Struggling with codebases? Try this:

1) Manage workload in bite-size sections daily

2) Interact with code through comments

3) Understand the code before the docs

4) Use state machines to track variable changes. Stay organized, stay efficient.

@EthSecurity1

huff vs yul

inline assembly???

In a way, yes. Yul is an assembly language, but it is designed to be used in conjunction with Solidity as a lower-level alternative to Solidity's high-level syntax. but Huff is not inline assembly

optimization???

Huff provides even greater efficiency and optimization at the cost of more complex programming. it is great to manage jumps and stacks

@EthSecurity1

6 security sins of Web3 bridges by Damian Rusinek.

Catch me if you can! Learning about edge cases of Solidity's try/catch while I explored Account Abstraction by matta.

@EthSecurity1

All things reentrancy! workshop by Jsec Security.

Intro to Smart Contract Security Audit — Front Running by SlowMist

ArbiNet is the MEV detection model that doesn't require knowledge about DeFi smart contracts.

@EthSecurity1

GM! Check out my latest piece!

I'll describe Web3 audits, CTFs, and compare the corresponding security methodologies in it.

Also presenting a new project from my friend’s team r(dot)xyz - go check it out as well fam!

• officercia.mirror.xyz/VmSJDoV3c8xKDMRjTOl4DQ7KPgBTlb8cVdcTlOJxj1g

#security #web3

https://medium.com/@unsnarl_secure/8-common-smart-contract-vulnerabilities-found-throughout-audit-contest-b421b80b08b5

@EthSecurity1

intro to zkp Security.this promoted by spearbit
https://www.youtube.com/watch?v=8wsR7o0rOxU&feature=youtu.be
@EthSecurity1

Demystifying Ethereum Assembly by Joshua Riley | Devcon Bogotá
https://www.youtube.com/watch?v=btDOvn8pLkA

@EthSecurity1

https://blog.openzeppelin.com/openzeppelin-security-report-top-security-incidents-and-insights-from-april-june-2023 @EthSecurity1

https://www.zellic.io/blog/algebraic-attacks-on-zk-hash-functions @EthSecurity1

curve finance exploited!! damn reentrancy

https://www.youtube.com/watch?v=cxx7PJ4vhZM
@EthSecurity1

-How To Reproduce A Simple MEV Attack

-Your Sandwich Is My Lunch: How To Drain MEV Contracts V2

@EthSecurity1

What does a math-related critical bug look like in Polygon's zkEVM?
https://twitter.com/SpearbitDAO/status/1679189382907953180?s=20

@EthSecurity1

-Practical security vs theoretical security

-Lessons from a seasoned web3 security firm

@EthSecurity1

Threshold Encrypted Mempools: Limitations and Considerations.
https://arxiv.org/abs/2307.10878

Crypto bridges sins exposed. Exploiting weak spots of multi-chain protocols by deliriusz.
@Ethsecurity1

-solc Internals Part 3: Quirks & Optimizations.

-Fuzzing on-chain contracts with Echidna.

-A Comprehensive Guide to Arbitrum and its Security Features.

@EthSecurity1

-How to Write Better Smart Contracts By Checking Them With Slither.

-The Blockchain Guardians: Safeguarding the Future of Ethereum Smart Contract Security.
@EthSecurity1

I feels everybody in auditing needs know web3 Architectur. here is some courses please feedback me if these courses beneficial for you.

1. Course I: DeFi Infrastructure:
https://youtube.com/playlist?list=PLE1Vu6ctbqa61FqJmPDnoPzDqrnyILHRm
2. Course II: DeFi Primitives:
https://youtube.com/playlist?list=PLE1Vu6ctbqa5kIXZCCpkAJxkI66dXzy61
3. Course III: DeFi Deep Dive:
https://youtube.com/playlist?list=PLE1Vu6ctbqa7Df5YJgMtH1xCcy0yX_dri
4. Course IV: DeFi Risks and Opportunities:
https://youtube.com/playlist?list=PLE1Vu6ctbqa7eZK2gychKr1RGZ3t1qf8S

@EthSecurity1