Posts tagged ethereum

THCon 2023 “supplychain” writeup

This is a writeup from the “supplychain” challenge of the CTF for THCon 2023, made by Dridri.

Read more ...


Critical analysis of Flashbots

This article is about the Flashbots project (see that post on ethresear.ch for background).

Read more ...


The bZx attacks explained

This article will examine in details what happened during the two transactions that exploited vulnerabilities to open under-collateralized positions in bZx, causing a loss of equity worth more than a million dollar in total.

Read more ...


Analyzing suspicious smart contract vacuuming

This is the counterpart of Blockchain Autopsies - Analyzing Ethereum Smart Contract Deaths, looking at suspicious patterns in the history of Ethereum, where contracts would not be killed but simply emptied by attackers.

Read more ...


How to steal Ethers: scanning for vulnerable contracts

Four years ago, I wrote an article “How to steal Bitcoins” that was about finding address corresponding to weak brainwallets, and some forensic evidence that it was exploited automatically, for profit.

Read more ...


Pakala: yet another EVM symbolic execution tool

Pakala is a tool for symbolic execution of EVM bytecode (like Manticore or Mythril).

Read more ...


Syncing a Parity Archive Node: How-To

For my experiments, I set on having an Ethereum archive node (with the full history of all the states), with Parity.

Read more ...