Use GWP-ASan to detect exploits in production environments

Trail of Bits·Tech·

Memory safety bugs like use-after-free and buffer overflows remain among the most exploited vulnerability classes in production software. While AddressSanitizer (ASan) excels at catching these bugs during development, its performance overhead (2 to 4 times) and security concerns make it unsuitable for production. What if you could detect many of the same critical bugs in live systems with virtually no performance impact? GWP-ASan (GWP-ASan Will Provide Allocation SANity) addresses this gap by us...

Read full article →

Related Articles

Show HN: Tilde.run – Agent sandbox with a transactional, versioned filesystem
ozkatz · Hacker News · 2d ago
Computer Use is 45x more expensive than structured APIs
palashawas · Hacker News · 3d ago
Bun is being ported from Zig to Rust
SergeAx · Hacker News · 4d ago
Reverse-engineering the 1998 Ultima Online demo server
notsentient · Hacker News · 2d ago
RaTeX: KaTeX-compatible LaTeX rendering engine in pure Rust
atilimcetin · Hacker News · 4d ago