Alexey Posikera

Most audits miss Web2.5 Smart contract auditors focus onchain. Backend devs trust the blockchain. But the real attack surface is the interaction between them. Case study from our recent audit: double-spend via reverted tx secret leak + ECDSA mismatches. blog.decurity.io/a-web2-5-vulne…

🧐 Your protocol was audited in 2022? That's exactly why it got hacked in 2025. 2025 was the year hackers went hunting through old, audited code — and rounding errors became million-dollar exploits. Our breakdown of top 10 DeFi incidents of this year: 2025-recap.decurity.io

Ever audited Solana Anchor constraints with 20+ accounts and cross-checks everywhere? Our own @passkeyra built a tool that turns them into visual graphs - red flags for missing checks pop out immediately. blog.decurity.io/auditing-solan…

For Sui packages decompilation the Revela decompiler is used - github.com/verichains/rev…. The same decompiler produces the source code when you check it in the suiscan.xyz explorer

Hi all, I published my new SuiSource MCP - github.com/PassKeyRa/suis… Now it has two tools that are useful for researchers - getting the local decompiled version of a package bytecode and collecting extended info about all packages of a project just by a single found package ID

@publicqi @DecurityHQ Yes, should work! I will check it out later also

@DecurityHQ @dewardgnome nice! if the only reason using IDA is for FLIRT, i guess binja sigkit would also work?

Releasing our new IDA Pro plugin for analyzing Solana's eBPF programs developed by @dewardgnome. Check out the blog post: blog.decurity.io/reversing-sola…

Have you ever dreamed about a CLI debugger and pwntools but for smart contracts hacking? @dreselli and I thought about you and we are planning to release some cool stuff for this community. Stay tuned!

1/n Introducing SolidityGPT.xyz - a GPT-based chatbot trained on @solidity_lang codebase and several Ethereum associated projects like @EthereumNetw , @optimismFND @arbitrum @0xPolygon @zksync, which helps devs to query technical questions around Solidity, Eth etc.

We're glad to announce that our grant proposal for enhancing our @semgrep solidity rulepack has been approved by @compoundgrants. The purpose is to develop new static analysis rules and adapt them for the Github pipelines of @compoundfinance. We'll tweet soon about our progress!