Attack vectors (and their combinations) over xSushi-like staking, ERC777 tokens
Received bug bounties from Vesper Finance and BT Finance for vulnerability disclosures. Both vulnerabilities follow the same pattern and we study when it can be exploited.
We reported a critical vulnerability to Primitive Finance, leading to the generous R bounty and an article on the war room operation.
A vulnerable bot was controlling some $80K. We killed it, saving the funds of its owner(s).
Reported critical vulnerability to Dinngo/DeFlast team leading to their rescue of all threatened funds. The vulnerable contract had no public source.
Reported critical vulnerability to DeFi Saver team which would have allowed hackers to steal over $3.5m. Vulnerability was originally flagged by one of our tools.
Technical paper on our analysis technology for tainted contract guards. Interesting observations on symbolic execution vs. static analysis approaches.
Research article on our analysis technology, especially the modeling of "memory" in EVM smart contracts.
Received bounty from the Ethereum Foundation for our analysis of the gas impact of EIP-1884.
Research article, at ICSE'19 conference, describing our decompiler.