Secureum TrustX is a first-of-its-kind technical event dedicated to the Ethereum security ecosystem.

Security is critical to Ethereum and its applications. TrustX is a flagship community event dedicated to Ethereum security.

What : Ethereum Security Event

When: 13-14 November, 2023

Where: Hilton Istanbul Bosphorus, Istanbul

Leading security builders, researchers, analysts & OGs will speak across talks and workshops.

Discuss/Debate: Security Ideas
Learn/Launch: Security Products & Services
Partner/Participate: Ethereum Community
Educate/Evaluate: Ethereum Security

Topics

Consensus Layer, Execution Layer, Rollups & Bridges, Infrastructure, Languages, EVM, Secure Coding, Vulnerabilities & Exploits, Audits, Formal Verification, Monitoring, Incident Response, Bug Bounties, Insurance, Tools & Services, DeFi/NFT/Oracles/Governance, DevSecOps, Cryptography, Operational Security, Web2 Security, Zero-Knowledge, MEV, Education/Community & Privacy.

Attend

Discuss with and learn from other leading security builders, researchers & OGs in Ethereum security. These discussions could spark new ideas, interest & insights in security aspects of protocols, projects or products, and potentially introduce you to collaborators, hires or just frens.

Recordings

Schedule

13 November

Main Stage
08:30Venue Open
08:45HickupHH3: CodeClash Contest Announcement
09:00
(Each talk: 16 mins)		Danny Ryan: “WTF is L1 security and how to think about it”
Benjamin Samuels: “Introducing Attacknet: A new tool for finding bugs in consensus protocols and blockchain nodes using chaos testing”
Roberto Saltini: “Security Analysis of the Ethereum Fork Choice specification”
Thanh Hai Tran: “Formal verification of EIP 4844”
10:30
(Each talk: 16 mins)		David Theodore: “Introduction to ZK Security Research”
Ali Atiia: “Auditing ZK: Dispatches from The Frontline”
Alp Bassa: “Automated detection of vulnerabilities in ZKP circuits”
Deian Stefan: “Hardware pixie dust, or why your secure hardware implementation may not actually be secure”
Andy Zhou: “Locating Implementation Flaws of Blockchain VMs with Differential Fuzzing”
12:00Hari & Alex: “Cantina Competitions: A new era for web3 security”
13:00Anton Permenev: “Next-Gen Static Analysis for Solidity Contracts”
13:30Rajeev: GM
Zheng Leong Chua: “Exploring the Secret World of Trusted Execution Environments”
14:00
(Each talk: 16 mins)		Hari: “Compiler Safety”
Bhargava Shastry: “Finding and Understanding Miscompilation Bugs in the Solidity Compiler”
Neville Grech: “Predicting the impact of Ethereum upgrades on all deployed contracts”
Hossam Mohamed: “Building EVM Radar”
Fredrik Svantes: “Ethereum Protocol Vulnerabilities Unveiled”
15:30Michal Twardzicki: “The Importance of Post-Mortem”
16:00Code440hzrena
16:15Omar Ganiev: “Web2.5 Security: pentesting blockchain infrastructure, wallets, and custodial apps”
16:30
(Each talk: 16 mins)		Kurt Willis: “Test your tests: The do’s and don’ts of testing”
Chandrakana Nandi: “Proactive Security”
Lucas Goiriz: “A Unified Framework for Formal Verification of Vyper Bytecode using Halmos”
Fraser Brown: “The spectrum of correctness”
Yliès Falcone: “What did I Learn by Testing ERC-20 Tokens at Large?”
18:00Nebojsa Urosevic: “Eliminating Smart Contract Testing Uncertainty with Mainnet data”
18:15
(Each talk: 16 mins)		George Kobakhidze: “Scared Security Don’t Make No Security”
Emile Baizel: “Run Account Abstraction-powered DevSecOps pipelines to build more secure contracts”
Chaals Nevile: “EthTrust Security Levels – building trust with standards”
Galen Marchetti: “The Next Black Swan Event for Ethereum”
19:45GN
20:00End of Day 1
Sponsor Zone

13:00-15:00Cantina Zone
15:00-16:00Enis Ulqinaku: “Secure DeFi smart contract development on Ethereum”
16:00-17:00Raúl Riesco Granadino: “Exploring exploits and defense strategies”
17:00-17:30Oana Barbu: “How to Fix a Leaky Faucet: A Machinehood Story”
Deli Gong: “1RPC: One Endpoint for Your Privacy and Security”
17:30-18:00Code440hzrena
18:00-18:30Arseniy Reutov: “Exploration of Compound precision loss vulnerability”
18:30-19:00Nenad Vitorovic: “Tenderly TestNets: your next hacking dojo”

14 November

Main Stage
08:30Venue Open
08:45Secureum Content Announcement
09:00
(Each talk: 16 mins)		Troy Sargent: “Slither: a static analysis tool for Vyper and Solidity”
Raoul Schaffranek: “The Symbolic Solidity Debugger”
Connie Lam: “Assist Smart Contract Auditing with Large Language Model”
Deivitto: “Docker-based Auditor’s Toolbox: Enhancing Web3 Security Through Integrated Tooling”
Víctor Martínez: “Tips to master fuzzing”
10:30
(Each talk: 16 mins)		Yannis Smaragdakis: “Stories from the Auditing Trenches (including lessons for devs, lessons from top DeFi protocols)”
Kirk Baird: “Security & Common Pitfalls Of Merkle Trees”
Konstantin Nekrasov: “Non-trivial cases of the Inflation Attack”
Patrickd: “Ethereum Smart Contract Auditor’s 2023 Rewind”
Tony Ke: “In-Depth Exploration of Front-Running Protection”
12:00Chandrakana Nandi: “Beyond Testing: The Power of Proof”
13:00Konstantin Andriotis: “Remedy – unified security platform by Hexens”
13:30Dimitri Kamenski: “Creation2Chaos: Under the hood of contract creation transactions”
14:00
(Each talk: 16 mins)		Dmitriy Zakharov: “Security of Stablecoins Stabilization Algorithms”
Armen Ter-Avetisyan: “Formal Reasoning about Fairness of Liquid Staking Protocols”
Jack Sanford: “A Framework for Evaluating Audit Effectiveness”
Alex The Entreprenerd: “The Wardens Journey”
Hrishikesh Bhat: “Judge – Jury – Executionooor, Behind the scenes of an audit contest judging process”
15:30Josselin Feist: “RoundMe: rounding analysis made simpler”
16:00Jack Sanford: “Stack Ranking the Best Audit Firms”
16:15Vesselin Velichkov: “The Last Challenge Attack: Exploiting Fiat-Shamir to Attack a Plonk Verifier”
16:30
(Each talk: 16 mins)		Goncalo/gmhacker: “The Hacker Mentality: What makes one Succeed in the Bug Bounty World”
Morgan Weaver: “Incident Response for Web3: Monitoring, Automation, and Circuitbreakers in Protocol SecOps”
Philippe Dumonet: “Circuit Breakers: The Magic Pill to DeFi’s Security Problem?”
Arseniy Reutov: “Building scalable monitoring infrastructure from scratch”
18:00Andreea Buterchi: “Picus: Automated Verification of ZKP Circuits”
18:15
(Each talk: 4 mins)		Martin Holst Swende: “A curious bug: Fuzzing for consensus-issues”
Ernesto Boado: “0 != 0 (in DeFi)”
Frédéric ADAM: “The importance of Web2/Infrastructure security in Web3″
Ionut-Viorel Gingu: “Read-Only Reentrancy: 101 and How to Protect Yourself”
Ujval Misra: “Towards Secure, Trust-minimized Optimistic Rollups on Ethereum”
Riad Wahby: “What, Me Worry? Preventing Slashing by Design”
Yuguang Ipsen: “Locations Of Price Manipulation Vulnerabilities”
Niklas Kunkel: “Delivering the Verifiability that on-chain data deserves”
Andreea Buterchi: “One-click security for ZKP circuits”
Zheng Leong Chua: “Unpacking the Debate: Trusted Execution Environments (TEEs) in Web3”
Christoph Michel: “How many audits do you need?”
Justin Regele: “My Tools Don’t Work Here: Penetration Testing Browser-based Crypto Wallets”
Amrit Kumar: “Security Issues in a World of Thousand Rollups”
19:45GN
20:00End of Day 2
Sponsor Zone

13:00-15:00Armen Ter-Avetisyan, Johannes Späth: Workshop: Verifying ERC4626 Implementations with the Certora Prover
15:00-16:00Tigran Piliposyan: “Remedy Zone””Remedy – unified security platform by Hexens”
16:00-17:00Adrian Manning: “Sigma Prime Workshop: Introduction to rust fuzzing”
17:00-17:30Sherlock Zone
17:30-18:00Cairo: “Launching and protecting bug-free smart contracts with Defender 2.0”
18:00-19:00Josselin Feist: “How to fuzz like a pro”
19:00-19:30Andreea Buterchi: “ZK Security: An Automated Approach”

Speakers


Alex
The Entreprenerd
Independent Security Researcher

Andreea
Buterchi
VP of Engineering
Veridise

Bhargava
Shastry
Security Engineer
Ethereum Foundation

Connie
Lam
Head of Solution Architect
Certik

Deivitto


Junior Security Researcher
Spearbit

Frédéric
ADAM
Senior Web2 Pentester
Bug Bounty Hunter

Gonçalo /
gmhacker
Smart Contract Lead
Immunefi

Hossam
Mohamed
Senior Security Engineer Halborn

Kankodu


Independent Security Researcher

Lucas
Goiriz 
Scientific Researcher, CSIC JSR, Spearbit

Neville
Grech
Director 
Dedaub

Raoul
Schaffranek
FV Engineer
Runtime Verification

Thanh
Hai Tran
Applied Researcher ConsenSys

Víctor
Martínez
EVM & Security Researcher
Oak Security

Zheng
Leong Chua
Co-founder
Automata Network

Ali
Atiia
Founder
yAcademy | yAudit

Andy
Zhou
CEO
BlockSec

Chaals
Nevile
Technical Programs Director EEA

Danny
Ryan
Researcher
Ethereum Foundation

Dmitry
Zakharov

CTO
MixBytes

Fredrik
Svantes
Security Researcher Ethereum Foundation

Hari


Co-founder
Spearbit

Ionut-Viorel
Gingu
Security Researcher
OpenZeppelin

Kirk
Baird
Security Manager
Sigma Prime

Mooly
Sagiv

CEO
Certora

Niklas
Kunkel
Founder
Chronicle Protocol

Riad
Wahby
Co-founder and CEO, Cubist  Assistant Professor, CMU

Tony
Ke
Security Engineer
FuzzLand

Yannis
Smaragdakis
Co-founder
Dedaub 

Alp
Bassa
Research Scientist
Veridise

Arseniy
Reutov
CTO
Decurity

Chandrakana
Nandi
Principal Research Scientist
Certora

David
Theodore
Security Researcher
Ethereum Foundation

Emile
Baizel
Blockchain Architect, AWS 
JSR, Spearbit

Galen
Marchetti
Co-Founder & CEO
Kurtosis

HickupHH3


Security
researcher

Jack
Sanford
Co-founder
Sherlock

Konstantin
Nekrasov

Security Researcher MixBytes

Morgan
Weaver
Security Engineer
OpenZeppelin

Patrickd


Mentor, Secureum Researcher, Spearbit

Richard
Meissner
Co-Founder
Safe

Troy
Sargent
Security Engineer
Trail of Bits

Yliès
Falcone
Senior Tech Lead
Runtime Verification

Amrit
Kumar
COO 
AltLayer

Benjamin
Samuels
Security Engineer 
Trail of Bits

Christoph
Michel
Independent Security Researcher

Deian
Stefan
Co-founder, Cubist
Security Professor, UCSD

Fraser
Brown
CTO, Cubist
Assistant Professor, CMU

George
Kobakhidze
Security Auditor
ConsenSys Diligence

Hrishikesh
Bhat
Independent Security Researcher

Justin
Regele
Penetration
Tester

Kurt
Willis
Security Engineer
Trail of Bits

Mudit
Gupta
CISO
Polygon

Philippe
Dumonet 
CEO & Co-founder
DeReg

Roberto
Saltini
Lead Researcher 
ConsenSys

Ujval
Misra
CS PhD Student
UC Berkeley

Yuguang
Ipsen
Security Researcher OpenZeppelin

Sponsors

Ether

Gwei

Kwei