Saving DeFi Saver's users using static contract analysis. medium.com/dedaub/ethereu… Yannis Smaragdakis Neville Grech Ilias Tsatiris @Sifislag

An excellent post from @Dedaub about the recently discovered vulnerability. Thanks once again to the Dedaub team for all the help.🙏 P.S. We used @AaveAave flash loans in our whitehat actions, showing once again that flash loans are not about wrongdoings only.

We worked with Dedaub to identify the presence of the vulnerability through whitehat action. After thorough testing and planning, we moved the most vulnerable funds into a smart wallet on Jan 30, and the smart wallet is now under the full control of its owner.

Special thanks to the Dedaub team for discovering the vulnerability and reaching out to us. We are extremely sorry for any inconvenience caused, and we have decided to discontinue the DeFlast frontend website accordingly.

Hacking a DeFi service with no source code available, and reporting the vulnerability to DeFlast ⚡️ and DINNGO medium.com/dedaub/look-ma…

Our latest white-hat hack involves reverse-engineering a vulnerable arb bot, and destroying it before its owner's funds could be stolen. Please circulate. medium.com/dedaub/killing…

Postmortem on the recent whitehack has been published 👇primitivefinance.medium.com/postmortem-on-…

Last week we disclosed a critical vulnerability in PrimitiveFi (via Immunefi) and thus helped save over $1m in users funds via a cool whitehat hack. Kudos to PrimitiveFi for their prompt action in helping save their user's funds 💸💸

Today at 4:47 PM UTC the Furucombo proxy was compromised by an attacker. We have deauthorized the relevant components and believe the vulnerability to be patched but we recommend users remove approvals out of an abundance of caution.

Will definitely be responsible on this, please don't worry about any of your loss, we are calculating how much is the lost and planning what is the mitigation plan. Will keep everyone posted. Together we are stronger.

1/ Dedaub has completed a study for vitalik.eth Verkle tree integration proposal. This was commissioned by the Ethereum Foundation. You can read the full report below: docs.google.com/document/d/1s3…

Posted "Symbolic Value-Flow Static Analysis: Deep, Precise, Complete Modeling of Ethereum Smart Contracts", to appear at OOPSLA'21 SPLASH Conference . yanniss.github.io/symvalic-oopsl… It's the analysis technology behind six major security vulnerabilities found and disclosed by Dedaub in 2021.

A few days ago we disclosed one of the largest vulnerabilities. Ever. The disclosure helped protect Multichain (Previously Anyswap) and Fantom Opera Learn all about it in our article. media.dedaub.com/phantom-functi…

1/ On the EU Giving Up I watched a panel on AI (machine learning) at a conference hosted by the European Commission. 9 people on the panel Everyone agreed that the USA was 100 miles ahead of EU in machine learning and China was 99 miles ahead except for those who believed...

Recently security researchers including samczsun Hubert Ritzdorf, and Yannis Smaragdakis identified a vulnerability in the Fuse codebase. Immediate action was taken and no funds were lost. This article summarizes the incident and how Rari Capital is moving forward. medium.com/@JackLongarzo/…

Eelco was an awesome scientist and a great friend. I'll miss him tremendously. He also took most photos of me that can be found by a web search. So, as far as many people are concerned, I exist only because I was once seen through Eelco's eyes, and lens. flickr.com/photos/eelcovi…

Since a few people followed me recently: all my crypto/vulnerability/Ethereum activity is on Dedaub, not on this account.

Thrilled to be speaking at #SmartCon 2022 by #Chainlink in #NYC! SmartCon attendees will get an exclusive look into the emerging research, trends, and projects set to kickstart a new wave of adoption. More info: smartcon.chain.link

Dedaub's transation debugger 🐛 on Contract Library is one of the most advanced debuggers for EVM chains. Originally developed to reverse-engineer complex hacks after none of the debuggers we tried worked. It still feels much faster than other mainstream debuggers on large txs

Tomorrow, at the Science of Blockchain Conference (SBC'23), 4:30pm PDT, I'll present the main program analysis techniques that we've been using at Dedaub to discover high-value vulnerabilities. Paper here: yanniss.github.io/sbc2023.pdf Conference livestream: livestream.com/accounts/19731…