Senior backend engineer focused on blockchain infrastructure and smart contract security. Currently building high-throughput event pipelines at Blockparty and researching symbolic execution for EVM bytecode. Based in Brasília, Brazil.
Coverage-guided greybox fuzzing for EVM smart contracts via go-ethereum bytecode instrumentation.
A fork of go-ethereum that instruments EVM bytecode at runtime to enable coverage-guided fuzzing. Developed as part of my MS thesis research, it combines symbolic execution hints with AFL-style feedback to discover deep execution paths in complex contracts. Achieved 2.3x higher branch coverage compared to existing tools on DeFi protocol test suites.
State merging techniques to mitigate path explosion in EVM symbolic execution.
Research implementation of partial state merging for EVM symbolic execution using Z3 SMT solver. Explores lazy merging strategies that defer merge points until loop boundaries, reducing solver queries by ~40% on average. Integrated with Mythril as a plugin to enable faster analysis of complex DeFi contracts with nested conditionals.
High-throughput blockchain event indexing pipeline for OpenSearch.
Real-time event indexing system built at Blockparty to handle 30,000+ events/second from Ethereum and Polygon nodes. Uses a custom batching layer with backpressure control to optimize bulk indexing to OpenSearch, currently managing 4B+ documents across 50+ indices. Reduced indexing latency from 12s to sub-second p99 through tuning refresh intervals and replica sharding strategy.
Static analysis tool for detecting cross-contract state inconsistency vulnerabilities.
Built during research collaboration with Olympix to identify cross-contract reentrancy and state drift bugs in Solidity codebases. Uses dataflow analysis on Slither IR to track external calls and state reads/writes across contract boundaries. Discovered 3 previously unknown vulnerabilities in audited DeFi protocols with combined TVL of $120M+.
Index bloat silently degrades query performance over time. Here's how to detect it, measure its impact, and reclaim space without taking downtime.
OpenTelemetry promises vendor-neutral observability. This guide gets you from zero to correlated traces across microservices in under an hour.
MULTI/EXEC transactions have sharp edges. Lua scripts are atomic, faster, and composable. Here's everything you need to write production-safe Redis scripts.
REST is familiar, gRPC is fast. But the performance difference depends heavily on payload size and call patterns. Here's what our benchmarks showed.
Event sourcing looks clean on day one. Schema evolution, snapshot strategies, and eventual consistency edge cases emerge later. Here's what to prepare for.
ALTER TABLE takes a full table lock. At millions of rows, that means minutes of downtime. Here are the techniques we use to migrate schemas without disruption.
Building high-throughput event indexing pipeline for blockchain data; 30k+ events/sec at 4B+ document scale.
NFT marketplace infrastructure and API design for multi-chain support.
Document management platform with digital signature integration.
Distributed systems and API development for fintech applications.
Thesis: DogeFuzz: Coverage-Guided Greybox Fuzzing for Ethereum Smart Contracts
The best way to reach me is by email at hello@ismaelm.dev. I'm also on GitHub as medisco and ENS as ismael.eth.