoffs in Hong Kong, with about 80% of its investment banking staff facing redundancy due to the bank’s merger with UBS Group. The cutbacks will leave only 20 out of the original 100-strong team in place, marking a drastic reduction of Credit Suisse’s presence in Hong Kong, its major base in Asia. Description It’s a choppy sea for Credit Suisse’s investment banking personnel based in Hong Kong, as the storm of massive layoffs hits the financial hub. As the Swiss banking giant merges with UBS Group, roughly 80% of its investment banking workforce in Hong Kong is set to vanish, according to insider sources. This puts a dark … Read more It’s a choppy sea for Credit Suisse’s investment banking personnel based in Hong Kong, as the storm of massive layoffs hits the financial hub. As the Swiss banking giant merges with UBS Group, roughly 80% of its investment banking workforce in Hong Kong is set to vanish, according to insider sources. This puts a dark cloud over the company’s future in the…

    Article 2023年8月8日

  • Bitcoin block 800,000 mined – how’s the crypto market responding?

    TL;DR Breakdown As of July 24th, 2023, the Bitcoin network mined block 800,000. The network has 40,000 left to mine before the network’s next mining reward halving, scheduled for April 2024. Crypto market analysts predict that BTC could sink to $19,000 as the bullish trend that drove Bitcoin to a 76% year-to-date gain vanishes. Digital asset markets continue to suffer under the SEC crypto crackdown and the incoming Chockpoint 2.0. Description The Bitcoin network has mined block 800,000, leaving only 40,000 blocks to mine before the next halving of the network’s mining reward. According to market researcher Dylan LeClair’s Twitter post on July 24, the 800,000th block contained 3,721 transactions totaling 1.64 megabytes, and Bitcoin was trading at $29,815 per coin. Crypto enthusiasts celebrate the BTC … Read more The Bitcoin network has mined block 800,000, leaving only 40,000 blocks to mine before the next halving of the network’s mining reward. According to market researcher Dylan LeClair’s Twitter post on July 24, the 800,000th block contained 3,721 transactions totaling 1.64 megabytes, and Bitcoin was trading at $29,815 per coin. Crypto…

    Article 2023年7月25日
TOP