2017 was fun. Let's never do it again.

Price manipulation, now with 100% more blockchain

What happens when good intentions go bad?

An in-depth look at how 0x's Exchange contract was vulnerable

A second CTF from ConsenSys Diligence. The solution is a blast from the past.

A writeup for the ConsenSys CTF "Ethereum Sandbox"

While bug hunting on LegalRobot, I discovered a privilege escalation bug in Meteor by abusing JavaScript's weak types.

I read a great blog post by @CapacitorSet and @denysvitali about discovering a RCE vulnerability in math.js and thought I'd give it a shot as well.