samczsun

Research Partner

samczsun

Sam is a Research Partner focused on Paradigm’s portfolio companies and research into security and related topics. Previously, Sam was a security engineer at Trail of Bits where he worked on improving security tooling for developers and helped clients write safer code. In his spare time, Sam helps secure the cryptocurrency ecosystem by responsibly disclosing vulnerabilities and publishing educational resources.

Written by samczsun

Two Rights Might Make A Wrong

8.17.2021 | samczsun

A common misconception in building software is that if every component in a system is individually verified to be safe, the system itself is also safe. Nowhere is this belief [→]

The Dangers of Surprising Code

8.13.2021 | samczsun

If you work in software engineering, odds are you've heard of at least one software engineering principle. While I wouldn't advocate for religiously following every principle to the letter, there [→]

Booby Trapping the Ethereum Blockchain

5.27.2021 | samczsun

This is the second in a series of blog posts about bugs I've found in go-ethereum (Geth). If you haven't already, take a look at Part 1 here. Today's post is about a [→]

Uncovering a Four Year Old Bug

4.19.2021 | samczsun

Every adventure requires a first step - The Cheshire Cat What does it take to find a bug? What about one in a contract that's survived the test of time? [→]

Paradigm CTF 2021 – swap

4.9.2021 | samczsun

When you have eliminated all which is impossible, then whatever remains, however improbable, must be the truth - Sherlock Holmes Paradigm CTF 2021 took place in early February and together, [→]

The Block Mined In January, 584942419325

3.30.2021 | samczsun

This is the first in a series of blog posts about the bugs I've found in go-ethereum (Geth), the official Golang implementation of the Ethereum protocol. While you don't need a deep [→]

So you want to use a price oracle

11.9.2020 | samczsun

In late 2019, I published a post titled “Taking undercollateralized loans for fun and for profit”. In it, I described an economic attack on Ethereum dApps that rely on accurate [→]

Changing Lanes

10.9.2020 | samczsun

In early 2020, I was given an opportunity to join Trail of Bits over the summer. I was familiar with the high quality of work that they produced so I happily accepted [→]

Escaping the Dark Forest

9.24.2020 | samczsun

I was about to wrap up for the night when I decided to take another look at some smart contracts. I wasn’t expecting anything interesting, of course. Over the past [→]