Hacking crypto (cryptography! π€ͺ) without hard math: how to find bugs in implementation.π¨π»βπ»ππ©πΏβπ»π€π₯
Security researcher Matt Byrdwell, aka Nerdwell, in his four-part blog series presents a practical hackerβs view of cryptography. He claims that real-world vulnerabilities rarely come from breaking math - but from breaking implementations.
The author goes through public security research publications and known vulnerabilities, presenting examples and deep dives into different ways to approach cryptography, depending on where and how itβs implemented (blockchain and cryptocurrencies included)
In a nutshell: The harder something looks, the less people test it. As a result - more bugs, less competition, higher rewards.
No matter how good you are at security research or hacking (or math), I recommend you read the articles below. Youβll find some interesting and useful ideas there. Enjoy - and if you know someone who might be interested as well, please share!
More details:
Hacking crypto
Part I [Blog]: https://www.bugcrowd.com/blog/hacking-crypto-part-i/
Part II: Hacking blockchains for fun and profit [Blog]: https://www.bugcrowd.com/blog/hacking-crypto-part-ii-hacking-blockchains-for-fun-and-profit/
Part III: Hardware [Blog]: https://www.bugcrowd.com/blog/hacking-crypto-part-iii-hardware/
Part IV: Web and mobile applications [Blog]: https://www.bugcrowd.com/blog/hacking-crypto-part-iv-web-and-mobile-applications/
