KineticsOfWeb3

1/ This one hurts. I put weeks into the Solana Foundation audit contest on Code4rena and sth really sketchy went down Which erased a top-6 finish and a potential 5-figure payout.

Daily Degenerate Brief 🧵 The market moved fast today. Narratives rotated, memes exploded, CT chased attention, and liquidity got redistributed violently. Here is the high-signal recap: 1️⃣ $RKC ~ 3.5M dexscreener.com/solana/FzbYhPc… $RKC was the perfect example of how attention moves faster than logic in this market. Dormant Roaring Kitty account posts a CA after 16+ months silent → token hits $12M MC in under 30 minutes. Didn’t matter that it was a hacked Pump.fun launch. Didn’t matter that wallets were heavily sniping supply. Didn’t matter that the dev dumped hard. The narrative was too strong: GME nostalgia + retail rebellion + “Roaring Kitty is back.” That’s what CT bought. The deletion made it even stronger psychologically. It stopped being “another celeb coin” and became the “forbidden CA” everyone rushed to ape. But smart money understood the real play was the attention spike itself, not the token. Most retail entered after the emotional peak and became exit liquidity almost immediately. That’s the real takeaway here: A single dormant legend account still has enough cultural weight to create instant liquidity out of thin air. Thoughts: Likely a 1-day wonder with a slim path to continuation only if a full CTO forms and community memes sustain momentum. Trader motivation here is clear: pure degen gamblers + GME nostalgia retail crossover chasing emotion, not conviction.

@seunlanlege Love this energy. Own it, fix it, move forward. Weldone chief

Over the past few weeks we have re-audited every cryptographic dependency Hyperbridge relies on. This has led to the discovery of even more critical vulnerabilities in our code, third-party libraries and even Polkadot itself. All have been responsibly disclosed and patched. We’ll be publishing a detailed write-up on shortly on all our findings. The root cause of the original incident was a missing single line of code that permitted proof forgery. The vulnerable code in question dates to early Polytope Labs days and predates our current review & testing standards, which is why the re-audit was warranted and why it’s ongoing. Alongside this, we’re launching a bug bounty which will help us work with whitehats on the continued security of the protocol.

The auditors who'll matter in 2 years aren't the smartest in the room today. They're the ones still showing up after the room empties. Be the last one out.

@Merulez99 Happy birthday chief

It’s my birthday today. And honestly, the thing I keep thinking about most is how much can change in a year. A year ago, Valves Security was still mostly belief. Belief that we could build something serious. Belief that depth still matters. Belief that two people with enough obsession, discipline, and refusal to quit could earn their place in this space. This year proved a lot to me. Not because everything went perfectly. It didn’t. But because every hard week taught us something. Every audit made us sharper. Every client who trusted us gave us a chance to prove ourselves. Every person who supported, referred, replied, answered, or simply paid attention helped us keep going. That’s the part I’m most grateful for. The work matters. But the people around the work matter more than I understood before. So today I’m just grateful. For my partner. For the friends in my corner. For the people who believed early. For the lessons that came the hard way. And for the chance to keep building. Another year older. A lot more to prove. Onto the next one 🤍

@maigadohcrypto @sherlockdefi Congratulations boss

Masha Allah ranked 5th twice in 2026 , thanks @sherlockdefi for giving the opportunity to showcase my skill

@adeolRxxxx @Afriauditor @sherlockdefi @Pelz_Dev Congrats my chief

I am happy to say i topped 6 out of 500+ participants in the Move contest on @sherlockdefi > I didn’t touch the code once. > I built an algorithm from absolute scratch. > It found 4 out of the 6 issues that made the top 6. > I never opened the source > I and @Pelz_Dev only wrote the reports and submitted the findings. > I’ve been building this in silence. No clout. No noise. > Because I don’t talk about shit I can’t prove. > This isn’t here to replace auditors. > It’s here to show the beauty of hacking live contracts on-chain in real time. No lowballing. No shortcuts. Just straight, undeniable proof of work, exactly how black hats are already using AI. > I built this because I’ve been cheated on, played, and ignored too many times. It runs in 3 phases: 1. Contests: This was my backtesting ground. 2. Bug bounties: where I show real results. 3. Live chains: Instances deployed on mainnet, auto-targeting protocols that push unaudited commits straight to chain. Currently at 50% complete. still building and implementing. One of its features is that when it hits a protocol with closed-source code on-chain, it automatically decompiles the bytecode back into clean, human-readable source, then throws its entire knowledge graph and reasoning engine at it. It systematically breaks down every layer until the protocol is fully reverse-engineered and every vulnerability is exposed. This is just the beginning.

@asen_sec facts, no baggage, no fixed mindset, just speed and clarity. That’s a real edge early on.

Your advantage as a new auditor isn't experience. It's that you haven't committed to the old way yet. You're not behind. You're unburdened. Go before that changes.

@HackenProof 652

Can you crack the code? Write your answer in the comments ⬇️

@pashov @asen_sec He is truly an OG in the audit space, I am a big fan of him

This guy just MOTIVATES me. 160k lines codebase (wtf) and he found the most (3 High, 2 Medium) valid vulnerabilities out of 1600 people participating. He says to have done it with AI only. This is what I call impressive. We need more of this in the space, great work @asen_sec🫡

"Because security is now a first-class priority in crypto, a hacker’s potential payout is proportional to the damage a hack can inflict."

@mylifechangefa1 Bad guy🙌

EFCC life e no easy. More to come sir. #hacking #Blockchain #web3 #web2 #hackenproof

@x_RonZY @Mister_Hammed Don't use d money to bet, Dash me. Allah will reward you in multiple folds 😄

@Mister_Hammed I won't bet all my money nah

Na that bet go finish you off totally

Condolences to Balancer, but the deeper issue is this... You can’t build a safer ecosystem by assuming people will choose the moral path. In practice, the default path is often the immoral one, because doing harm is easier than doing good. You can’t control human nature. You can control incentives. And as long as the incentive to be a blackhat is greater than the incentive to be a whitehat, hacks like this will keep happening. Protocols need to do more than say “do the right thing.” They need to make doing the "right thing" easier We need faster triage, faster payouts, faster and clearer communication, and a better experience overall for whitehats. Imho security is more of incentive design.

@pashov Yes, count me in ser

More than a year ago. Some killer security researchers came out of this internship. Many got hired in big companies with good salaries - very welcome. If another internship cohort sounds interesting, do comment below - let's see if there are people that would want this

Took part in the Reflector audit on Code4rena. Tough competition, learned a lot, and finished on the leaderboard. @code4rena @in_reflector

@Hakuna29997288 @vii_finance @cantinaxyz Congratulations Hakuna 🙌

Came in 🥈 2nd place at the @vii_finance contest at @cantinaxyz ! The competition gave me hands-on experience auditing Uniswap v4 hooks and a deep dive into the intricacies of Euler Vault Kit. Especially happy with this one since the contest ran right through my university exam period.

🚀 Secured 17th place out of ~1,200 auditors in the Rujira Audit Contest on Code4rena! I found 2 High & 1 Medium issues in this THORChain lending & borrowing protocol. Competing with top blockchain security minds was 🔥💪 Thanks @RujiraNetwork & @code4rena! #Web3 #DeFi #Audit

@4lifemen @Al_Qa_qa @RujiraNetwork @code4rena Thanks

@faridweb3 @Al_Qa_qa @RujiraNetwork @code4rena Congrats! 👏🏻

@Al_Qa_qa @RujiraNetwork @code4rena Thanks mentor

@faridweb3 @RujiraNetwork @code4rena Congratulations brother 🫡

@TheWeb3Mechanic @RujiraNetwork @code4rena Thank you my chief

@faridweb3 @RujiraNetwork @code4rena Congrats bro ! 🫡 More wins to come