Insights & Research
Blog
Security research, technical deep-dives, and insights from the front lines of smart contract auditing.
- 3 min read
Fizz: Single Command Fuzz Suite
Fizz is an open-source AI Skill: a single command in your AI prompt gives you ~80% stateful fuzz-testing coverage. It generates invariants, writes stateful fuzz tests, runs the campaign, and has already surfaced multiple High & Medium severity vulnerabilities.
Read post - 3 min read
Winning a 2025 security contest in <20 minutes
solidity-auditor v3 — an open-source AI tool — caught 14 of 17 findings (82.4%) on the DODO security contest in under 20 minutes, beating every open-source comparator.
Read post
What This Blog Covers
The Pashov Audit Group blog features in-depth security research, post-mortem analyses of DeFi exploits, smart contract vulnerability patterns, audit preparation guides, and best practices for protocol security. Drawing from our experience of 400+ audits and 4,000+ vulnerabilities discovered, our researchers share actionable insights to help developers build more secure smart contracts.
Follow us on X (Twitter) for new posts, or explore our public audit reports on GitHub.