Our Blog
Musings from the Blockchain
A collection of writing from our team on exploits, tutorials, and more.

Solana Formal Verification: A Case Study
We present a novel framework for formal verification of Solana Anchor programs — and a case study application to the Squads multisig.

Rust, Realloc, and References
Rust is safe.. right? Not if your dependencies are unsafe.. A deep dive into a subtle Solana SDK bug, Rust internals, and how we found it all.

The Move Prover: A Guide
A practical guide to the Move Prover - tutorial, case study, and specifications.

Move: An Auditor's Introduction
What actually makes Move secure? A discussion of Move's typing system and formal verification.

Reverse Engineering Solana with Binary Ninja
An introduction to our open-source Binary Ninja plugin for blackbox Solana program analysis along with an executive reference to the Solana runtime.

The Story of the Curious Rent Thief
A tale of pickpockets preying on the Solana ecosystem. Read our investigation into the persistent theft of rent from uninitialized accounts. This is the story of the Solend rent thief.

Becoming a Millionaire, 0.000150 BTC at a Time
How we discovered a critical issue in Solana's stable swap implementation. A story about arbitrage and rounding.

The $200m Bluff: Cheating Oracles on Solana
How we fooled oracles to beat the house. An exploration into liquidity tokens and oracle price manipulation.