Meng Ren

TL;DR: With EVMFuzzer, the first tool that uses differential fuzzing technique to detect vulnerabilities of EVM is proposed, which has found several previously unknown security bugs in four widely used EVMs and 5 of which had been included in Common Vulnerabilities and Exposures IDs in U.S. National Vulnerability Database.

TL;DR: A methodology to reinforce EVM to stop dangerous transactions in real time even when the smart contract contains vulnerabilities, and it is found that there are still many missed vulnerabilities in contracts.

TL;DR: This work proposes Pluto, which supports vulnerability detection in inter-contract scenarios, and builds an Inter-contract Control Flow Graph (ICFG) to extract semantic information among contract calls and deduces Inter-Contract Path Constraints (ICPC) to check the reachability of execution paths more accurately.

TL;DR: Wang et al. as discussed by the authors proposed an integrated framework to enhance security in the two stages of recommendation and validation, assisting developers to implement more secure contracts more quickly, and they collected 47,398 real-world contracts, and the result shows that it outperforms existing platforms and tools, improving the average word suggestion accuracy by 30%-60% and helping detect about 25%-61% more vulnerabilities.