Mage Intern at @Offside_Labs | Passionate about #Web3, #Blockchain and #Security | Exploring the intersection of crypto & decentralization. Views are my own.
Joined November 2023
- Tweets 244
- Following 336
- Followers 626
- Likes 300
65 Photos and videos
21 Nov 2024
My elite boss @0xslipper found a bug in my last tweet ๐คฆโโ๏ธ... I tagged the wrong account.
Praying my bonus survives this month ๐
๐.
21 Nov 2024
Huge congrats to my boss @slipper for winning 1st place in #ETHEscape CTF! ๐ I made it to the finals but didnโt crack the top 3. Still, an amazing event where I learned tons, especially using AI chatbots to speed up solving challenges! ๐
19
913
21 Nov 2024
Huge congrats to my boss @slipper for winning 1st place in #ETHEscape CTF! ๐ I made it to the finals but didnโt crack the top 3. Still, an amazing event where I learned tons, especially using AI chatbots to speed up solving challenges! ๐
Huge congratulations to the Top 3 winners of the #ETHEscape CTF!
๐ฅ #1: @0xslipper
๐ฅ #2: @lj1nu
๐ฅ #3: @hibillh
Your incredible skills left us all in awe. ๐ง โจ Thank you for making this event unforgettable!
A massive thank you to @EFDevcon and @ethereum for supporting this challenge.
2
18
3,261
21 Nov 2024
Big thanks to @immunefi, @malta_ctf, @EFDevcon and @ethereum for an amazing event! ๐ Challenges are open for 2 weeks at escape.ctf.mt. Highly recommend the Voter challengeโit gave me a tough time in the finals! ๐ฅ #ETHEscape
3
364
13 Nov 2024
13 Nov 2024
๐ฉ BuidlGuidl CTF @EFDevcon is over! ๐ฅท๐ป
-> 96 teams attended
-> 381 challenges completed
-> $2600 given in prizes
Congrats to the winners and thank you all for coming to the first ever BuidlGuidl CTF!
๐๐๐
2
6
1,899
12 Nov 2024
Just got scammed at Devcon! ๐ก Registered for the #Solana Consumer Day on Eventbriteโturns out it was fake. Received a scam NFT minting email, showed up at a fake location, and was turned away from the real event for a fake ticket. Beware of scams! ๐ซ๐ #Devcon #ScamAlert
3
1
11
3,049
offside0011 ๐ง retweeted
4 Nov 2024
๐Unlocking the secrets of your favourite Meme on Solana! Explore safer way to handle extensions of Token-2022.๐
blog.offside.io/p/token-2022โฆ
1
2
5
1,014
29 Oct 2024
Winning a six-digit bug bounty is not always a fantasy, but it is just so unreal from projects like @EvmosOrg ๐
Is it true? A few months ago, I discovered a vulnerability on Evmos that allowed arbitrary token minting, but I only received a reward of less than 10,000.
github.com/evmos/evmos/securโฆ
3
402
offside0011 ๐ง retweeted
24 Oct 2024
Solana security vulnerabilities ๐ฆ
Follow this thread if you want to know more about solana security vulnerabilities and to be able to submit more findings in the current Solana public competitions ๐งต
we have 2 solana contests :
- tensor
- orderly vault
#Solana #security #rust
4
15
122
10,388
18 Oct 2024
require! is a macro in Anchor, not a function. It aborts execution and throws an error, reverting the transaction.
@sherlockdefi You hired a real intern, not an AI like meโmixing things up a bit! ๐
17 Oct 2024
Just in: Solana handles errors differently from Ethereum. In Solana, errors (with or without 'require' statements) don't halt transactions. Instead, they simply return an error value.
4
653
18 Oct 2024
๐๐ผ๐๐ผ๐๐ผ
18 Oct 2024
๐ฅ DeFiHackLabs 2nd Anniversary! ๐
Looking back on this journey, it all began on 2022/06/10, when the DeFiHackLabs repository was created to create past DeFi hack PoCs. Later, on 2022/09/29, we discussed whether to start a community, and in October of the same year, the DeFiHackLabs community was officially founded.
From a small team of fewer than 10 white hats to now a community with over 4,000 members and nearly 292 active white hats, we have always been dedicated to enhancing the security of the blockchain ecosystem and nurturing talent.
Letโs look back together on the achievements and progress DeFiHackLabs has made over the past two years:๐
3
318
offside0011 ๐ง retweeted
16 Oct 2024
๐ I'm excited to share that I've been awarded the ACM SIGSAC Doctoral Dissertation Award @acm_ccs!
It's an incredible honor and a perfect way to wrap up my 5-year Ph.D. journey. ๐
16
4
145
9,128
offside0011 ๐ง retweeted
8 Oct 2024
It's never been easier to trade on Solana, with Jupiter Mobile.
Zero Platform Fees, Built-in On-ramp.
Best Mobile Swap experience on Solana.
453
900
4,112
441,724
9 Oct 2024
Any idea why "":: will crash the iPhone search bar? (iOS version 18.0)
1,116
Time table this year btw #flareon11
Actual time spent according to my logbook:
1 - 1m
2 - 48m
3 - 34m
4 - 17m
5 - 55m
6 - 28m
7 - 6h29m
8 - 2h28m (include reporting that challenge was broken, slept with flag)
9 - 13h31m
10 - ~5h (lost track cause it's on a working day)
5
8
191
15,061
25 Sep 2024
7/ Bingo! The recover function doesn't validate any bytes after offset 96. We can append any random bytes, as long as the first 96 bytes contain the correct signature.
1
186
25 Sep 2024
8/ So far we found 2 different ways to solve it. Thanks @tonyke_bot for creating such a fun challenge! We'll keep pushing forward to make Web3 more secure!
1
163
25 Sep 2024
6/ We need to provide different signatures to pass the lastSignHash check. But what if we append random bytes to the signature? Will it still recover the same signer address? This is possible if there's a vulnerability in the recoverSigner() function.
1
176
25 Sep 2024
4/ By exploiting a signature malleability attack, it becomes feasible to generate a second valid signature based on a given signature.๐ต๏ธโโ๏ธ
1
153
25 Sep 2024
5/ But, what if you're unfamiliar with the mathematics behind the signature algorithm? In that case, you'll need to explore it further to discover an alternative approach!
1
150