Sabitlenmiş Tweet
SMarT
3.9K posts
SMarT
@smartdeckk
Valves Calibration-expert/maths scientist/Bug-Hunter/blockchain security researcher.
Port Harcourt, Nigeria Katılım Aralık 2017
5K Takip Edilen403 Takipçiler
@gabson0x You are correct but these sherlock guys are amazing. Do you know that for about 2 years now , none of the four have lost a contest they headed. And you are telling me that a codebase of 1700 solcs ,written by morpho,audited by these guys and you found 7 bugs in some hours?
English
@smartdeckk no audit by any org is 100% guaranteed , lol i spent hours in the codebase before reporting with valid poc, a wild thing to say for one who doesnt contribute in the space.
Nomad Bridge
Euler Finance,
Poly Network,
all audited by top security firms but still got hacked
English
i think am done for today 🥱 2hr+ of auditing
Cantina 🪐@cantinasecurity
You're going to be working late for this one: The @Morpho Midnight competition is live. Morpho Midnight is a non-custodial protocol for fixed-rate, fixed-term credit markets. Let's see what you've got, researchers: cantina.xyz/competitions/4…
English
SMarT retweetledi
Now, This inverted rounding made nextSqrtP from calcFinalPrice slightly exceed the tick boundary, and then calcReachAmount concluded and thinks the threshold was not reached. And then the fund drainage begins.
We distilled you logics and cover edge cases. Just a DM ..,
English
SMarT retweetledi
while calcReachAmount() function determines the input needed to hit the next tick boundary, and calcFinalPrice() derives the price given the actual input. Then both depend on estimateIncrementalLiquidity() for fee-based deltaL, which rounds down.
English
SMarT retweetledi
This is just the close summary of kyberswap attack. Difference perser issue.
The Elastic's computeSwapStep() function calls two functions that each compute a price from swap parameters:
0xaudron@0xaudron
@nnez/different-parsers-different-results-acecf84dfb0c" target="_blank" rel="nofollow noopener">medium.com/@nnez/differen…
@__nnez solid writeup on different parser causing different result resulting in critical security issue. It reminded me of @orange_8361 ‘s research of SSRF where different parsers parsed input differently leading to bypass of protections for SSRF. If you’re interested in learning more about research: youtube.com/watch?v=R9pJ2Y… English
Hello @LCFC
I’m Olaogun, a winger also played as a striker from Nigeria. I’ve spent the last 3 years training daily to get one shot at professional football.
I’m not asking for a contract. I’m asking for 7 days on trial to show you what I can do. If I’m not good enough, I’ll walk away with no hard feelings.
I’m fast, direct, and I work harder than anyone on the pitch.
My highlights are here: @Olaogun9" target="_blank" rel="nofollow noopener">youtube.com/@Olaogun9
Thanks,
Olaogun
|
Leicester City@LCFC
We can confirm that 10 Men’s First Team players will depart upon the expiration of their contracts this summer. We would like to thank all those leaving us for their contributions during their time on Filbert Way, and wish them the very best for the future.
English
@UmehWrites Go and eat eba. This don't work . All those shenanigans was made to build fear to the lady.
English
Observation.
I remember during Regina Daniels wedding she swore a traditional oath never to sleep with any man aside from her husband, else something bad will happen to her and the man involved in the affair.
Has Ned Nwoko returned her bride price? Is their marriage officially dissolved? Does the new man know what he’s sliding into?
I hope she’s in right standing with God, cos no one holds more grudges and remembers a debt owed like the devil. She/they better go and resolve the issue before dancing the dance of gods, because there will be lessons.
Regina Daniels@ReginaDanieIs
The little things.....
English
Glad that they will never ask themselves will I even get million dollar bounty
I will be also in this same list One day 🙏
English
@PoojaMedia This isn't new to coaches. Once a coach dont like. Goodbye from the team.
English
Watched Pep Guardiola's interview on SkySports where he was talking about mistakes & lessons.
He pointed out to Joe Hart's issue how he didn't allow him to prove himself as he didn't give him a chance to do that.
And I think he learnt from that & he was a better coach.
Another testament that those we look up to are not perfect as well.
English
@seunlanlege @HackenProof @hyperbridge You have very bad advisers. Or is it your ego?. You somehow believed you code is still bug free and you went straight to bug bounty instead of during public contest . Now you will keep on paying more. Well, good for us the Sr.
English
We've already paid out over $120,000 on @hackenproof to security researchers actively pentesting the @hyperbridge protocol.
Let the grind continue
hackenproof.com/programs/hyper…
English
@rileyholterhus @p_misirov What can I do to be like you. So curious about this
English
Riley is in the top performing LSRs in the space and I bet you don’t even know about him. he’s the 1% of the 1%. pure unadulterated talent. be like Riley.
Cantina 🪐@cantinasecurity
$500,000 to @rileyholterhus through Cantina Bounties. 🪐 The researchers who consistently find the bugs that matter don't chase volume. They follow programs where scope is tight, triage is fast, and rewards match actual impact. Well done, Riley!
English
@1generalomeje I saw your post on one beshmark post. How is life treating you
English
@smartdeckk Wow boss long time ... How did you figure out it was me.
English
I have never enjoyed living in this life. To atone for, I will be with you for all of eternity. 💛🌻;
English
@Harvesto12 They didnt because, SR dont rub shoulder with each other. They go toe to toe with attackers . And ,That is every SR end goal, to minimal attackers impact. Go hit critical on immunfi or hackenproof. Rub shoulder with attackers not your follow SR.
English
they didn't respond. lmao
Sir. M. Shade⒮🌴@0xShaedyW
Private audit firms. Start with the top five. @0xCharlesWang My young team challenges you. We audit the same codebase under the same time limit. Public judge. If we find more crit/high issues, you drop "outperforming all competitors" from your bio, and If we miss, we’ll..
English
@adeolRxxxx Sure, bro. I can bet on this with all my pennies and dollars. Certainly , there must be a double high.
English
I bet it that if your firm audit a protocol and that protocol go to contest, they’d find bugs in it.
CharlesWang@0xCharlesWang
I love what you did for the industry and you are absolute goat. But I kindly disagree, if you want to find more bugs faster per dollar, you can assign a top tier team where each auditor starts at a different spot in the codebase and live shares issues. (I wouldn’t recommend doing this)
English
I am so scared. I discussed this everyday with friends. We can't survive this if this trend continue.
m4rio@m4rio_eth
To be honest, it is depressing what is happening right now. The past couple of months have been crazy. Too many hacks; it drains me mentally. Not sure how you guys cope, but I’m thinking about the amount of funds lost… this field is not going to recover anytime soon; it’s impossible. Everyone is scared right now to even get their honest 3%. I’m still here, helping as much as possible but man, it’s soo draining mentally.😢
English
Things like this really confuse me tbh, makes me honestly scared and i’m not even trying to be mischievous. This pastor heads NSPPD and a whole lot of people have gotten healed (i believe that the healings are real btw) just by being a part of it but this is the same man laying his hands directly on Alex and he still passed on. I think about this thing and it shakes my faith a lot tbh. I have so many questions because it’s genuinely confusing.
Emilio ⚔️🗡️@EmekaKekeh
Alex lived a good and Impactful life plus he served God always and never stopped. I know he's in a better place now. Forever in our hearts chief ikuku 🥲🕊️
English
SMarT retweetledi
Boss. Ramos go tear ACL😂
Where he wan see $450m😂 His net worth is less than $100m or estimated around that.
He’s just the face of the investors (Five Eleven Group). The real billionaires are at the back.
This is similar to David Beckham and Inter Miami, he only owns about 10%, the real billionaires are behind.
In summary, Ramos is just leading the consortium of investors. He would have a stake, maybe 10 or 20% like a minority shareholder. Technically, you’re an owner if you’re a shareholder…but he go tear ACL to fit buy the club😂
UG@UgwunnaEjikem
I’m too lazy to scour the net for this, but I know for a fact that Sergio Ramos cannot afford $450m all by himself, obviously. Can someone who knows what’s up tell me what the catch is? Who did he partner with? Is he the face of an investment group? Shareholder? Cc @tobyasky
English
@adeolRxxxx @immunefi I really wanted to join the Azul contest but the skirmish of all of it , made me stay on the sideline.
English
If only security researchers were as ruthless and voiced out as DeFi users which forced Lz to push an apology, I think we won’t be in this mess we are in currently especially with contests on @immunefi
You started the pay to submit for contest, $20 on base azul and yet you find it hard to run a paid contest smoothly??
Even after taking our money?
$100 for escalation and you can’t even run a smooth program.
I don’t have issues with the money, give us the smooth process we paid for.
This is happening and we are surprised hacks are happening everyday?
This is just the beginning.
LayerZero@LayerZero_Core
English
Having work with him. The chad is superb . I will recommend him any day , any time .
airtx (🥚,🥚) 🇦🇲@0xairtx
This is why @NotDeGhost is the only auditor I respect. Although it’s our code, our bug. He took responsibility for missing it anyway: a full reaudit for free, plus a meaningful refund of the prior audit fee to help us restart. That’s skin in the game. That’s why we audit with @osec_io.
English