Forwarded from Vladimir S. | Officer's Channel (officercia)
Frontend Security
• Try: https://drive.google.com/file/d/12-e1g8Ad7q0avIOge-NELNBaDlpmk0TV/view
• Also: https://blog.embarklabs.io/news/2020/01/30/dapp-frontend-security/index.html a bit old but still…
• From ToB: https://docs.google.com/document/u/0/d/1-_0Wlwch_vtkPM4F-SdEXLjQYaYT7KoPlU2rjt7tkLQ/mobilebasic
#web2 #offtopic
• Try: https://drive.google.com/file/d/12-e1g8Ad7q0avIOge-NELNBaDlpmk0TV/view
• Also: https://blog.embarklabs.io/news/2020/01/30/dapp-frontend-security/index.html a bit old but still…
• From ToB: https://docs.google.com/document/u/0/d/1-_0Wlwch_vtkPM4F-SdEXLjQYaYT7KoPlU2rjt7tkLQ/mobilebasic
#web2 #offtopic
Embark Blog
DApp Frontend Security
This article is the second in my series of articles based on the frontend of the decentralised web. Throughout the series we’ll look at Web3.js & accessing the Ethereum Blockchain client-side,
👍1🤯1
Vladimir S. | Officer's Channel
Frontend Security • Try: https://drive.google.com/file/d/12-e1g8Ad7q0avIOge-NELNBaDlpmk0TV/view • Also: https://blog.embarklabs.io/news/2020/01/30/dapp-frontend-security/index.html a bit old but still… • From ToB: https://docs.google.com/document/u/0/d/1…
Learning Best Practices from Web Applications to Avoid Similar Security Vulnerabilities in Decentralized Applications: www.theseus.fi/bitstream/handle/10024/170724/Aboualy_Mahmoud_bachelor_thesis.pdf
👍1🤯1
Forwarded from EthSecurity
Aave v3 bug bounty part 1 and part 2
Top 5 duplicated issues of competitive audits thread
@EthSecurity1
Top 5 duplicated issues of competitive audits thread
@EthSecurity1
Medium
Aave v3 bug bounty part 1: Security concerns and improvements about the `executeFlashLoan` function
Important Note: each of the issue I have found have been already fixed and deployed with the release of Aave 3.0.2
🤯1
Forwarded from Remedy
Hey folks, how are you today?
We recently shared gas optimization tips on our Discord - and there’s plenty more to come.
If you find this useful and would like to join Remedy’s Server, follow this link:
https://discord.gg/uqFZjBgP
Make sure you press the ✅ button to get verified and gain full access to the server.
We recently shared gas optimization tips on our Discord - and there’s plenty more to come.
If you find this useful and would like to join Remedy’s Server, follow this link:
https://discord.gg/uqFZjBgP
Make sure you press the ✅ button to get verified and gain full access to the server.
❤1🤯1
Forwarded from Solidity Treasures (Andrey)
#offtop The Galxe platfrom has been hacked. Dont use it.
🤯1
Forwarded from Adventures in Dystopia
Hi, my dear 😊 !
New day, new attack on web3 developers and artists.
At this time, the scam link is
Attackers send this link in comments (for example, in our group, too) (pic)
This site is looks like free-mint landing (do you like free minting?).
But instead, the site asked users to send their liquidity to a target address. 0x02b73dcA543Adf4061CA45ec118CD13ee37Bf2db (debank)
After, the site sends report to a telegram chat group using a special bot.
The bot credentials is
The invite link to the telegram chat group is https://news.1rj.ru/str/+AHq8y1C9GWMxMjg0 (pic)
The chat group created on 27 September 2023.
The report chat has two telegram users:
- @nothingnessssssssss (tg id 5549919234)
- @mutuNFTs (tg id 6444639769)
Stay safe my friends!
New day, new attack on web3 developers and artists.
At this time, the scam link is
https://fluffmania.com/.Attackers send this link in comments (for example, in our group, too) (pic)
This site is looks like free-mint landing (do you like free minting?).
But instead, the site asked users to send their liquidity to a target address. 0x02b73dcA543Adf4061CA45ec118CD13ee37Bf2db (debank)
After, the site sends report to a telegram chat group using a special bot.
The bot credentials is
bot6522192634:AAHy8NqRdYBBaoTJSH5N5K2HQRktKMqegSU (pic) (getMe)The invite link to the telegram chat group is https://news.1rj.ru/str/+AHq8y1C9GWMxMjg0 (pic)
The chat group created on 27 September 2023.
The report chat has two telegram users:
- @nothingnessssssssss (tg id 5549919234)
- @mutuNFTs (tg id 6444639769)
Stay safe my friends!
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
Forwarded from alpharush
We just released Slither 0.10.0 which adds support for Vyper, adds 5 new detectors, and improves the integration with Foundry! Let me know if you have any issues or feedback https://github.com/crytic/slither/releases/tag/0.10.0
GitHub
Release 0.10.0 · crytic/slither
0.10.0 - 2023-10-18
This release adds support for Vyper 0.3.7 (thanks to the funding from VyperLang)! Currently, Vyper frameworks such as Ape are not supported. To run slither on Vyper codebases, t...
This release adds support for Vyper 0.3.7 (thanks to the funding from VyperLang)! Currently, Vyper frameworks such as Ape are not supported. To run slither on Vyper codebases, t...
🔥6
Check out a great list from a cool guy 🔥
https://github.com/OffcierCia/tips-solidity-code-auditors
@ethers_security
https://github.com/OffcierCia/tips-solidity-code-auditors
@ethers_security
GitHub
GitHub - OffcierCia/tips-solidity-code-auditors: Gaining the most elusive of tips. Add your input and let's collect them all!
Gaining the most elusive of tips. Add your input and let's collect them all! - OffcierCia/tips-solidity-code-auditors
❤3🔥2
OSINT is an important skill to have these days. Found a valuable article for you 😉
https://osintteam.blog/osint-lesson-1-mind-mapping-2354987f1ac3
📞 @ethers_security
https://osintteam.blog/osint-lesson-1-mind-mapping-2354987f1ac3
Please open Telegram to view this post
VIEW IN TELEGRAM
Medium
OSINT Lesson №1: Mind-Mapping
Today, I’d like to discuss how to become a competent OSINT investigator!
🔥3
https://slowmist.medium.com/slowmist-web3-project-security-practice-requirements-2f1b38f48804
Please open Telegram to view this post
VIEW IN TELEGRAM
Medium
SlowMist: Web3 Project Security Practice Requirements
Best Practices for Ensuring Security in Web3 Projects.
🫡2
>Hacken
https://twitter.com/hackenclub/status/1719661979260846492?s=61&t=vKxGlEpfucgm4L_NcpVj3g
>Zokyo
https://twitter.com/zokyo_io/status/1719674154902053171
>Decurity
https://x.com/DecurityHQ/status/1719657969925677161?s=20
>Cyberscope
https://x.com/Cyberscope_io/status/1719672304685170769?s=20
Please open Telegram to view this post
VIEW IN TELEGRAM
X (formerly Twitter)
Hacken🇺🇦 on X
‼️@OnyxProtocol was attacked and the total loss is $2.1M!
🧶More details are below...
🧶More details are below...