Ben聽Perez

Senior Security Engineer at Twitter

New York, New York, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

馃ぉ
Rockstar
馃帗
Top School
Ben Perez is a Senior Security Engineer based in New York with nine years of experience specializing in cryptography, functional programming, and blockchain security. He has led DARPA-funded research on novel zero-knowledge proof protocols at Trail of Bits and now applies that expertise to large-scale security work as a Senior Security Engineer at Twitter. Ben is an active open-source contributor with security-focused commits to OpenJDK and performance and fuzzing improvements to the widely used Echidna smart-contract fuzzer. His background spans both research and practical tooling鈥攔anging from lattice-cryptography investigations at UCSD to Haskell-based binary analysis and ARM disassembly鈥攇iving him a rare blend of formal crypto understanding and hands-on systems engineering. Colleagues describe him as a pragmatic investigator who uncovers subtle mathematical and implementation flaws before they become incidents.
code9 years of coding experience
job2 years of employment as a software developer
bookUniversity of California, San Diego
bookBachelor's degree, Mathematics, Bachelor's degree, Mathematics at St. Olaf College
github-logo-circle

Github Skills (20)

solidity10
jvm10
testing10
evm10
audit10
java10
security10
openjdk10
javas10
code-auditing10
audit-logging10
ethereum10
cryptography10
smart-contracts10
fuzzing10

Programming languages (5)

JavaRustSolidityHaskellPython

Github contributions (5)

github-logo-circle
Examples of Solidity security issues
Role in this project:
userSecurity Engineer
Contributions:32 commits, 11 PRs, 21 pushes in 1 month
Contributions summary:Ben's contributions primarily focus on identifying and mitigating security vulnerabilities in Solidity smart contracts, specifically targeting denial-of-service (DoS) attacks and other common security flaws. Their work includes implementing secure alternatives to vulnerable code, such as refactoring auction and crowdfunding contracts to avoid DoS vulnerabilities related to refund mechanisms. The user's commits also involve addressing issues related to incorrect constructor names and the use of potentially unsafe external calls.
ethereumvulnerabilitiessecurityblockchainsolidity
crytic/echidna

Apr 2018 - May 2019

Ethereum smart contract fuzzer
Role in this project:
userBackend Developer & Security Engineer
Contributions:97 commits, 33 PRs, 77 pushes in 1 year 1 month
Contributions summary:Ben focused on optimizing the performance and security of the smart contract fuzzer. They addressed performance issues related to code coverage, modifying the core execution logic in `Echidna/Exec.hs` to improve efficiency. Furthermore, the user added functionality for the analysis of high-coverage inputs, which is a key element of fuzzing and security testing. They added options to control coverage guidance.
smart-contractethereumsecuritytestingcontract
Find and Hire Top DevelopersWe鈥檝e analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Ben Perez - Senior Security Engineer at Twitter