Two of my projects were selected for the @thedaofund Ethereum Security QF Round on @Giveth.
The round has a 500 ETH matching pool (roughly $1M+) backing around 100 Ethereum and L2 security projects.
It uses Quadratic Funding, which means $1 from 100 donors unlocks far more from the matching pool than $100 from 1 donor.
Voting is open until May 14. Here's what they do ๐งต
๐Want to ๐๐ฒ๐ฎ๐ฟ๐ป ๐ฆ๐บ๐ฎ๐ฟ๐ ๐๐ผ๐ป๐๐ฟ๐ฎ๐ฐ๐ ๐ฉ๐๐น๐ป๐ฒ๐ฟ๐ฎ๐ฏ๐ถ๐น๐ถ๐๐ถ๐ฒ๐โ
Visit web3sec.news/audits & start learning different bugs/vulns from the latest reports.
cc: @code4rena
( Like & retweet for better reach) ๐
#blockchain#Web3#Security
ALT Collection of audit reports with different severity to learn smart contract vulnerabilities
๐๐๐๐ ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐๐ฌ๐จ๐ฎ๐ซ๐๐๐ฌ ๐๐ฎ๐! ๐ฏ
Whether you're a beginner or an expert, this GitHub repo has handpicked resources for all things #Web3 Security โ from smart contract audits to the latest vulnerabilities.
Check it out ๐
github.com/Raiders0786/web3-โฆ
Guys, if you haven't checked
Here is a PDF file with a collection of various attack vectors in smart contracts as a reference.
Give it a read & sharpen your knowledge ๐
Link to download below ๐
๐๐ I am thrilled to officially join the amazing team at @SpearbitDAO as a Technical Content Writer
I've always admired their work & privileged to contribute my skills to crafting high-quality content.
Huge thanks to @theweb3hacker & @hrkrshnn for the opportunity
LFG ๐
I just published "Fuzzing Strategies Every Solidity Developer Should Know" -- Echidna Edition
Do give it a read, it's in-depth here !!
link.medium.com/RayM3YDfqFb
๐ Exciting news!
Introducing the Web3Sec.News ๐๐จ๐ ๐๐จ๐๐ซ๐ โ your gateway to the latest Web3 security job openings.
Join us on your career journey in the booming blockchain industry.
Explore now ๐web3sec.news/jobs
I'm so glad to connect with @PatrickAlphaC and learn from his experiences!
Hoping to work and learn together to make the Web3 world safer ๐ฅณ
and make web3sec.news big ๐
I did thorough research & compiled a list of Top 20 Smart Contract Security Best Practices Checklists that can guide you to write secure smart contracts for Web3 Protocols & Applications.
blog.web3sec.news/posts/top-โฆ
๐จExciting news for all Web3 Security Researchers, auditors, and developers๐ข
Launching soon for the community a website dedicated to providing you with all the latest news on #web3 crypto #hacks and #trends.
Say goodbye to spending hours researching on Twitter & the internet
ALT teaser for the web3 security community driven website
Updated @SwayLang security resources in the ๐๐๐๐ ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐๐ฌ๐จ๐ฎ๐ซ๐๐๐ฌ ๐๐ฎ๐! ๐ฏ
Best of luck hunting bugs in the upcoming @redstone_defi contest on @cantinaxyz!
git: github.com/Raiders0786/web3-โฆ
Hey, web3sec fam!
@dev_chinmayf contributed a blog on web3sec.news GitHub today.
๐ต๏ธโโ๏ธ Auditors Digest: Exploring EIP712 Risks in Ethereum - Unveiling Vulnerabilities in Structured Data Hashing and Signing
If you haven't already, read ๐
blog.web3sec.news/posts/the-โฆ
๐ฅ๐ฅ It's time to level up Web3 security!
Thrilled to announce @lmc_security as our co-founder at web3sec.News
Together, we'll rock the Web3 world with cutting-edge smart contract research, insights, and tools ๐ค
Join us in creating Web3โs Largest News Aggregator ๐
๐จExciting News! ๐จ
I am thrilled to announce the launch of web3sec.news
The ultimate community-driven platform for the latest news and insights on #Web3 security, blockchain technology, #auditors, and #developers.
Some of the top #features that I know you'll love
I'm happy to share that I've secured @biconomy contracts on @code4rena while learning web3 security on weekends! grateful to the incredible community and experts who've generously shared their knowledge. Can't wait to continue working hard and learning more. Let's go! #Web3
hey guys,
please give @mis4nthr0pic a shout-out for everything he had been doing for the Web3 Security Space.
His hard work & perseverance are commendable.
I believe we should support him & encourage him to continue doing that ๐ฅณ โฅ๏ธ
I've personally learned a lot from him โก
Hiring alert ๐
We got ๐ฎ ๐ป๐ฒ๐ ๐๐บ๐ฎ๐ฟ๐ ๐ฐ๐ผ๐ป๐๐ฟ๐ฎ๐ฐ๐ ๐ฎ๐๐ฑ๐ถ๐๐ถ๐ป๐ด full-time opportunities from @nethermind on our Job Boardโฐ
Visit web3sec.news/jobs and apply directly ๐ฅ๐
๐ Remote Worldwide
๐จApply today and all the best!
{ Like & RT }
#web3#hiring
ALT web3sec.news/jobs with 2 new job opportunities for smart contract security researchers in web3.
I analyzed the smart contract hacks database till date and wrote an overview of patterns and vulnerabilities in protocol and different projects in 2023.
blog.web3sec.news/posts/web3โฆ
wohooo๐คฏ๐คฏ
web3sec.news is currently ranking at #2 in the "๐ฐ๐๐๐ ๐ฌ๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐ง๐๐ฐ๐ฌ" keyword, I can't imagine this occurring so quickly on top of many major news and security organizations. ๐๐ช๐ช๐๐พ
Thanks, folksโค๏ธ
ALT Web3's largest news aggregator built for the web3 security community
I'm excited to announce that web3sec.news has officially partnered with Audit Wizard! ๐งโโ๏ธ
@audit_wizard is a tool built for auditors. Find bugs, search for vulnerabilities with AI, and auto-generate audit reports.
Join our mission to strengthen web3 security ๐ค
ALT all-in-one web3 security tool designed for auditors. Currently in Alpha, it lets you import contracts, find bugs, and auto-generate audit reports๐งโโ๏ธ
Harsh reality of FAANG/MAANG is that they are a bit overrated and thereโs no job security for anyone at any point of time.
Saddened to see that 40k+ people got laid-off in 3-4 days. I understand this is tough time for everyone, please keep learning and upgrading yourself.
๐๏ธ 5 FREE DevCon Ticket Giveaway for the Web3Sec.News fam! ๐๐
Want a chance to join us at DevCon? Hereโs how to enter:
โฉTell us why you need this ticket
โก Follow @EFDevcon & @web3sec_news
โ Confirm your participation in the event
We're releasing a very limited set of 100 early bird tickets ๐๐๐
100 tickets @ $150 each
This year is going to be BIG with some exciting changes to add more interactive workshops, networking, and co-working.
Secure your spot: defisecuritysummit.org/
Exciting news! My reports for the @AstariaXYZ contest on @code4rena just got selected! It's an amazing feeling seeing my name up there, and it motivates me to keep pushing harder in #Web3 security. Putting in those extra weekend hours to level up my skills! #CyberSecurity
I had an awesome experience listening & learning at @bsidesahmedabad Ahmedabad along with some of the best Hunters and researcher,
Kudos to the entire @bsidesahmedabad Team & @niksthehacker in making this event a success & inviting the legend speakers.
#security#conference
Maximize security & minimize costs!
Thrilled to announce @GuardianAudits as our sponsor, pioneers in Pay-Per-Vulnerability Smart Contract Security ๐ฅณ
With their innovative approach, pay only for vulnerabilities uncovered, ensuring top-notch security without breaking the bank!
ALT Guardian delivers world-class Smart Contract Security by aligning incentives and charging per-vulnerability found.
Hey, researchers in web3sec ๐
Would you mind providing the community resources you regularly utilize to stay informed on all aspects of Web3 security? For instance, I often read solodit, web3secNews, Defihacklabs github, defilamma, and the blockchain threat weekly.
๐OMG! @officer_secret just followed me! ๐ฑ
He's a true inspiration & legendary gem in Web3 security community๐
I devour his blogs & research daily to learn & grow personally. ๐
Can't thank you enough for all you do! ๐
web3sec.news is honored by your support๐๐ผ
I conducted an extensive study and developed a list of 70+ Common Smart Contract Vulnerabilities that may be used as a reference while auditing a smart contract and excelling at safeguarding Web3 Protocols and Applications.
blog.web3sec.news/posts/commโฆ
CA candidates are also paid up to 4,000 per month to learn and practice with large auditing firms for two years in a row, and the workload is next level.
You should first express your concerns with the government. I feel Somya is correct here her motives are quite supportive.
Thank you for the follow, @bytes032 โจ
It inspires me to work harder and continue creating web3sec.news for the Web3 Security Community as you do.
He also gave me a lot of input on improvement today. LFG๐ช
Ever had that "million product idea" feeling?
Struggling to build them all alone? Me too!
**Let's team up (students & hustlers welcome!) to build a bunch of USEFUL products in 1-2 weeks each! **
RT for good karma!
#buildinpublic#Products#indiehackers#developers
hello there web3sec researchers,
Could you please leave all of your audit reports or GitHub URLs in the comments section below? I'm going to work on something cool for you all at web3sec.news/audits:)
Thanks!
Heya, did you check the latest report of @AmbireWallet on @code4renaโ
I spent some time reading & taking notes from the 25+ findings of this contest.
web3sec.news/audits
๐ What are you learning today?
#Web3
๐ Proud to announce CVE-2023-3067, a Stored XSS vulnerability in the renowned note-taking thick client app Trillium! ๐ช
๐ With โญ21.5k+ GitHub stars, this open-source gem deserves utmost security. I'm thrilled to have discovered this rare & unique flaw in the Note Map feature.
@immunefi has released a report on CRYPTO LOSSES IN AUGUST 2023.
When compared to July, the amount lost is almost 14 times lower.
Web3 appears to be heading in a safer direction?
What are your Thoughts๐
assets.ctfassets.net/t3wqy70โฆ
ya, I am currently working on learning Rust , Have been doing this from 2 months now, have got my hands on with Solidity , hardhat, Moralis ,Metamask & ReactJs .
Looking towards learning & building .
WAGMI :)
Hello Everyone,
Finally I made it to @SynackRedTeam & I'm a Synack Member Now.
Looking Towards Collaboration with other SRT Members.
Thanks Everyone for the Support & @Dinosn for the referral :)
#synack#SRT
๐ขExciting news
I'm thrilled to announce our first sponsorship for web3sec.news by @cyfrin
Check out our latest Weekly Newsletter #4! ๐ฅ
๐ Tips for Smart contract auditing
๐ Maximizing Audit readiness
๐ How to prepare for your first audit
#web3
ALT Our Very First Sponsor Cyfrin Audits Supporting web3sec.news initiative.
Happy to test, break, and share my feedback on the beta version of @FindAudit ๐ฅ๐ช
@bytes032 is building something really awesome to connect auditors directly with the protocols ๐ชฒ
Stay tuned for the public release guys ๐
There is no correct plan, path, suggestions, or alphas for SUCCESS.
IT IS YOUR CURIOSITY and the rabbit holes you encounter while learning that determine your success.
Woke Up Today with @code4rena's new public profile which is ๐ฅ๐ฅ
Seems like it's time to start participating again (tried only 3 contests this year) & report some bugs!
Still learning & it seems like a tough journey ahead๐ช
Had one of my best times speaking about web3sec.news at @opensensepw today ๐ฅณ
Learned a lot about Web3 in general & got some terrific tips on interviews.
Don't miss the comments below & sharing the takeaways ๐
ALT Creating an Efficient attack aggregator for Web3
Have you ever read about ๐๐๐-๐๐๐ ๐ฐ๐ก๐ข๐๐ก ๐ข๐ง๐ญ๐ซ๐จ๐๐ฎ๐๐๐ ๐ญ๐ก๐ ๐๐/๐๐ ๐๐ฎ๐ฅ๐ ?
If you haven't already, @CholakovAudits published a blog on web3sec.news GitHub today.
Feel free to give it a read๐
blog.web3sec.news/posts/eip-โฆ
Did you get a chance to read the latest report of @CantoIdentity on @code4rena โ
I'm planning to read those reports
web3sec.news/audits
what are your plans for this weekend?
๐ ๐๐๐๐๐๐๐๐ ! ๐๏ธ โฐโฐ
We're partnering with @summit_defi to give away 1 FREE tickets to DSS 2024!
๐ ๐๐จ ๐๐ง๐ญ๐๐ซ:
1. Like & RT
2. Follow @summit_defi & @web3sec_news
3. Tag 2 friends & tell us why you want to go!
4. Confirm your plan to attend DSS
๐๐ป๐๐ป
Join us on a Web3 Security Adventure! ๐
๐ We're thrilled to announce our awesome partnership with @opensensepw Community!
Together, we're on a mission to create a supportive environment for learning web3 security in public.
Community with 1300+ security chads ๐
Link ๐
Updated my bio SRโs. I'm so pleased to be volunteering for @summit_defi and @EFDevcon.
Who is coming?
Let's meet, learn, and have fun in BKK ๐น๐ญ๐
Hey Folks ๐,
Looking for a skilled freelancer with experience in
1โฃfront-end UI/UX
2๏ธโฃNodejs backend development
3โฃstrong focus on security.
if you're the one, feel free to DM ๐
๐ Big thanks to @1nf0s3cpt from @DeFiHackLabs for the Local Builder Ticket Coupon Code!
I just booked my @EFDevcon tickets โ super excited to meet the Web3Sec family and explore upcoming Ethereum projects.
Whoโs joining?
See you at Bangkok! ๐
folks,
if you are looking to have a single place where you can get all the Latest Web3 Hack Updates from Twitter Notified ๐feel free to join web3sec.news Discord, I am going to launch the Discord Bot for the latest hacks very soon ๐ฅ
๐
discord.gg/CseAxvtrZ3
People in #Web3 have frequently asked me if I had come across any job postings in Web3 Security as an auditor or researcher.
web3sec.news/jobs has over 1500 web3 and security jobs. Check it out and start applying ๐๐ค๐
Look at this, people!!๐๐ฅ๐ฅ
This was one of the most requested features:
A Smart Contract Security Checklist to use as a reference during Auditing.
๐ Ready to level up your Web3 security game?
Calling all auditors, security researchers, and developers!
Explore the web3sec.news Community Checklist โ the ultimate resource to test smart contract bugs in #web3 projects, step-by-step! โ๏ธ
Explore now ๐
It has been a wild journey building web3sec.news (S3 --> S4)
Your very own ๐๐๐๐โ๐ฌ largest news ๐๐ ๐ ๐ซ๐๐ ๐๐ญ๐จ๐ซ in security, blockchain, DeFi, blogs, threat intel on hacks, vulnerabilities, tools, podcasts, and events โจ๐
@_buildspace@_nightsweekends
Auditors assemble here.
They are launching beta soon. If you are beginner or developer looking to kickstart your journey the platform got you covered.
Please try audit wizard today & share your feedbacks. Who knows if you get lifetime access or hall of fame if they like it ๐
Hey folks, I know a few folks looking for Full Stack (MERN) Developers or Backend Developers (Django or Go); if anyone is looking for such roles, please DM me!
#webdev#backend#Hiring#Golang#FullStack
GM fam!
@Codeninja04 published a blog on web3sec.news GitHub today.
๐๐๐ฌ ๐๐ฉ๐ญ๐ข๐ฆ๐ข๐ณ๐๐ญ๐ข๐จ๐ง ๐๐๐๐ฉ ๐๐ข๐ฏ๐ ๐ฏ๐ where he explains some useful tips with practical code & gas equivalent.
If you haven't already, read ๐
blog.web3sec.news/posts/gas-โฆ
Presenting the concept of trial ball๐ in trading & investing!
Kyunki stock market mein no jugaad
Trading seekhna hai, toh guess what ๐
#IPL2022#StockGro
Just wrapped up an insightful @DevrelUni session with @PatrickAlphaC
It was a fun learning experience, packed with valuable insights on becoming a better developer associate, effective learning techniques, and gaining 1 million YouTube views.
๐งตHere are my key takeaways:
๐ Discover the Latest/Previous Web3 Hacks using a keyword of your choice at web3sec.news/latest
Now you can easily filter and find the latest hacks related to Discord Compromised, Twitter, Tornado Cash, Flashloan, Malicious links, Phishing, and more on
Feedbacks, please ๐
ALT search or filter any latest and previous hacks using your own keywords today
Security Guide for DApps CTOs, Lead Developers, and Security Enthusiasts with practical examples to fortify your protocols๐
composable-security.com/secuโฆ
Hello, community ๐โโ๏ธ!
Allow me to walk you through the #search feature at web3sec.news๐
The latest video helps you save time and access all research data in one place. Find everything you need at your fingertips with just a few clicks.
Goodbye Long Research Hours๐
๐จBlockchain Simplified Weekly #7 is Out
Feel free to read ๐
web3secnews.substack.com/p/bโฆ
TL: DR
- @cyfrin notes for the Chainlink contest๐ฎ
- Contract Security 2023 Survey
- Planning time effectively
- $7.5M slippage attack
- Audit Together with @pashov
(Like & RT)
ALT latest community hacks & learning resources with new CTF challenges
๐ Congrats to Parth (@ParthMandale)! ๐
Weโre excited to announce Parth as the winner of our DSS 2024 ticket giveaway with @summit_defi. His commitment to advancing in Web3 security truly stood out.
Thank you to everyone who participatedโstay tuned for more opportunities!
One step closer to standardizing smart contract auditing from this encyclopedia of ๐๐ก๐ ๐๐จ๐ฉ ๐๐ ๐๐จ๐ฌ๐ญ ๐๐จ๐ฆ๐ฆ๐จ๐ง ๐๐ฎ๐ฅ๐ง๐๐ซ๐๐๐ข๐ฅ๐ข๐ญ๐ข๐๐ฌ ๐ข๐ง ๐๐๐๐ as a reference by @immunefimedium.com/immunefi/the-top-โฆ
Hi @RealJohnnyTime and @HackenProof,
It appears that following the giveaway announcement, some individuals are attempting to send malicious emails pretending to be from you.
๐ฅณ๐๐I got selected! Dammm, itโs bigggโฆ
Time to go full on hacking smart contract auditing on @HackenProof with @RealJohnnyTime courses.
Much excited to secure more and more contracts!
Thank you!
DMโed.
Contest Winners Announcement!
Weโre thrilled to announce the winners of our contest celebrating our new design!
Congratulations to:
- @bo4ka7a
- @__Raiders
- @codertjay
Please contact us with the following information:
- Full Name
- Email Address
- Country
- Discord Username
- Github Username
- Twitter Username
Thank you to everyone who participated! Stay tuned for more exciting events and updates from HackenProof.
Happy hacking!
@__Raiders has yet again written a fantastic article on the title "Fuzzing Strategies Every Solidity Developer Should Know" and published at InfosecWriteups.
This super detailed and well worded article can be found here: infosecwriteups.com/fuzzing-โฆ
The on-going global IT meltdown exposes centralization risks:
#Crowdstrike bug cripples Windows systems worldwide, paralyzing critical infrastructure.
This outage underscores the vulnerability of centralized systems & the urgent need for decentralized alternatives.
Who will be attending DSS Anon?
Btw, I plan to give away a DSS ticket to one of the web3sec.news family members who wants to attend but can not afford it.
+ if you are a contributor to @web3sec_news
Hello, everyone,
I have just created a tool to automate Clickjacking Vulnerability which will check for Vulnerable target & create a Proof of concept code.
You can find the tool link here:
lnkd.in/dxkF9tHU
Do Give it a Star โญ
web3sec.news@WebSummit (13-16 Nov)๐ ๐ข
As the largest web3 security news aggregator, we're thrilled to be your go-to source for cutting-edge updates.
Swing by our booth for a warm welcome, insightful conversations, and maybe a surprise or two! ๐
๐จ Big Day, Big Win ๐ฅ
India Made History today ๐๐
Chandrayaan-3 Officially Landed on Moon ๐
India is the 1st Country to Reach the Lunar South Pole ๐ฅนโ
Congratulations to the wonderfully team at @isro & @narendramodi ji ๐ฎ๐ณ
Clear your calendar, Hawks ๐ฆ
This oneโs big. ๐
Time to deep dive into @zksyncโs code and to help fortify the security of their L1/L2/system contracts.
Contest start: 28 October
Prize pool: $500,000
Sign up today
๐