🚩
HACKBOOK OF A HACKER
  • README
  • CTF Writeups
    • Intigriti Challenges
      • 1223
    • ASIS CTF quals 2022
      • Beginner Ducks
    • CSAW 2022
      • Dockreleakage
      • My Little Website
      • Word Wide Web
    • Cybersecurityrumble CTF 2022
      • Crymeplx
      • Revmeplx
    • HTB University CTF 2023
      • Rev
        • Windowsofopportunity
    • Metared 2022
      • 1x02..ware
      • Backwards
    • Reply CTF 2022
      • Dungeons And Breakfast
    • Teamitaly CTF 2022
      • Flag Proxy
    • MOCA CTF 2024 Quals
      • RaaS [WEB]
  • Smart Contracts Security
    • Code 4 Rena
      • High Risk Findings
        • Anyone Can Pass Any Proposal
        • Arithmetic Rounding
        • Can Vote Multiple Times By Transferring NFT In Same Block As Proposal
        • Never Ending Proposal
        • Reusing Signatures
        • Signature Verification Can Be Bypass With Zero Address
        • Untyped Data Signing
        • Wrong Calculation Of Apr
      • Low Risk Non Critical
        • Dont Check If Some Entity Actually Exists
      • Medium Risk Findings
        • Bypass Signature Validity Check
        • Copy Of Lack Of Verification In Hashes
        • Function May Run Out Of Gas Leading To Loss
        • Incorrect Initialization Of Smart Contracts With Access Control Issue
        • Invalid Signature Lead To Access Control
        • Lack Of Checks If One Entity Get Hacked
        • Lack Of Verification In Hashes
        • Missing Upper Limit
        • Missing Zero Address Checks
        • Possible Dos Because Unbounded Loop Can Run Out Of Gas
        • Too Much Trust To Certain Roles
        • Unreversable Actions
        • Useless Nft
  • T.I.L.
    • 16 09 22
Powered by GitBook
On this page

README

  • Ctf Writeups

    • Asisquals 22

      • Beginner Ducks

    • Csaw 22

      • Dockreleakage

      • My Little Website

      • Word Wide Web

    • Cybersecurityrumble Ctf

      • Crymeplx

      • Revmeplx

    • Htb University Ctf 2023

      • Rev

        • Windowsofopportunity

    • Metared 2022

      • 1x02..ware

      • Backwards

    • Reply Ctf

      • Dungeons And Breakfast

    • Teamitaly Ctf

      • Flag Proxy

  • Smart Contracts Security

    • Code 4 Rena

      • High Risk Findings

        • Anyone Can Pass Any Proposal

        • Arithmetic Rounding

        • Can Vote Multiple Times By Transferring NFT In Same Block As Proposal

        • Never Ending Proposal

        • Reusing Signatures

        • Signature Verification Can Be Bypass With Zero Address

        • Untyped Data Signing

        • Wrong Calculation Of Apr

      • Low Risk Non Critical

        • Dont Check If Some Entity Actually Exists

      • Medium Risk Findings

        • Bypass Signature Validity Check

        • Copy Of Lack Of Verification In Hashes

        • Function May Run Out Of Gas Leading To Loss

        • Incorrect Initialization Of Smart Contracts With Access Control Issue

        • Invalid Signature Lead To Access Control

        • Lack Of Checks If One Entity Get Hacked

        • Lack Of Verification In Hashes

        • Missing Upper Limit

        • Missing Zero Address Checks

        • Possible Dos Because Unbounded Loop Can Run Out Of Gas

        • Too Much Trust To Certain Roles

        • Unreversable Actions

        • Useless Nft

  • T.I.L.

    • 16 09 22

NextCTF Writeups

Last updated 11 months ago