The step from auditing things you know have issues (like ethernaut) to things you don't now have issuse (live + heavily audited code) is very simple.
The answer is they all have issues.
The rick ruben of the audit world is @0xCharlesWang. You will only understand this in a few years when people who audited with him went from mid to top tier in 2-3 audits.
And still the amount of crits this has got me is unreal:
soundcloud.com/kore-g/esoteri…
Not for faint of hearted but neither is auditing.
Add 1-2 upper decky zyns for extra spice.
@0x3b33@_marvyCodes@32bits_Toby brother, you're making at least 5x of the average salary in your country. It's all in your head. You can have access to anything.
Unpopular opinion: if you’re new to auditing, you don’t need to master every new language.
What matters more is learning to think like an attacker. Skip the syntax, focus on the systems. Systems exist everywhere, not just written in solidity or rust.
Imagine skipping a spot in…
950 followers after 4 years of auditing. Pray for me, that at 1k, I don’t unlock the auditor gene mutation where I need to tweet about my earnings. 🙏📿🤲
I switched to colemak keyboard layout in april and doubled typing speed (now in top 2%).
If you think thats stupid waste of time, then at least switch your capslock with your delete key.
I have been looking at @aave v4 over the past weeks.
The new hub <> spoke architecture is neat: it makes the code simpler and improves isolation aave.com/blog/understan…
They now use explicit rounding directions in all operations, which reduces risks and should be a standard…
Relying on fully coded pocs to validate your issue avoids having to be absolutely diligent and have machine precision.
So I think I finally agree that pocs are great if you are new! But a failed poc means your idea didn’t work, and now you can backwards engineer why. You don’t…
Cryptography from the very beginning, look at Introduction to Cryptography by Nigel Smart.
It'll cover everything you need to know as a beginner in cryptograhpy, without any pre-requisites. It's a decent length text book but so worth the time. (It's also free)
48 Followers 540 FollowingI have been working in the penetration testing for web, API and mobile since 2019 I was working for an American company as a web application penetration tester
2K Followers 1 Followingbountyhunt3rz: LIFE ON THE BLOCKCHAIN
We interview the top bounty hunters in crypto to discover their secrets to finding live bugs and making millions
29K Followers 3K FollowingTech veteran turned health hacker. Merging science with self-experimentation to push the limits of longevity and peak performance with age. YRS=49 | N=1.
61 Followers 36 FollowingIT Security Pro at Matter Labs. Passionate about digital privacy & innovation! 🌐 #Cybersecurity #InformationProtection https://t.co/X6mI2C8Zag
857 Followers 453 FollowingHead Degen @canary_proto. Check out my podcast @weavingweb3. My opinions are my own and I urge not to listen to me! Perpetually finishing my PhD
975 Followers 128 FollowingBreaking web3 infrastructure for a living
Rust | Go | Bitcoin | Solana
Senior All Star @immunefi
ZR @zenith256
Profile: https://t.co/SCCO0nE5US
125K Followers 764 FollowingFounder @SeliniCapital and Lad @0xSteadyLads; Game theory connoisseur ; Soon, the biggest problems in the world will be philosophical
3K Followers 316 FollowingBug bounty wizard - All Stars @immunefi. I cast Exorcise on vulnerabilities and Heal on protocols. Prevented on-chain exploits worth over $200M.