Tineola: Taking a Bite out of Enterprise Blockchain
Enterprise blockchain adoption reached a fever pitch in 2018, but the security community has been late to the game of securing these platforms against attacks. We wanted to bridge the gap between the widespread use of enterprise blockchain platforms and the limited knowledge we have about their security by exploring the leading enterprise platform, Hyperledger Fabric, from the perspective of a penetration tester. So we developed Tineola, a new red teamer’s tool for interacting with Fabric deployments.
Learn more about:
- Common misconfigurations, vulnerabilities, and pitfalls of enterprise blockchains
- Six typical anti-patterns of composed systems with Fabric components, and recommendations to prevent their exploitation
- Suggestions for future research using Tineola to help secure enterprise blockchains