Stars
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
This is the capstone project at UC Berkeley, where we are honor to cooperate with Almanax.
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-m…
Examples of Solidity security issues
Blockchain explorer for Ethereum based network and a tool for inspecting and analyzing EVM based blockchains.
A 6-part series on how to use Echidna on real-world codebases
Scrappy assistant that automates web3 bug hunting workflows. Tracks ongoing bug bounties and launches autonomous agents that can perform arbitrary tasks.
SEAL 911 is a project designed to give users, developers, and security researchers an accessible way to connect with a small group of highly trusted security professionals in case of emergency.
One click magically working Foundry + Medusa + Echidna Starter
A collection of solo audit reports by web3 security experts
Demystifying Exploitable Bugs in Smart Contracts
Efficient, decentralised and MEV resistant mechanism to convert fee assets to a single token.
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
The ultimate, most advanced, security, DeFi, assembly, web3 auditor course ever created.
A comparison of solidity fuzzing tools Foundry, Echidna & Medusa
Explain complex systems using visuals and simple terms. Help you prepare for system design interviews.
Source code for the examples in my Udemy course "Learn Multithreading with Modern C++"
A static analyzer for Solidity, built upon regex and ASTs.
Semgrep rules for smart contracts based on DeFi exploits
A chronological and (hopefully) complete list of reentrancy attacks to date.
Solidity contract visualisation tool
Heuristics for smart contract auditors