This repository contains security audit writeups, vulnerability research and protocol reviews for Web3 smart contracts.
The goal of this repository is to document real security issues, explain their root causes, demonstrate exploitation paths, and propose mitigations following industry best practices.
We are independent Web3 security researchers focused on smart contract auditing.
We review Solidity-based protocols with an attacker mindset, aiming to identify:
- critical vulnerabilities
- subtle edge cases
- broken assumptions
- unsafe protocol design decisions