Learning by Breaking - A LayerZero Case Study - Part 3
- Mar 1
- 7 min
Learning by Breaking - A LayerZero Case Study - Part 2
- Feb 29
- 5 min
Learning by Breaking - A LayerZero Case Study - Part One
- Jan 14
- 4 min
Permission denied - The story of an EIP that sinned
- Feb 11, 2023
- 7 min
Breaking Fluidity for glory and $50K
- Nov 16, 2022
- 8 min
Taking home a $20K bounty with Oasis platform shutdown vulnerability
- Nov 1, 2022
- 5 min
Diving deep into a critical protocol insolvency bug in Fringe.fi lending platform
- Oct 10, 2022
- 5 min
Critical finding - Stealing tokens from O3 bridge users
- Oct 10, 2022
- 3 min
Tokemak liquidity operator can steal funds
- Sep 22, 2022
- 1 min
MED - Brahma.Fi - Wrong oracle used to calculate min slippage may cause loss of over 80% of rewards
- Sep 22, 2022
- 2 min
MED - Brahma-Fi - Curve miscalculations may cause user withdraws to fail
- Sep 22, 2022
- 2 min
CRIT - Brahma.Fi - L2 Position handler miscalculates position value leading to severe risks
- Sep 22, 2022
- 2 min
CRIT - Brahma.Fi - Fee collection does not take previous losses into account 🚩
- Sep 22, 2022
- 1 min
LOW - ANKR - User gets more gas than supposed to when distributing rewards
- Sep 22, 2022
- 2 min
HIGH - Iron Bank - Collateral cap is not enforced at account initialization
- Sep 22, 2022
- 1 min
HIGH - Iron Bank - Liquidator is not credited with correct collateral amount
- Sep 22, 2022
- 2 min
HIGH - ANKR/Stader - Reward distribution is vulnerable to MEV leading to theft of reward 🚩
- Sep 22, 2022
- 1 min
CRIT - Compound - Liquidators may seize assets not held as collateral - Closed as known issue
- Sep 22, 2022
- 1 min
MED - Morpho Finance - Logic contract might be destructible via controlled delegatecall
- Sep 22, 2022
- 1 min
LOW - Polygon token-swap rounding error