Improvements

resources/tob_blogposts.md

@@ -1,20 +1,78 @@
+# Trail of Bits blogposts
+The following contains the blockchain related blogposts made by Trail of Bits.
+
+
+- [Trail of Bits blogposts](#trail-of-bits-blogposts)
+  - [Consensus algorithms](#consensus-algorithms)
+  - [Fuzzing compilers](#fuzzing-compilers)
+  - [General](#general)
+  - [Guidance](#guidance)
+  - [Presentations](#presentations)
+  - [Tooling](#tooling)
+  - [Upgradeability](#upgradeability)
+  - [Zero-knowledge](#zero-knowledge)
+
+## Consensus algorithms
+
+Research in the distributes systems area
+
+| Date | Title | Description |
+|-----|-----|-----|
+| 2021/11/11 | [Motivating global stabilization](https://blog.trailofbits.com/2021/11/11/motivating-global-stabilization/) | Review of Fischer, Lynch, and Paterson’s classic impossibility result and global stabilization time assumption |
+| 2019/10/25 | [Formal Analysis of the CBC Casper Consensus Algorithm with TLA+](https://blog.trailofbits.com/2019/10/25/formal-analysis-of-the-cbc-casper-consensus-algorithm-with-tla/) | Verification of finality of the Correct By Construction (CBC) PoS consensus protocol |
+| 2019/07/12 | [On LibraBFT’s use of broadcasts](https://blog.trailofbits.com/2019/07/12/librabft/) | Liveness of LibraBFT and HotStuff algorithms |
+| 2019/07/02 | [State of the Art Proof-of-Work: RandomX](https://blog.trailofbits.com/2019/07/02/state/) | Summary of our audit of ASIC and GPU-resistant PoW algorithm |
+| 2018/10/12 | [Introduction to Verifiable Delay Functions (VDFs)](https://blog.trailofbits.com/2018/10/12/introduction-to-verifiable-delay-functions-vdfs/) | Basics of VDFs - a class of hard to compute, not paralelizable, but easily verifiable functions |
+
+## Fuzzing compilers
+
+Our work in the topic of fuzzing the `solc` compiler
+
+| Date | Title | Description |
+|-----|-----|-----|
+| 2021/03/23 | [A Year in the Life of a Compiler Fuzzing Campaign](https://blog.trailofbits.com/2021/03/23/a-year-in-the-life-of-a-compiler-fuzzing-campaign/) | Results and feature of fuzzing solc |
+| 2020/06/05 | [Breaking the Solidity Compiler with a Fuzzer](https://blog.trailofbits.com/2020/06/05/breaking-the-solidity-compiler-with-a-fuzzer/) | Our approach to fuzzing solc |
+
+
 ## General
 
-Security research, analyses, guidances, and writeups
+Security research, analyses, announcements, and writeups
 
 | Date | Title | Description |
 |-----|-----|-----|
 | 2022/10/12 | [Porting the Solana eBPF JIT compiler to ARM64](https://blog.trailofbits.com/2022/10/12/solana-jit-compiler-ebpf-arm64/) | Low-level writeup of the work done to make Solana compiler work on ARM64 |
 | 2022/06/24 | [Managing risk in blockchain deployments](https://blog.trailofbits.com/2022/06/24/managing-risk-in-blockchain-deployments/) | Summary of "Do You Really Need a Blockchain? An Operational Risk Assessment" report |
 | 2022/06/21 | [Are blockchains decentralized?](https://blog.trailofbits.com/2022/06/21/are-blockchains-decentralized/) | Summary of "Are Blockchains Decentralize? Unintended Centralities in Distributed Ledgers" report |
-| 2021/02/05 | [Confessions of a smart contract paper reviewer](https://blog.trailofbits.com/2021/02/05/confessions-of-a-smart-contract-paper-reviewer/) | Six requirements for a good research paper |
 | 2020/08/05 | [Accidentally stepping on a DeFi lego](https://blog.trailofbits.com/2020/08/05/accidentally-stepping-on-a-defi-lego/) | Writeup of a vulnerability in yVault project |
-| 2020/05/15 | [Bug Hunting with Crytic](https://blog.trailofbits.com/2020/05/15/bug-hunting-with-crytic/) | Description of 9 bugs found by Crytic in public projects |
+| 2020/05/15 | [Bug Hunting with Crytic](https://blog.trailofbits.com/2020/05/15/bug-hunting-with-crytic/) | Description of 9 bugs found by Trail of Bits tools in public projects |
+| 2019/11/13 | [Announcing the Crytic $10k Research Prize](https://blog.trailofbits.com/2019/11/13/announcing-the-crytic-10k-research-prize/) | Academic research prize promoting open source work |
 | 2019/10/24 | [Watch Your Language: Our First Vyper Audit](https://blog.trailofbits.com/2019/10/24/watch-your-language-our-first-vyper-audit/) | Pros and cons of Vyper language and disclosure of vulnerability in the Vyper's compiler |
 | 2019/08/08 | [246 Findings From our Smart Contract Audits: An Executive Summary](https://blog.trailofbits.com/2019/08/08/246-findings-from-our-smart-contract-audits-an-executive-summary/) | Publication of data aggregated from our audits. Discussion about possibility of automatic and manual detection of vulnerabilities, and usefulness of unit tests |
+| 2018/11/19 | [Return of the Blockchain Security Empire Hacking](https://blog.trailofbits.com/2018/11/19/return-of-the-blockchain-security-empire-hacking/) |
+| 2018/02/09 | [Parity Technologies engages Trail of Bits](https://blog.trailofbits.com/2018/02/09/parity-technologies-engages-trail-of-bits/) |  |
+| 2017/11/06 | [Hands on the Ethernaut CTF](https://blog.trailofbits.com/2017/11/06/hands-on-the-ethernaut-ctf/) | First write-up on Ethernaut |
+
+## Guidance
+
+General guidance
+
+| Date | Title | Description |
+|-----|-----|-----|
+| 2021/02/05 | [Confessions of a smart contract paper reviewer](https://blog.trailofbits.com/2021/02/05/confessions-of-a-smart-contract-paper-reviewer/) | Six requirements for a good research paper |
 | 2018/11/27 | [10 Rules for the Secure Use of Cryptocurrency Hardware Wallets](https://blog.trailofbits.com/2018/11/27/10-rules-for-the-secure-use-of-cryptocurrency-hardware-wallets/) | Recommendations for the secure use of hardware wallets. |
+| 2018/10/04 | [Ethereum security guidance for all](https://blog.trailofbits.com/2018/10/04/ethereum-security-guidance-for-all/) | Announcement of office hours, Blockchain Security Contacts, and Awesome Ethereum Security |
 | 2018/04/06 | [How to prepare for a security review](https://blog.trailofbits.com/2018/04/06/how-to-prepare-for-a-security-audit/) | Checklist for before having a security audit |
-| 2017/11/06 | [Hands on the Ethernaut CTF](https://blog.trailofbits.com/2017/11/06/hands-on-the-ethernaut-ctf/) | Solutions for six challenges |
+
+## Presentations
+
+Talks, videos, and slides
+
+| Date | Title | Description |
+|-----|-----|-----|
+| 2019/01/18 | [Empire Hacking: Ethereum Edition 2](https://blog.trailofbits.com/2019/01/18/empire-hacking-ethereum-edition-2/) | Talks include: `Anatomy of an unsafe smart contract programming language`, `Evaluating digital asset security fundamentals`, `Contract upgrade risks and recommendations`, `How to buidl an enterprise-grade mainnet Ethereum client`, `Failures in on-chain privacy`, `Secure micropayment protocols`, `Designing the Gemini dollar: a regulated, upgradeable, transparent stablecoin`, `Property testing with Echidna and Manticore for secure smart contracts`, `Simple is hard: Making your awesome security thing usable` |
+| 2018/11/16 | [Trail of Bits @ Devcon IV Recap](https://blog.trailofbits.com/2018/11/16/trail-of-bits-devcon-iv-recap/) | Talks include: `Using Manticore and Symbolic Execution to Find Smart Contract Bugs`, `Blockchain Autopsies`, `Current State of Security` |
+| 2017/12/22 | [Videos from Ethereum-focused Empire Hacking](https://blog.trailofbits.com/2017/12/22/videos-from-ethereum-focused-empire-hacking/) | Talks include: `A brief history of smart contract security`, `A CTF Field Guide for smart contracts`, `Automatic bug finding for the blockchain`, `Addressing infosec needs with blockchain technology` |
+
 
 ## Tooling
 
@@ -56,43 +114,8 @@ Our work related to contracts upgradeability
 | 2018/10/29 | [How contract migration works](https://blog.trailofbits.com/2018/10/29/how-contract-migration-works/) | Alternative to upgradability mechanism - moving data to a new contract |
 | 2018/09/05 | [Contract upgrade anti-patterns](https://blog.trailofbits.com/2018/09/05/contract-upgrade-anti-patterns/) | Discussion of risks and recommendations for Data Separation and Delegatecall Proxy patterns. Disclosure of vulnerability in Zeppelin Proxy contract. |
 
-## Consensus algorithms
-
-Research in the distributes systems area
-
-| Date | Title | Description |
-|-----|-----|-----|
-| 2021/11/11 | [Motivating global stabilization](https://blog.trailofbits.com/2021/11/11/motivating-global-stabilization/) | Review of Fischer, Lynch, and Paterson’s classic impossibility result and global stabilization time assumption |
-| 2019/10/25 | [Formal Analysis of the CBC Casper Consensus Algorithm with TLA+](https://blog.trailofbits.com/2019/10/25/formal-analysis-of-the-cbc-casper-consensus-algorithm-with-tla/) | Verification of finality of the Correct By Construction (CBC) PoS consensus protocol |
-| 2019/07/12 | [On LibraBFT’s use of broadcasts](https://blog.trailofbits.com/2019/07/12/librabft/) | Liveness of LibraBFT and HotStuff algorithms |
-| 2019/07/02 | [State of the Art Proof-of-Work: RandomX](https://blog.trailofbits.com/2019/07/02/state/) | Summary of our audit of ASIC and GPU-resistant PoW algorithm |
-| 2018/10/12 | [Introduction to Verifiable Delay Functions (VDFs)](https://blog.trailofbits.com/2018/10/12/introduction-to-verifiable-delay-functions-vdfs/) | Basics of VDFs - a class of hard to compute, not paralelizable, but easily verifiable functions |
-
-## Announcements
-
-Notes of something we did or are planning to do
-
-| Date | Title | Description |
-|-----|-----|-----|
-| 2020/04/23 | [Announcing the 1st International Workshop on Smart Contract Analysis](https://blog.trailofbits.com/2020/04/23/announcing-the-1st-international-workshop-on-smart-contract-analysis/) | Workshop co-organized with Northern Arizona University and co-located with ISSTA 2020 |
-| 2019/12/09 | [Mainnet360: joint economic and security reviews with Prysm Group](https://blog.trailofbits.com/2019/12/09/introducing-mainnet360-a-joint-economic-and-security-assessment-with-prysm-group/) |  |
-| 2019/11/13 | [Announcing the Crytic $10k Research Prize](https://blog.trailofbits.com/2019/11/13/announcing-the-crytic-10k-research-prize/) |  |
-| 2018/11/19 | [Return of the Blockchain Security Empire Hacking](https://blog.trailofbits.com/2018/11/19/return-of-the-blockchain-security-empire-hacking/) |  |
-| 2018/10/04 | [Ethereum security guidance for all](https://blog.trailofbits.com/2018/10/04/ethereum-security-guidance-for-all/) | Announcement of office hours, Blockchain Security Contacts, and Awesome Ethereum Security |
-| 2018/02/09 | [Parity Technologies engages Trail of Bits](https://blog.trailofbits.com/2018/02/09/parity-technologies-engages-trail-of-bits/) |  |
-| 2017/10/19 | [Trail of Bits joins the Enterprise Ethereum Alliance](https://blog.trailofbits.com/2017/10/19/trail-of-bits-joins-the-enterprise-ethereum-alliance/) | The first blockchain blogpost; announcement of OSS tools. |
-
-## Presentations
-
-Talks, videos, and slides
-
-| Date | Title | Description |
-|-----|-----|-----|
-| 2019/01/18 | [Empire Hacking: Ethereum Edition 2](https://blog.trailofbits.com/2019/01/18/empire-hacking-ethereum-edition-2/) | Talks include: `Anatomy of an unsafe smart contract programming language`, `Evaluating digital asset security fundamentals`, `Contract upgrade risks and recommendations`, `How to buidl an enterprise-grade mainnet Ethereum client`, `Failures in on-chain privacy`, `Secure micropayment protocols`, `Designing the Gemini dollar: a regulated, upgradeable, transparent stablecoin`, `Property testing with Echidna and Manticore for secure smart contracts`, `Simple is hard: Making your awesome security thing usable` |
-| 2018/11/16 | [Trail of Bits @ Devcon IV Recap](https://blog.trailofbits.com/2018/11/16/trail-of-bits-devcon-iv-recap/) | Talks include: `Using Manticore and Symbolic Execution to Find Smart Contract Bugs`, `Blockchain Autopsies`, `Current State of Security` |
-| 2017/12/22 | [Videos from Ethereum-focused Empire Hacking](https://blog.trailofbits.com/2017/12/22/videos-from-ethereum-focused-empire-hacking/) | Talks include: `A brief history of smart contract security`, `A CTF Field Guide for smart contracts`, `Automatic bug finding for the blockchain`, `Addressing infosec needs with blockchain technology` |
 
-## ZKP
+## Zero-knowledge
 
 Our work in Zero-Knowledge Proofs space
 
@@ -108,11 +131,3 @@ Our work in Zero-Knowledge Proofs space
 | 2020/05/21 | [Reinventing Vulnerability Disclosure using Zero-knowledge Proofs](https://blog.trailofbits.com/2020/05/21/reinventing-vulnerability-disclosure-using-zero-knowledge-proofs/) | Announcement of DARPA sponsored work on ZK proofs of exploitability |
 | 2019/10/04 | [Multi-Party Computation on Machine Learning](https://blog.trailofbits.com/2019/10/04/multi-party-computation-on-machine-learning/) | Implementation of 3-party computation protocol for perceptron and support vector machine (SVM) algorithms |
 
-## Fuzzing compilers
-
-Our work in the topic of fuzzing the `solc` compiler
-
-| Date | Title | Description |
-|-----|-----|-----|
-| 2021/03/23 | [A Year in the Life of a Compiler Fuzzing Campaign](https://blog.trailofbits.com/2021/03/23/a-year-in-the-life-of-a-compiler-fuzzing-campaign/) | Results and feature of fuzzing solc |
-| 2020/06/05 | [Breaking the Solidity Compiler with a Fuzzer](https://blog.trailofbits.com/2020/06/05/breaking-the-solidity-compiler-with-a-fuzzer/) | Our approach to fuzzing solc |