art_of_bug | Publish0x
art_of_bug
art_of_bug

art_of_bug

We are research group with focus to expose bugs in design and implementation of blockchain projects. We only honour responsible disclosure with projects that honour responsible development.


IOST – Timed Out Transaction Validation Problem

19 Jul 2020 7 minute read comments art_of_bug

Welcome back. Today we come back to IOST. As we mentioned before, IOST team contacted us and we've been working together since. Today's report is on an already fixed vulnerability allowing the attacker to critically damage whole network with just sen...

Nebulas – Using WebAssembly To Bypass Gas Counter

21 Jun 2020 6 minute read comments art_of_bug

Welcome to our next episode. Today we open Nebulas. Similarly to IOST, this blockchain project uses Google's V8 JavaScript engine in order to allow smart contracts to be written in JavaScript. Speaking of IOST, after the initial disappointment due to...

Briefly On Verge & Lisk

23 May 2020 6 minute read comments art_of_bug

Welcome back. Regular readers of our blog know that we usually try to analyse the vulnerabilities very thoroughly which allows us to code functional exploits. Then we execute the exploits in our isolated environment where we run an instance of a main...

IOST – Unchecked JavaScript Class Crashes Miners

15 Apr 2020 4 minute read comments art_of_bug

Welcome to our next episode. During recent weeks we have spent a lot of time analysing IOST. Unlike the previous projects we have analysed so far, this one is not based on the code of Bitcoin. Therefore there was much more to analyse than before. On...

Qtum – Bypassing Header Spam Protection

14 Mar 2020 19 minute read comments art_of_bug

Good to see you again. Today we disclose our third report on Qtum. Previously we have published two articles discussing bypassing protection against header spam (aka Fake Stake) attack and a bug in Qtum regarding setStakeSeen mechanism. Today we pres...

Syscoin – Unhandled Exception in RLP Constructor

16 Feb 2020 10 minute read comments art_of_bug

Nice to see you again. Today we are back to Syscoin. Previously we have published two submissions to the bounty related to the implementation of Sysethereum bridge. Today we present a vulnerability that we found before working on the mentioned bounty...

Neblio – Orphans Memory Leak

19 Jan 2020 4 minute read comments art_of_bug

Welcome again. This is probably the last time we write about Neblio. We could create new and new reports because its code is incredibly buggy, but it makes no sense given the attitude of the Neblio development team. So, just to prove the point, here...

Qtum (fixed) & NavCoin (not fixed) – Direct Block Propagation mapBlockIndex DoS

26 Dec 2019 8 minute read comments art_of_bug

Welcome to the next episode. In September we have published NavCoin – Bypassing Header Spam Protection, which was a denial of service attack against the header spam filter in NavCoin. As far as we know, this issue has not been fixed in NavCoin yet. A...

Syscoin – Invalid Middle Block In Sysethereum Superblock

27 Nov 2019 7 minute read comments art_of_bug

Welcome back. Today we are back to Syscoin. Previously we have published two submissions to the bounty related to the implementation of the  Sysethereum bridge. Today we present another vulnerability that we found later in the Sysethereum bridge impl...

Neblio – Instant Node Crash Using VerifyInputsUnspent

31 Oct 2019 5 minute read comments art_of_bug

Welcome back. Last time we explained how Neblio's attempt to fix the DoS vulnerability we reported many months ago did not actually work and that it only addressed our specific exploit implementation. We explained how to perform this attack against t...