Skip to content

StrawHatGG/DeFiHackThinking

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
exploits
exploits
 
 
lib/forge-std
lib/forge-std
 
 
script
script
 
 
src
src
 
 
test
test
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
foundry.toml
foundry.toml
 
 

Repository files navigation

🧪 DeFi Exploit Reproductions

⚠️ Educational Purpose Only — Security research and auditing education.

Reproducible DeFi exploit PoCs with technical reports and attacker journey writeups.

For each incident, this repo aims to provide:

  • PoC (Foundry fork test): a reproducible exploit flow with pinned block height and constants.
  • Execution trace logs: raw trace artifacts captured from the real attack transaction.
  • Exploit Report: a technical writeup focused on root cause, call flow, and verifiable on-chain evidence.
  • Thinking / Attacker Journey: a reconstruction of the attacker’s reasoning while designing the exploit (hypotheses, setup, trigger, harvest).

🧨 Exploits

Name Date Network Damage Type
Makina 2026-01-20 Ethereum ~$4.13M Price Oracle Manipulation / State Distortion
PGNLZ 2026-01-27 BNB Smart Chain (BSC) ~$100,901 Flawed Transfer Logic / Reserve Manipulation / State Distortion
XPL 2026-01-28 BNB Smart Chain (BSC) ~$718,844 Flawed Transfer / Privileged Routing -> Reserve Manipulation / State Distortion
SOF 2026-02-14 BSC ~$225,936 Flawed Transfer Logic / Reserve Manipulation
LAXO 2026-02-22 BNB Chain (BSC) ~$137,320 Flawed Transfer Logic / Burn from Pair
sDOLA 2026-03-02 Ethereum ~$239K ERC-4626 Donation / Oracle-State Distortion / Liquidation Cascade

🗂️ Repository Layout

exploits/<NAME>/
  <NAME>_Exploit.t.sol
  <NAME>_Report.md
  <NAME>_Thinking.md
  bsc_0x..._execution_trace_logs.json

⚡ Quick Start

# Install Foundry
curl -L https://foundry.paradigm.xyz | bash
foundryup

# Clone and setup
git clone https://github.com/StrawHatGG/DeFiHackThinking.git
cd DeFiHackThinking
forge install

# Configure RPC
cp .env.example .env
# Edit .env with your RPC endpoints

# Run a specific exploit reproduction
# Foundry discovers tests under ./test by default.
cp exploits/SOF/SOF_Exploit.t.sol test/
forge test --match-path test/SOF_Exploit.t.sol -vvvvv

# Example: PGNLZ
cp exploits/PGNLZ/PGNLZ_Exploit.t.sol test/
forge test --match-path test/PGNLZ_Exploit.t.sol -vvvvv

⚠️ Disclaimer

This code is for educational and research purposes only. Do not use for malicious purposes.

📄 License

MIT

About

Reproducible DeFi exploit PoCs with technical reports and attacker journey writeups

x.com/StrawHatGG

Topics

exploit poc foundry security-research defi smart-contracts-audit flash-loan defi-exploit smart-contracts-security defi-security defi-audit defi-hack

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages