Lazymio
@pwnedmio
Followers
626
Following
37
Media
9
Statuses
110
Security/Hacking/Coding https://t.co/8wXZeQvMvJ
Singapore
Joined June 2016
Finally get my Github sponsor approved. Sponsor me if you like my works =) https://t.co/MK3JRBk8sz
github.com
A security researcher and open-source enthusiast.
1
0
1
Movy and Belobog aim to solve this, but at the cost of painfully forking both chains every few days.
0
0
0
Move, specifically Sui and Aptos, still lacks high-quality building bricks like revm and alloy today and changes are hard for approval, which greatly hinders builders’ involvement. Building an open community allows blossom of applications, which EVM already proves.
1
0
1
@SuiNetwork @Aptos @shao_hua_li Source code available at https://t.co/gjsd8ObKWD and Movebit is working on a polished version of Belobog named Movy. Stay tuned =).
github.com
Move language fuzzing framework. Contribute to abortfuzz/belobog development by creating an account on GitHub.
0
0
2
Our brand new type-guided move language fuzzer for @SuiNetwork and @Aptos is coming! Our mission is to shed light on the smart contract security for the Move ecosystem. Source code and docs will be available soon! Stay tuned. Cc @shao_hua_li
https://t.co/zREkXkx70h
arxiv.org
Move is a research-oriented programming language design for secure and verifiable smart contract development and has been widely used in managing billions of digital assets in blockchains, such as...
1
0
2
https://t.co/ZqYNQQ0YEn We are looking for contributors for the bindings of the Unicorn Engine.
github.com
Hello everyone! As you might already notice, I'm more and more running out of time maintaining the huge Unicorn repo, since I have to be familiar with every details of the Unicorn project inclu...
0
0
2
We released Unicorn 2.1.4. This offers a few features like consistent PC syncing guarantee. We are also looking for new contributors. Contact me if you are keen! https://t.co/EXzawbgi9w
github.com
Hello everyone. It has been a while since last release and we are releasing Unicorn 2.1.4. Though it is a patch release, there are some highlights worth mentioning. The very first thing is that, Un...
0
1
1
https://t.co/YJCgH2y6ob An interesting and promising follow-up work of VERITE! But still VERITE is the SOTA of fuzzing profitable onchain vulnerabilities =).
0
0
2
https://t.co/sZXJ15nFhG Unicorn still has unlimited potentials to explore =).
0
1
4
To answer such concerns, I wrote a post: https://t.co/2JC3sCtAIP
blog.lazym.io
IntroductionLast week, I have been traversing through many downstreams of Unicorn Engine to get the feedback of our recent move. It is quite surprising that the migration from v1 or 2.0.x is actually
@pwnedmio @threatshirt Don’t get me wrong, I think unicorn is a useful tool and I have used it for years. From my perspective the way it was created (as a hard fork from QEMU, similar to capstone/keystone from LLVM) is the fundamental problem. From the top of my head: - All issues (even valid ones)
0
1
9
https://t.co/YVDTkk8Wvn Unicorn releases 2.1.2! Resolve tons of stability issues. Give it a shot!
github.com
2.1.2 is a patch release to mainly resolve the stability issue of the 2.1.0 release series and fix a few distribution issues. All users of Unicorn are expected to upgrade. Highlights macOS arm64 n...
1
1
7
ucutils (helpers for the Unicorn Emulator) is now published to PyPI: https://t.co/YZ1xsqL3EQ
0
31
97
Code will be public and PR to AFL++ shortly. cc @domenuk @hackerschoice
0
0
3
My paper "SAND: Decoupling Sanitization from Fuzzing for Low Overhead" got accepted by ICSE, putting a period to my journey at ETH Zurich. It eliminates almost all the overhead of sanitizers during fuzzing by calling sanitizers only when necessary. https://t.co/ICfc7X0PgU
3
4
41
My paper "Smart Contract Fuzzing Towards Profitable Vulnerabilities" got accepted by FSE! It features on searching profitable vulnerabilities and extracts maximum profits by gradient descent, without false positives, greatly surpassing the SOTA, ItyFuzz. https://t.co/xpHqILlCgo
2
7
44
Announce MDBX python bindings! Support for many previously lacking features like iterating DUPSORT databases, include many bug fixes and wheels uploaded. Maybe we can have p(ython)eth? 🤫 https://t.co/0VL1wwUima
pypi.org
The python bindings to libmdbx.
0
0
1
Spent a few hours creating a safe wrapper to access MDBX databases over network. This shall be especially helpful to people accessing historical data from reth. https://t.co/apNjjXGGYS
github.com
Access your MDBX database over network safely. Contribute to wtdcode/mdbx-remote development by creating an account on GitHub.
0
0
3
Wrote a blog post to explain how to do mmap on Windows: https://t.co/uh8tOtGrnx
blog.lazym.io
MotivationUnicorn released 2.1.0 recently, with one of the exciting features: no longer asking for 2GB memory per instance on Windows. Previously, when we port Unicorn to Windows, we found QEMU uses a
1
3
8
@unicorn_engine Lots of improvements and exciting features. https://t.co/IZ4ybDCnT4
github.com
It has been a while since the last release, and 2.1.0 brings several exciting features. Below is the changelog from the latest to the oldest (though not strictly). Highlights Revive QEMU logs, now...
0
0
0