learn-evm-attacks
learn-evm-attacks copied to clipboard
coinspect
Learn & Contribute on previously exploited vulnerabilities across several EVM projects.
Feature: Pool and Pair creation under utils folder Overview: This utility has to allow users to quickly instantiate and create DEX pairs to enable broader test scenarios that depend on...
If adding attacker to an allowlist is necessary then is better to spoof the owner's address and add our random attacker address to the allow list. This way the exploit...
Worked on Curve read-only re-entrancy problems with a focus on the attack on Qi specifically. - I wrote the meat of the README, missing sources and graphs. Sources should mention...
There is mentioning that the read-only reentrancy is theoretical and there aren't cases out there where this was exploited. This is not true, as we published this class of vulnerability...
# Aim There should be no need to use `prank(attacker)` in most scenarios, and there should be no need to hardcode payloads. We should be able to reproduce everything in...
When possible (ie: when the vulnerable code is verified, or we know its github, or we somehow have access to its sourcecode...) we should strive to add it to the...
On Apr 16, 2022 an attacker stole $76MM from Skyward Finance. Attack Overview Total Lost: $76MM Key Info Sources Writeup: https://rekt.news/beanstalk-rekt/ Twitter: https://twitter.com/kelvinfichter/status/1515735717305008138 Twitter: https://twitter.com/peckshield/status/1515692144190648322 Principle: Business Logic - Governance...
The [Polynetwork Bridge Test](https://github.com/coinspect/reproduced-exploits-library/blob/master/test/Bridges/PolyNetworkBridge/PolyNetworkBridge.attack.sol) has a `Exploit_PolyNetwork_Deserializer` that is not used anywhere. Can it be removed?
On Sept 20, 2022 an attacker stole 160MM USD in OP tokens from Wintermute. Attack Overview Total Lost: 160MM USD (20 MM OP) Key Info Sources Writeup: https://rekt.news/wintermute-rekt-2/ Reproduction: https://github.com/SunWeb3Sec/DeFiHackLabs#20220608-optimism---wintermute...