Echidna Enters a New Era of Symbolic Execution

Posted5 months agoActive4 months ago

galapago

23 points

6 comments

gustavo-grieco.github.ioTechstory

excitedpositive

Debate

0/100

Symbolic ExecutionSoftware DevelopmentSecurity Testing

Key topics

Symbolic Execution

Software Development

Security Testing

Echidna, a tool for symbolic execution, has entered a new era with enhanced capabilities for software security testing.

Snapshot generated from the HN discussion

Discussion Activity

Light discussion

First comment

Peak period

84-96h

Avg / period

Key moments

01Story posted
Aug 20, 2025 at 2:43 AM EDT
5 months ago
Step 01
02First comment
Aug 23, 2025 at 9:29 AM EDT
3d after posting
Step 02
03Peak activity
3 comments in 84-96h
Hottest window of the conversation
Step 03
04Latest activity
Aug 25, 2025 at 2:46 AM EDT
4 months ago
Step 04

Generating AI Summary...

Analyzing up to 500 comments to identify key contributors and discussion patterns

Discussion (6 comments)

Showing 6 comments

rich_sasha

4 months ago

1 reply

When I saw the headline, I thought the poor creatures are being executed, in a symbolic way.

cwmoore

4 months ago

Somehow I read execution as “extinction” and immediately blamed the platypus. Not my area.

mac-monet

4 months ago

1 reply

Started using this recently, extremely impressed with this tool's capabilities. The only issue is the TUI is absolutely miserable to use.

One of the biggest pain points for debugging failures that Echidna finds is the path of getting the failure into a forge test that I can replay, and then slowly diagnosing where the bug is stemming from. An alternative path that could be useful is to stream the function call sequence (with the option to disable traces as well) to a file. This would allow easily creating a forge test from it. This file could even be used to generate a test and be diagnosed by a coding agent. Resolving the "last mile" of finding these failures would make the DX absolutely top tier.

hackhomelab

4 months ago

1 reply

What are you missing from the TUI? The latest version has improved it a bit, it's more responsive now and you can navigate around the UI with the keyboard more easily (tab, up/down arrows, and pgup/pgdown). If you don't like it though, you can also use `--format text` for a UI-less experience that just prints things to stdout.

As for converting failures into forge tests, there's multiple tools offering a solution to that problem; check out (in no particular order):

  * the Recon VSCode extension (https://github.com/Recon-Fuzz/recon-extension)
  * fuzz-utils (https://github.com/crytic/fuzz-utils)
  * runes (https://github.com/Enigma-Dark/runes)
  * fuzz_parser (https://github.com/Enigma-Dark/fuzz-trace-parser)

Some of them use the Echidna trace output, while others (like runes and fuzz-utils) take advantage of the fact that Echidna saves these sequences as part of the corpus during runtime (particularly, in the `reproducers` and `reproducers-unshrunk` corpus subdirectories)

mac-monet

4 months ago

Wow these would have saved my team and I a ton of time. Thanks for the links.

For what's missing from the TUI. The fact that the outputs in the main window are not selectable makes it difficult to keep the fuzzer running but copy the call sequence. I have to ctrl+c to get it into my terminal output and copy from there. I think these tools might help here though.

homarp

4 months ago

echidna is an Ethereum smart contract fuzzer

View full discussion on Hacker News

ID: 44959292Type: storyLast synced: 11/20/2025, 11:35:13 AM

Want the full context?

Jump to the original sources

Read the primary article or dive into the live Hacker News thread when you're ready.

Open link View on HN