🚨 Explored Berachain Foundation 🐻⛓'s POL today. If you are a developer, auditor, validator or simply want to stake without losing funds, beware: 1. Ethereum-style frontrunning is possible (similar to the Lido bug) 2. Depositing for a validator with exited status leads to lost funds.

rePRICE AzFlin 🌎 The best is combining multiple security layers, especially for complex code. No 2 auditors think alike, everyone has a different pov and knowledge. Best strategy, imo: 1. Private audit (small team with nice portfolio), don't look for the brand. The fact they're small forces

We believe in Berachain Foundation 🐻⛓, it's no wonder we've done over 10 audits there (many more incoming). Our last one was for Credifi. Great team and great project, integrating Euler. Here are 3 specific takeaways from this audit: 1. Never copy-paste integration contracts. Use

I used to hate LLMs for auditing. Turns out, I was wrong. Here are my top 3 favorite use cases: 1. Explaining a function or flow 2. Reviewing similar online implementations and analyzing design choices 3. Instantly drafting a mock markdown report when spotting an issue

Daily reminder for anyone serious about success: Your choices are binary. 1. Do you want it? Y/N 2. Do you make it a priority? Y/N 3. Are you working for it? Y/N 4. Are you doing whatever it takes? Y/N - not "enough". Whatever it takes.

Nothing beats watching a project pay for the same bugs you already handed them Early last year we gave a project a 15-minute preaudit report. They went with another firm just to pay for the exact issues we gave them for free. 😁

If someone says they don’t get the meaning of: “I’ve failed more today than you’ve tried in your lifetime.” Introduce them to Web3 Security. 🤝

The best clients are the ones who do real due diligence. We love securing their projects, knowing we have earned their trust. Ask for past work, references, referrals, even reach out to previous clients. Words are cheap, results aren’t. ✌️

Our biggest pride in SBSecurity is how we treat each client: - Share free findings upfront with the quote - Start audits within 24h - Put in extra time to get it right - Fit your budget - Build partnerships that last You’re safe, or we don’t sleep. 🤝

1. hey guys 👋 🛡️Introducing SoloAudit — a public-good platform to make solo audits accessible for every Web3 project. We’re live 👇 soloaudit.com

SBSecurity 🤝 ShiftYield (SHIFT Protocol) We’ve just wrapped a security review for the great team at ShiftYield - a sophisticated vault protocol offering multiple yield strategies.

Foundry is such a powerful tool - the more I use it, the more I like it. 🔥 Looking to sharpen your Foundry skills? This is one of the best Foundry-specific resources: youtu.be/K83Y9NMSBVo

The earlier you realize how much your success depends on how well you communicate with other humans, the better. And yes, this is valid for auditors as well. 🤝

Our experience with SBSecurity has been very good, boutique style of auditing, we were able to go over any point with them directly, without ever feeling that the process was rushed or approximative

Slavcheww and Blckhv are real Gs in the audit game 🔥🔥 soloaudit.com/auditor/slavch…

Key to building long-term business relationships 🤝: Before we audit a project for 1st time, they do heavy due diligence, ask past clients, and most importantly, negotiate the price. Afterwards, the trust is built. No more negotiations. That’s the point where many firms start