engineer, fixer, sometimes lunatic
Joined August 2022
- Tweets 8,752
- Following 3,749
- Followers 20,598
- Likes 17,988
1,521 Photos and videos
Jun 13
context situational-awareness.ai/the…
If you haven't read the entire thing, you should - now more than ever
3
6
68
5,975
Jun 8
This afternoon I get a message from @0xQuit:
“you at a computer? This guy is doing something fucky with flooring”
Never a dull day in this space, it turned into hours of analysis, evm tracing, identifying a second exploit path that put significantly more assets at risk, and helping build a rescue contract to recover what we could from the protocol.
Grateful to have been able to help keep assets from malicious actors.
We’ve just finished a whitehat operation on an exploit discovered in Flooring Protocol.
Now safely in the custody of Yuga Labs:
29 bored apes
4 mutant apes
1 bakc
2 cryptopunks
1 azuki
2 elementals
26 captains
1 moonbird
2 doodles
@0xQuit, our VP of Blockchain recovered the NFTs. Will leave the details for him to go over in a separate thread.
There was an exploit earlier this morning on the same protocol which had left some collections already raided. Huge shout to @coffeedev who found that by tweaking the same exploit, there was an even larger risk to other Flooring collections like BAYC and Cryptopunks.
I quietly instructed our GrailsOTC trading desk to front the money and NFTs to rescue the at-risk assets from the protocol.
We will work together with the protocol devs to return these assets once a solution is sorted. Could mean contract relaunches and token reassurances within that protocol - or more.
But thanks to this move we were able to save dozens of assets from impacting the market and flooring protocol tokens from being compromised.
bored ape yacht club
58
19
278
24,085
Jun 5
If you're writing smart contracts, run them through solidity auditor. Free and open source skills to help make things safer. Shoutout to @pashov for making this available to everyone.
*Don't replace formal auditing with an AI tool, this is an additive measure.
🤯An AI security tool has 1st-place performance on security contests from just 1yr ago. Solidity-auditor v3 is out, FREE & Open Source.
Thousands of Solidity developers are using the tool already. Upgrade your security baseline, use the tool🫡
pashov.com/solidity-auditor-…
4
1
50
3,828
Jun 4
the receipt that started my journey
4
18
5,218
Jun 4
It's never been so over
(Except for the last time it was so over and the time before that)
2
7
613
May 29
Hello yes I would like the ai box with 16 blackwell gpus delivered to my house
Nvidia will now pay you to put a mini AI data center on your house
It looks like a normal AC unit in the yard.
But inside sits 16 Nvidia Blackwell GPUs and Dell servers.
A startup called Span builds them, backed by Nvidia.
They bolt onto your home and you get paid for the power and Wi-Fi.
Some estimates put that around $1,000 a month in your pocket.
That is rent money just for hosting a box outside.
Span says it deploys way faster and cheaper than a real data center.
The AI boom is literally moving into the suburbs.
Save this, the grid is getting rebuilt in real time.
3
426
coffee retweeted
May 27
83% of defi "hacks" are access-control related.
This is a solvable problem.
Some things being worked on:
1. A new standard for secure execution
2. New primitives for redundancy
3. Expanding auditing surface areas and drift analysis
4. Transparency via live monitoring
5. Automated mechanisms i.e. circuit breakers
Along with several other large projects this is our major effort right now.
May 26
PSA: I now consider *all* of DeFi unsafe.
Coding agents are superhuman at finding vulnerabilities, and smart contract security is too asymmetric: defenders need to fix every bug while attackers need just one exploit to steal funds.
3
2
20
1,435
The reaction to Ferrari’s first electric car is a reminder of why design matters.
Most people aren’t debating performance. They’re reacting emotionally.
“This doesn’t feel like Ferrari” actually means:
“This no longer feels like the thing I loved.”
Because the strongest brands don’t convince people to belong. They make people feel like they already do.
Ferrari just reminded creatives, in and outside of tech, of an important lesson we often forget:
Design moves people. Specs alone don’t.
And that applies to cars, fashion, and tech.
It might also explain why Abstract has such a strong core community.
The best brands build an unwritten DNA, one that makes users, builders, and partners feel like:
“I belong here.”
16
5
41
3,142
May 6
Does anyone have any contacts at @SourcifyEth / @argotorg
Looking to get in touch with them.
4
14
843
May 5
Anyone find the liquidity pools section on the new explorer yet?
Loving all the feedback, keep it coming.
May 4
Meet the new Abstract explorer.
This upgrade brings powerful debug views, nested calldata parsing, and cleaner insights across the entire chain.
With deep Portal integration, smart contract tagging, and richer onchain context, now you can see what matters in every transaction.
11
48
2,644
May 3
Sundays are for pulled pork
4
18
866
Apr 26
Apr 25
10h ago @litecoin experienced a coordinated attack on the chain that resulted in 13 blocks reorg that took more than 3h to generate.
During this time attackers were performing double spend attacks on multiple cross-chain swapping protocols.
We are investigating the situation.
2
11
618