Manticore: A User-Friendly Symbolic Execution Framework for Binaries and Smart Contracts

Mossberg, Mark; Manzano, Felipe Scalco; Hennenfent, Eric; Groce, Alex; Grieco, Gustavo; Feist, Josselin; Brunson, Trent; Dinaburg, Artem

doi:10.48550/arxiv.1907.03890

Cited by 5 publications

(7 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since symbolic execution deals with unknown variables as symbolic variables, it is potentially suitable for analysis of smart contracts, which utilizes information outside codes [6], i.e., blockchain. Hence, many tools have been proposed so far [5], [12], [23], [30]- [32], [44]. The primary motivation of recent works aims to extend analysis areas, e.g., intercontract analysis and contract creation.…”

Section: B Other Analysis Tools For Ethereummentioning

confidence: 99%

Eth2Vec: Learning Contract-Wide Code Representations for Vulnerability Detection on Ethereum Smart Contracts

Ashizawa

Yanai

Cruz

et al. 2021

Proceedings of the 3rd ACM International Symposium on Blockchain and Secure Critical Infrastructure

View full text Add to dashboard Cite

Ethereum smart contracts are programs that run on the Ethereum blockchain, and many smart contract vulnerabilities have been discovered in the past decade. Many security analysis tools have been created to detect such vulnerabilities, but their performance decreases drastically when codes to be analyzed are being rewritten. In this paper, we propose Eth2Vec, a machine-learning-based static analysis tool for vulnerability detection in smart contracts. It is also robust against code rewrites, i.e., it can detect vulnerabilities even in rewritten codes. Existing machine-learning-based static analysis tools for vulnerability detection need features, which analysts create manually, as inputs. In contrast, Eth2Vec automatically learns features of vulnerable Ethereum Virtual Machine (EVM) bytecodes with tacit knowledge through a neural network for natural language processing. Therefore, Eth2Vec can detect vulnerabilities in smart contracts by comparing the code similarity between target EVM bytecodes and the EVM bytecodes it already learned. We conducted experiments with existing open databases, such as Etherscan, and our results show that Eth2Vec outperforms a recent model based on support vector machine in terms of well-known metrics, i.e., precision, recall, and F1-score. CCS CONCEPTS• Security and privacy → Software security engineering; Software reverse engineering; Vulnerability management.

show abstract

Section: B Other Analysis Tools For Ethereummentioning

confidence: 99%

Eth2Vec: Learning Contract-Wide Code Representations for Vulnerability Detection on Ethereum Smart Contracts

Ashizawa

Yanai

Cruz

et al. 2021

Proceedings of the 3rd ACM International Symposium on Blockchain and Secure Critical Infrastructure

View full text Add to dashboard Cite

show abstract

“…Furthermore, analysis of reentrancy attacks is often heuristic and thus Oyente often produces many false positives. Extensions of Oyente that support readability of outputs from symbolic execution have been proposed [20,21], and the usability of RA can be potentially be improved in a similar way.…”

Section: Related Workmentioning

confidence: 99%

Hunting for Re-Entrancy Attacks in Ethereum Smart Contracts via Static Analysis

Chinen¹,

Yanai²,

Cruz³

et al. 2020

Preprint

View full text Add to dashboard Cite

Ethereum smart contracts are programs that are deployed and executed in a consensus-based blockchain managed by a peer-topeer network. Several re-entrancy attacks that aim to steal Ether, the cryptocurrency used in Ethereum, stored in deployed smart contracts have been found in the recent years. A countermeasure to such attacks is based on dynamic analysis that executes the smart contracts themselves, but it requires the spending of Ether and knowledge of attack patterns for analysis in advance. In this paper, we present a static analysis tool named RA (Re-entrancy Analyzer), a combination of symbolic execution and equivalence checking by a satisfiability modulo theories solver to analyze smart contract vulnerabilities to re-entrancy attacks. In contrast to existing tools, RA supports analysis of inter-contract behaviors by using only the Etherum Virtual Machine bytecodes of target smart contracts, i.e., even without prior knowledge of attack patterns and without spending Ether. Furthermore, RA can verify existence of vulnerabilities to re-entrancy attacks without execution of smart contracts and it does not provide false positives and false negatives. We also present an implementation of RA to evaluate its performance in analyzing the vulnerability of deployed smart contracts to re-entrancy attacks and show that RA can precisely determine which smart contracts are vulnerable.

show abstract

“…Another reason to opt for bytecode rewriting are existing smart contract vulnerability detection tools. As of now, the majority of them operate on the EVM level [13,20,23,24,32] and report their findings on the EVM level. A bytecode rewriting approach can exploit the reports of these analysis tools to directly generate an EVM bytecodebased patch.…”

Section: Design Choicesmentioning

confidence: 99%

EVMPatch: Timely and Automated Patching of Ethereum Smart Contracts

Rodler,

Li,

Karame

et al. 2020

Preprint

View full text Add to dashboard Cite

Recent attacks exploiting errors in smart contract code had devastating consequences thereby questioning the benefits of this technology. It is currently highly challenging to fix errors and deploy a patched contract in time. Instant patching is especially important since smart contracts are always online due to the distributed nature of blockchain systems. They also manage considerable amounts of assets, which are at risk and often beyond recovery after an attack. Existing solutions to upgrade smart contracts depend on manual and error-prone processes. This paper presents a framework, called EVM-PATCH, to instantly and automatically patch faulty smart contracts. EVMPATCH features a bytecode rewriting engine for the popular Ethereum blockchain, and transparently/automatically rewrites common off-the-shelf contracts to upgradable contracts. The proof-of-concept implementation of EVM-PATCH automatically hardens smart contracts that are vulnerable to integer over/underflows and access control errors, but can be easily extended to cover more bug classes. Our extensive evaluation on 14,000 real-world (vulnerable) contracts demonstrate that our approach successfully blocks attack transactions launched on these contracts, while keeping the intended functionality of the contract intact. We perform a study with experienced software developers, showing that EVMPATCH is practical, and reduces the time for converting a given Solidity smart contract to an upgradable contract by 97.6 %, while ensuring functional equivalence to the original contract.

show abstract

Manticore: A User-Friendly Symbolic Execution Framework for Binaries and Smart Contracts

Cited by 5 publications

References 0 publications

Eth2Vec: Learning Contract-Wide Code Representations for Vulnerability Detection on Ethereum Smart Contracts

Eth2Vec: Learning Contract-Wide Code Representations for Vulnerability Detection on Ethereum Smart Contracts

Hunting for Re-Entrancy Attacks in Ethereum Smart Contracts via Static Analysis

EVMPatch: Timely and Automated Patching of Ethereum Smart Contracts

Contact Info

Product

Resources

About