Cybersecurity experts | We audit Ethereum and Solana | Creators of @WakeFramework & @TridentSolana | Educational partner of Solana Foundation
Joined October 2021
- Tweets 2,101
- Following 817
- Followers 9,459
- Likes 10,941
278 Photos and videos
Pinned Tweet
EVMbench for Solana: Trident Arena, a multi-agent AI security scanning solution.
21 out of 30 critical/high-severity vulnerabilities found across 6 open source Solana code bases in benchmarks.
70% true positive rate.
See it in action: During a manual audit, TridentArena helped us find a critical-severity issue (later fixed), making @MetaDAOProject even more secure.
Built by the School of Solana senior auditors, securing leading protocols.
Time to IBRL of Solana security audits!
Launch blog post: ackee.xyz/blog/trident-arena…
Request access → tridentarena.xyz/
Follow @TridentSolana for product updates and insights.
124
46
187
1,836,798
Ackee Blockchain Security retweeted
How do input validation vulnerabilities work? Take a closer look at January's $13.4M hack of @0xSwapNet.
The vulnerability enabled attackers to control low-level calls and turn approvals into an attack vector. So what does that mean?↓
1
1
6
685
How do input validation vulnerabilities work? Take a closer look at January's $13.4M hack of @0xSwapNet.
The vulnerability enabled attackers to control low-level calls and turn approvals into an attack vector. So what does that mean?↓
1
1
6
685
6/ Similar attacks can be prevented by:
- Open-sourcing critical contract logic and having it audited
- Using exact-amount approvals instead of infinite values
- Whitelisting call targets in routing contracts
- Validating function selectors on all low-level calls
1
73
7/ Read in full how a UX toggle became a multimillion attack surface:
theblock.co/post/386986/matc…
1
83
Learn how access control vulnerabilities work in our deep-dive on the Crosscurve exploit, and prevent this in your project:
x.com/AckeeBlockchain/status…
On February 2, an attacker forged a cross-chain message to drain $2.8M from CrossCurve.
It worked because the protocol's receiver contract exposed a privileged execution path without access control.
How to prevent these types of exploits? ↓
2
7
1,028
How do integer overflow attacks work? See one of 2026's biggest hacks and prevent this in your protocol.
x.com/AckeeBlockchain/status…
On January 8th, @Truebitprotocol lost 8,535 ETH ($26.4M) to an integer overflow.
The vulnerable contract was deployed in 2021, never audited, and held millions in ETH.
Here's what happened ↓
3
2
13
1,521
What makes a project secure? Learn about the security pyramid: x.com/TridentSolana/status/2…
Mar 20
Security is only as strong as the weakest link.
You can have great fuzzing and still lose funds to:
• weak access control
• unsafe dependencies
• missing monitoring/response
• social engineering in ops
Treat security as a system: code quality testing fuzzing audits.
2
2
9
1,585
Learn how to set up our fuzzing framework @TridentSolana, write a test to catch a real program vulnerability, and monitor the results.
Thank you @mikehale & @Quicknode @QuicknodeSolana for collaborating with us on this deep dive. ↓
x.com/QuicknodeSolana/status…
Solana Developers should know: one missing account constraint can drain your program's funds.
This tool✨found the bug instantly✨.
New guide with @AckeeBlockchain: how to fuzz test your Solana programs with @TridentSolana
2
2
11
1,431
Ackee Blockchain Security retweeted
May 9
1
2
51
3,720
Get started with @WakeFramework for Solidity development and testing to prevent protocol-breaking vulnerabilities in your EVM project: x.com/WakeFramework/status/2…
2
8
1,146
Our auditors have already discovered dozens of vulnerabilities in major Solana protocols.
Don't miss the opportunity to work with Solana OGs and get in touch at the link below.
2
4
17
1,216
Trusted by Lido, AAVE, and Safe to secure billions in TVL.
Now securing Optimism's ecosystem projects, including Vfat, through OP grant funding.
3
13
1,416
Building on Superchain? Get audited:
ackee.xyz/contact
1
3
378
Ackee Blockchain Security retweeted
Apr 14
The jump from Wake Arena 3.0 to 3.1 is a 21 percentage point increase in detection rate.
3.0 at 46% → 3.1 at 67%
Frontier LLMs plateau around 44%.
That ceiling is real: more compute, better prompts, same result.
The staircase:
Opus 4.5 (22%)
GPT-5 (26%)
GPT-5.2 xhigh (44%) = Zellic v12 (44%)
Wake Arena 3.0 (46%)
Wake Arena 3.1 (67%).
Breaking through that ceiling required a different architecture.
Not a different prompt.
Learn more ↓
1
4
8
993
Learn how to set up our fuzzing framework @TridentSolana, write a test to catch a real program vulnerability, and monitor the results.
Thank you @mikehale & @Quicknode @QuicknodeSolana for collaborating with us on this deep dive. ↓
Solana Developers should know: one missing account constraint can drain your program's funds.
This tool✨found the bug instantly✨.
New guide with @AckeeBlockchain: how to fuzz test your Solana programs with @TridentSolana
1
2
14
1,807