Alireza Arjmand

164 posts

Alireza Arjmand

@_Allarious

Head of Security Research & LSR @Spearbit @Cantinaxyz | Prev @OpenZeppelin

Canada Katılım Eylül 2021

211 Takip Edilen1.2K Takipçiler

Alireza Arjmand@_Allarious·8 Oca

We’re putting real engineering time into getting this right. If you want to follow progress or get early access, the waitlist is in the original post.

Cantina 🪐@cantinaxyz

The AI security tool we’re building surfaced a high-severity vulnerability in Cosmos’ bug bounty, confirmed on HackerOne. We’re designing it for signal > noise so organizations can prioritize real risk. The waitlist is now open.

English

249

Alireza Arjmand retweetledi

Ultimate Security Games@USGOfficials·16 Ara

Ultimate Security Games - Season 1 gallery is out! Congrats again to team Europe @Zigtur @Montyly @GalloDaSballo and @AliceAndB0b! Shoutout to the legends who brought the heat: Team Americas — @0xleastwood @_Allarious @0xriptide @jonataspvt Team Asia — @HickupH @banditx0x @0xt1moh @kamensec Big thanks to the sponsors who made it possible: @monad @coinbase @immunefi @sigp_io @PashovAuditGrp

English

11.2K

Alireza Arjmand@_Allarious·11 Ara

Had an amazing chat with @lista_dao and @HashDit 🚀

Cantina 🪐@cantinaxyz

Building Securely on BNB: Practical Lessons from Hashdit, Lista and Cantina x.com/i/broadcasts/1…

English

623

Alireza Arjmand@_Allarious·21 Kas

Very well deserved! Congrats to team Europe!! 😁 I love this community 😂

nisedo@nisedo_

EUROPE CHAMPION 🏆

English

1.6K

Alireza Arjmand@_Allarious·8 Kas

@0xmahdirostami See you Mahdi 😄

Indonesia

mahdiRostami@0xmahdirostami·7 Kas

@_Allarious will see you alireza

English

Alireza Arjmand@_Allarious·6 Kas

I'll be competing in this 👀🔥 live from Argentina 🇦🇷

RareSkills@RareSkills_io

Mark your calendars, November 20th is Season 1 of Ultimate Security Games, live in Argentina. Watch smart contracts get hacked in real time as three teams race to be first to steal the funds. We're grateful to the sponsors who made this happen: @monad @coinbase @immunefi @sigp_io @PashovAuditGrp Get your tickets for the in-person event -- link in the reply.

English

Alireza Arjmand@_Allarious·1 Eki

Down for the challenge? Let's work together, anon 😎👀

Cantina 🪐@cantinaxyz

We’re hiring 🪐 Cantina is looking for Security Researchers to join our network and work on deeply technical smart contract and protocol audits. The ideal candidate is: •Experienced in Solidity and EVM vulnerabilities •Curious, rigorous, and collaborative Link below:

English

3.3K

Alireza Arjmand@_Allarious·8 Eyl

Full report isn't out yet, but it seems like the attacker can replace target address with its own. So check that your computer isn't affected. jdstaerk.substack.com/p/we-just-foun…

English

787

Alireza Arjmand@_Allarious·8 Eyl

Looks like one of the npm package maintainers got compromised, check your projects and stay safe out there!

Anton Livaja@antonlivaja

Npm package maintainer got pwned and now a bunch of packages he maintains (including debug-js) have malware in them. Check your deps immediately: #issuecomment-3266868187" target="_blank" rel="nofollow noopener">github.com/debug-js/debug…

English

1.8K

Alireza Arjmand@_Allarious·8 Eyl

After 2.5 years of auditing at @OpenZeppelin I'll be joining @spearbit starting next week! Really appreciate all the opportunities I got at OZ and looking forward to the future 👀

English

151

7.7K

Alireza Arjmand@_Allarious·2 Kas

@0xTendency Hey there, DMs are open 🤔 Yeah I've been checking the social media much less recently, everything is going great! Thank you for checking in 😁

English

Essential@only01Essential·18 Eki

@_Allarious Hi ser, I couldn't drop a private message. You've been off for so long, hope all is well?

English

107

Alireza Arjmand@_Allarious·11 Tem

Going to EthCC this year! Any suggestions on what to check out?

English

1.8K

Alireza Arjmand@_Allarious·4 Ağu

@shealtielanz Thank you for the correction! 🙏

English

pashov@pashov·9 Mar

How many attack vectors are there in smart contract security? 50? 100? Not too many I'd say, if you learn them all and put in focused time and effort into understanding a codebase in detail you should be able to unravel a huge part of the issues there even if you're auditing solo

English

170

11.1K

Alireza Arjmand@_Allarious·20 Tem

Check this one out!! Alex drops amazing content again!

Alex the Entreprenerd@GalloDaSballo

Recording of the Workshop on Security Research Tools - Check the chain - Decompile Contracts - Build a Critical POC (Live) Video: youtube.com/live/tDFA8cnHo… Slides: docs.google.com/presentation/d…

English

1.8K

Alireza Arjmand@_Allarious·19 Tem

Great write-ups by @patrickd_de! Highly recommended for anyone looking to enhance their knowledge in the field!

patrickd@patrickd_de

I normally find retweeting my own stuff pretty cringe, but it seems like lot's of you haven't seen these yet and I honestly think they're severely underrated :P ventral.digital/posts/2023/3/2…

English

1.3K

Alireza Arjmand@_Allarious·13 Tem

@banditx0x @paladin_marco 👀

QME

Whitehat Bandit@banditx0x·12 Tem

@paladin_marco @_Allarious ?

QAM

Marco De Vries@paladin_marco·11 Tem

Who’se going to defisec summit in Paris? Would love to meet some folks

English

5.8K

Alireza Arjmand@_Allarious·12 Tem

@josepchetrit See you Josep 🙂

English

183

jchetrit.eth@josepchetrit·11 Tem

@_Allarious see you there!

English

Alireza Arjmand@_Allarious·11 Tem

@josepchetrit Yeap, going to that one as well 😁

English

125

jchetrit.eth@josepchetrit·11 Tem

@_Allarious are you going to defi security summit ? 👀

English

Alireza Arjmand@_Allarious·26 Haz

@coinhunter4life Its an acronym for “capture the flag”, basically practicing finding bugs on fake smart contracts that have known bugs.

English

Alireza Arjmand@_Allarious·26 Haz

There are many tutorials on how to become an auditor, but not as many about auditor's mindset. I personally believe a common mistake many new auditors make is 'Starting Small'. 🧵👇

English

8.4K

Alireza Arjmand@_Allarious·26 Haz

@0xrob_sol I have not tried this, but it seems like a good idea. Just remember to jump into real audits as soon as you get comfortable.

English

255

Rob.sol@0xrob_sol·26 Haz

@_Allarious What do you think about shadow auditing? Doing past audits and comparing your findings with the available ones?

English

344

Keşfet

@Zigtur @Montyly @GalloDaSballo @AliceAndB0b @0xleastwood @0xriptide @jonataspvt @HickupH