📄New Security Report Published For 2 days, we were able to audit 2 staking and vesting contracts, as well as the airdrop contract. We found 2 High and 1 Medium findings, which were resolved by the dev team. ✅ Full report 👇 github.com/gkrastenov/aud…

📄New Security Report Published We conducted a second audit of our client for one day. We were able to find a critical issue in how the already claimed amount is stored and updated in their vesting contract Full report 👇 github.com/gkrastenov/aud…

📄New Security Report Published We conducted a very small audit of a project that was previously audited by us one year ago. No critical, high, or medium issues were found. The new changes are well-written and reviewed ✅ Full report 👇 github.com/gkrastenov/aud…

Mini milestone reached by us! 🚀 Two of the projects we audited 4 months ago were listed on Binance and Coinbase 🛡️. Since then, there have been no incidents, and their utility tokens are highly traded.

Today we finished our 4 audit for HoneyFun AI In the last few months, we were able to audit their Tokenomics contracts twice and their Platform contracts. All 4 reports have been published and can be found here👇 github.com/gkrastenov/aud…

Q1 2025 Stats: > 6 private audits & 2 mitigation reviews > 3 projects launched > 15M TVL protected > 1 large audit scheduled for April Follow KeySecurity, where we will share every High & Medium severity issue we find. Reports👇 github.com/gkrastenov/aud…

13 Chainlink Oracle Security Considerations If your project uses Chainlink Oracle, you must read this medium.com/cyfrin/chainli…

This bug was spotted in one of our recent audits. If you want to read it and see 3 more high vulnerabilities. Here is the report 👇 github.com/gkrastenov/aud…

📄New Security Report Published Our client is building early invoice payments on top of Compound Labs After two days of auditing, 2 Medium findings were found and resolved the next day. Full report 👇 github.com/gkrastenov/aud…

Finding from one of our audits Avoid calculating the slippage amount on-chain. Consider implementing an off-chain price feed for slippage checks to minimize the risk of manipulation during swaps.

🚩Common DAO Vulnerabilities - Flash Loan Manipulation - Transferable Voting Power - Execution and Voting in the Same Transaction - Insufficient Proposal Validation - Spamming or Creating Invalid Proposals - Double Execution of a Proposal in the Same Block

🧵For 2 years (2023-2025), ether.fi conducted 18 audits More than 25+ High vulnerabilities were found. Here is a short, simple explanation of the 16 most important findings. 🔖Bookmark this thread or read it now👇

🚩Replay Attacks/Signature Malleability Every signature should include: - nonce, as a unique identifier to prevent reuse - expiry time, after which the signature is no longer valid - chain. id, to prevent reuse on different blockchains Also, proper check of the signer whether

Sharing our security report for Alaska Gold Rush One year ago, we conducted a small audit of their CARAT ERC-20 multichain token, which uses CCIP The codebase was well-written and no crucial vulnerabilities were found ✅ Report 👇 github.com/gkrastenov/aud…

8 new reports dropping in the coming weeks. 20+ High severity issues already found and fixed ✅

Sharing the report from a 3-week solo audit: • 16 High • 6 Medium • 4 Low • 16 Info Large codebase using the Diamond Proxy pattern and integrating with Uniswap. Report 👇 github.com/gkrastenov/aud…

📄New Security Report Published I conducted a small audit back in October on a project that is a fork of OKX. No critical, high, or medium issues were found. The new changes are well written and have been reviewed✅ Full report 👇 github.com/gkrastenov/aud…