https://miscreants.github.io/blog.trailofbits.com/authors/dominik-klemba/Recent content in Dominik Klemba on The Trail of Bits BlogHugoen-usTue, 16 Dec 2025 00:00:00 -0500https://miscreants.github.io/blog.trailofbits.com/2025/12/16/use-gwp-asan-to-detect-exploits-in-production-environments/Tue, 16 Dec 2025 07:00:00 -0500https://miscreants.github.io/blog.trailofbits.com/2025/12/16/use-gwp-asan-to-detect-exploits-in-production-environments/GWP-ASan is a sampling-based memory error detection tool that catches critical bugs like use-after-free and buffer overflows in production environments with near-zero performance overhead, unlike AddressSanitizer which is too resource-intensive for deployment.https://miscreants.github.io/blog.trailofbits.com/2024/09/10/sanitize-your-c-containers-asan-annotations-step-by-step/Tue, 10 Sep 2024 09:00:42 -0400https://miscreants.github.io/blog.trailofbits.com/2024/09/10/sanitize-your-c-containers-asan-annotations-step-by-step/AddressSanitizer (ASan) is a compiler plugin that helps detect memory errors like buffer overflows or use-after-frees. In this post, we explain how to equip your C++ code with ASan annotations to find more bugs. We also show our work on ASan in GCC and LLVM. In LLVM, Trail of […]https://miscreants.github.io/blog.trailofbits.com/2024/05/16/understanding-addresssanitizer-better-memory-safety-for-your-code/Thu, 16 May 2024 09:00:57 -0400https://miscreants.github.io/blog.trailofbits.com/2024/05/16/understanding-addresssanitizer-better-memory-safety-for-your-code/This post will guide you through using AddressSanitizer (ASan), a compiler plugin that helps developers detect memory issues in code that can lead to remote code execution attacks (such as WannaCry or this WebP implementation bug). ASan inserts checks around memory accesses during compile time, and crashes the program […]