Escaping the Dark Forest On September 15, 2020, a small group of people worked through the night to rescue over 9.6MM USD from a vulnerable smart contract. This is our story.
Taking undercollateralized loans for fun and for profit Price manipulation, now with 100% more blockchain
ConsenSys CTF - Rop EVM A second CTF from ConsenSys Diligence. The solution is a blast from the past.
Privilege Escalation on LegalRobot through Type Confusion While bug hunting on LegalRobot, I discovered a privilege escalation bug in Meteor by abusing JavaScript's weak types.
Finding more RCEs in math.js I read a great blog post by @CapacitorSet and @denysvitali about discovering a RCE vulnerability in math.js and thought I'd give it a shot as well.
