Hey guys, in this blog post, we’re going to perform a security assessment of a smart contract and, with the help of Certora’s formal verification tool, try to prove there are no “High” severity issues residing in the source code.
Replaying Bugs With Certora: Sorra Finance
In this blog post we’re going to deep dive into the Sorra Finance hack, find the root cause of the bug and create a certora rule which could’ve prevented the exploit.
Research: ERC20 Self Transfer
Overview
In this blog post we’re going to:
1. Understand how ERC20 self transfer vulnerability works in smart contracts
2. Create a semgrep rule for finding such contracts
3. Scan https://github.com/tintinweb/smart-contract-sanctuary to better understand how many contracts exist with such bug
How to create your own Uniswap
In this tutorial we’re going to build a very basic decentralized exchange (DEX) like Uniswap or PancakeSwap.
How to create your own ERC721 NFT collection and publish it on Opensea
In this tutorial we’re going to create our own ERC721 NFT collection and publish it on the Opensea marketplace.
Web penetration testing
In this tutorial we’re going to define base steps for web penetration testing and find vulnerabilities in DVWA.