0xDimo
524 posts

0xDimo
@0xDimo
Web2 Team Leader transitioning to Web3 I tweet about my journey, goals, successes and milestones
Katılım Şubat 2023
173 Takip Edilen361 Takipçiler
0xDimo retweetledi
0xDimo retweetledi

List of Some Attack Vectors/Smart Contract Vulnerabilities! 🗒️
- Reentrancy
- Reentrancy via Modifier
- Read-Only Reentrancy
- Cross-Function Reentrancy
- Cross-Contract Reentrancy
- Front-Running
- Front-Running - Unprotected withdraw
- Front-Running - Sandwich attack
- Front-Running - ERC20 approval
- Front-Running - Signatures
- Back-Running
- Flash-Loan Governance Attack
- Flash-Loan Price Attack
- Denial Of Service (DOS) by complex fallback function
- Denial Of Service (DOS) by gas limit
- Denial Of Service (DOS) by non-existent address or malicious contract
- Floating Point Arithmetic
- ECDSA Signature malleability
- ECDSA Signature replay
- Replay Attack
- Price Oracle Manipulation
- Cross-Chain Bridge Manipulation
- Initial Supply Mint Issue
- Divide before multiply
- Integer Underflow
- DeFi Slippage attack
- Amplification Attack Double Spending
- Malicious Honeypot
- Unsafe Delegatecalls
- Loops Gas Limit
- Phishing With Improper Authorization
- Unexpected Ether With Forcibly Sending Ether
- Block timestamp Manipulation
- Unchecked return values
- Insecure Randomness
- Proxy Storage Collision
- Strict equalities
- Timestamp Dependence
- Use of Deprecated Functions
- Requirement Validation
- Absent modifiers
- Force Feeding
- Rounding Down To Zero
What would you add? 👇
I’d appreciate a repost, spread the knowledge! 🫡
English
0xDimo retweetledi

@0xDimo Please activate the Edit mode. A new issue will be created on the GitHub repository.

English

Just saw @SoloditOfficial's checklist tab. I've seen quite a few SRs developing their own version of this.
How can we contribute to this one?

English

This is the most brilliant issue I have read in a while: solodit.xyz/issues/m-02-cr…
@zachobront is a total genius
TL;DR pls check contract existence when using Solady
English

Had some more and some less productive days during the holidays.
However, the routine is back and @renftlabs on c4 is the current target.
English
0xDimo retweetledi


@WangAudit Would be great to not have binged all of Owen’s videos already 😅
English

@0xDimo I would use that to either learn some reports/attack vectors or watch a video by Owen.
Sometimes 20 mins cannot be enough to go in-depth, but it allows you to grain something to think about throughout the day for example.
English







