- All the writeups can be found under
/writeupsdirectory. - All the poc scripts can be found under
/pocsdirectory.
npm i
for i in pocs/*.js; do npx hardhat run $i; done| No | Contracts | Type | Difficulty | Writeup published | POC published | Discord conversation |
|---|---|---|---|---|---|---|
| 1 | vulnerable/Exchange.sol, tokens/StokenERC20.sol |
ERC20 (handling transfer) | Easy | ✅ | ✅ | link |
| 2 | vulnerable/Staking.sol, tokens/MockERC223.sol |
Reentrancy (CEI pattern) | Easy | ✅ | ✅ | link |
| 3 | vulnerable/Takeover.sol | Logical | Easy | ✅ | ✅ | link |
| 4 | vulnerable/Auction.sol, tokens/MockERC721.sol |
Logical (Push vs Pull pattern) | Easy | ✅ | ✅ | link |
| 5 | vulnerable/Staking2.sol, tokens/ExpensiveToken.sol, tokens/MockERC777.sol |
Logical, Reentrancy, Gas | Hard | ✅ | ✅ | link |
| 6 | vulnerable/KYC.sol, tokens/KYCApp.sol |
Signature malleability | Easy | ✅ | ✅ | link |
| 7 | vulnerable/RareNFT.sol, tokens/ERC721.sol |
Weak RNG(Random number generation) | Medium | ✅ | ✅ | link |