Consensys Diligence

1.3K posts

Consensys Diligence banner
Consensys Diligence

Consensys Diligence

@ConsensysAudits

Smart contract audits. AI-assisted auditing tools. ZK fuzzing research. Securing Ethereum since 2017.

Katılım Haziran 2017
124 Takip Edilen7.4K Takipçiler
Consensys Diligence
Consensys Diligence@ConsensysAudits·
The Ethereum Security QF round is now closed. Thank you @Giveth and @thedaofund for supporting public-good research on open-source fuzzing for ZK systems! Thanks to everyone who followed the round and helped bring more attention to Ethereum security 🤝 This work continues. We’ll be sharing more tooling, research, and updates soon.
Giveth@Giveth

The Ethereum Security QF round is officially closed! Huge thank you to every donor, project, badgeholder, contributor, and community member who showed up to support Ethereum security over the past weeks. More soon 💜

English
1
1
14
601
Consensys Diligence
Consensys Diligence@ConsensysAudits·
Institutions and enterprises are entering on-chain finance. Japan is one of the most active markets for institutional blockchain adoption. We're working with @PacificMeta as a security partner. In this interview, we discussed what enterprises actually need to build on-chain securely and their main pain points. Read more here:
English
1
1
8
209
Consensys Diligence
Consensys Diligence@ConsensysAudits·
Few hours left to donate to the DAO security fund by @Giveth and @thedaofund. In collaboration with @tu_wien, every donation will support a PhD position dedicated to academic ZK fuzzing research, building on work that has helped secure major zkVMs and ZK systems. Led by security experts: @vwuestholz and @mchri5taki5 giveth.io/project/fuzzin…
Consensys Diligence@ConsensysAudits

We applied to the Ethereum Security QF round by @Giveth and @thedaofund. Every donation funds PhD and intern positions on ZK fuzzing at @tu_wien. Led by experts in formal methods and zk security: @vwuestholz and @mchri5taki5. This work advances the state of the art in automated fuzzing for zero-knowledge circuit-processing pipelines. The output is specialized OSS fuzzers for large-scale discovery of soundness and completeness bugs and educational content. Support the future of privacy-preserving tools:

English
2
2
16
813
Consensys Diligence
Consensys Diligence@ConsensysAudits·
We're grateful to the @strato_net team for the collaboration. Engagements like these help advance the capabilities of AI-assisted auditing. With STRATO, our AI agent Chonky ran on live production code, setting up a single reasoning context across three layers: Haskell VM, Solidity execution semantics, and governance logic. We appreciate the trust and the opportunity to keep moving security tooling forward!
STRATO | DeFi Powered by Precious Metals@strato_net

Many security people doubt AI can find and patch vulnerabilities. That's Fair. We were too. But @ConsensysAudits convinced us to try, and the speed and accuracy enabled by their scaffolding have convinced us this is the right approach for an AI age:

English
0
0
4
354
Consensys Diligence
Consensys Diligence@ConsensysAudits·
Consensys Diligence's core mission in a new security landscape. In a conversation with @CryptoPandasYT, @SergiiSays explained how our audit approach is evolving with Chonky, our AI-assisted security system. In collaboration with @strato_net, Chonky detects vulnerability patterns and scales auditor knowledge on a production codebase.
STRATO | DeFi Powered by Precious Metals@strato_net

The rash of DeFi hacks last month shows just how much easier (and cheaper) it has become to find critical vulnerabilities with AI. The old security model is too rigid and slow to keep up. That's why @ConsensysAudits is building Chonky, an AI-assisted security system to scale human auditors. Chonky is being deployed on STRATO to pioneer a new security model that keeps pace with modern threats. Learn more about the future of DeFi security in our conversation with Consensys Diligence and @CryptoPandasYT below: youtube.com/watch?v=BE_Y7N…

English
0
0
5
366
Consensys Diligence
Consensys Diligence@ConsensysAudits·
We applied to the Ethereum Security QF round by @Giveth and @thedaofund. Every donation funds PhD and intern positions on ZK fuzzing at @tu_wien. Led by experts in formal methods and zk security: @vwuestholz and @mchri5taki5. This work advances the state of the art in automated fuzzing for zero-knowledge circuit-processing pipelines. The output is specialized OSS fuzzers for large-scale discovery of soundness and completeness bugs and educational content. Support the future of privacy-preserving tools:
Consensys Diligence@ConsensysAudits

What if we could fuzz ZK infrastructure before attackers can? Valentin Wüstholz (@vwuestholz) took that bet early on and built the first fully automated testing tools for ZK pipelines. With researchers at @tu_wien, he turned metamorphic testing and fault injection into scalable methods for finding critical vulnerabilities. Today, his tools have found 30+ critical bugs across ZK compilers and zkVMs, earned a bounty from @RiscZero, and led to peer-reviewed work at CCS 2025 and USENIX Security 2026. The story behind Valentin’s research bet, the fuzzers, and what his work is changing for ZK security. Full piece below ⬇️

English
1
2
16
2.1K
Consensys Diligence
Consensys Diligence@ConsensysAudits·
What if we could fuzz ZK infrastructure before attackers can? Valentin Wüstholz (@vwuestholz) took that bet early on and built the first fully automated testing tools for ZK pipelines. With researchers at @tu_wien, he turned metamorphic testing and fault injection into scalable methods for finding critical vulnerabilities. Today, his tools have found 30+ critical bugs across ZK compilers and zkVMs, earned a bounty from @RiscZero, and led to peer-reviewed work at CCS 2025 and USENIX Security 2026. The story behind Valentin’s research bet, the fuzzers, and what his work is changing for ZK security. Full piece below ⬇️
Consensys Diligence tweet media
English
2
8
93
6.1K
Succinct
Succinct@SuccinctLabs·
We built ZCAM, a practical way to cryptographically fingerprint media using existing hardware in modern devices. blog.succinct.xyz/introducing-zc… → When content is captured, ZCAM hashes the raw pixels and signs them with a key generated inside Apple's Secure Enclave. → Apple's App Attest service then produces an attestation binding that key to ZCAM, guaranteeing the signature came from the app itself. →The hash, signature, and attestation are embedded as a C2PA manifest into the file. The result is a photo or video that carries its own chain of custody that any platform can use to verify its authenticity. If a single pixel was changed – through edits or AI manipulation – the hashes won’t match. If they do match, the viewer knows the photo is real.
English
9
4
60
6.4K
Succinct
Succinct@SuccinctLabs·
Today, we're launching ZCAM, an iPhone camera app to Prove What’s Real. ZCAM cryptographically signs photos and videos at the moment of capture. Anyone can independently verify the content came from a real device and hasn't been altered or AI-generated.
English
188
111
857
121.6K
tpiliposian
tpiliposian@tpiliposian·
such a huge honor to be selected as an ETHSecurity Badge holder among such a stacked security team. great initiative. day by day, securing the space
thedao.fund@thedaofund

The final 100 ETHSecurity Badge holders are in! That brings us to 200 security experts, guiding how TheDAO allocates its funds and also coordinating behind the scenes to make Ethereum safer. Big thanks to everyone who engaged with the process and helped shape it, and to @bonfiresai for building the tooling that made it possible.

English
4
1
41
1.6K

Keşfet

@PacificMeta @Giveth @thedaofund @tu_wien @vwuestholz @mchri5taki5 @strato_net @CryptoPandasYT