https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/a2c01df6-8e5a-40d8-8075-1fb34ab7ec45.jpg

0xRstStn

Security Researcher

Solidity Security Researcher

Contact Me

High

20

Total

Medium

7

Total

$3.19K

Total Earnings

#931 All Time

11x

Payouts

regular

2x

Top 10

regular

5x

Top 25

regular

6x

Top 50

All

Sherlock

Code4rena

Cantina

CodeHawks

Feb '25

Liquidity Management

Liquidity Management

243.29 usdc • 4 total findings • CodeHawks • 0xrststn

#22

high

Wrong refundExecutionFee in _handleReturn

high

Deposits on long one leverage vault don't actually finalize the flow, leading to a Denial of Service (DoS)

high

Loss of fee refund due to premature state deletion in `PerpetualVault::_handleReturn` function

medium

Wrong index causes last depositor to always get execution fee refund if cancelFlow is called by keeper to cancel a withdrawal

Jan '25

silo-contracts-v2

silo-contracts-v2

189.77 USDC • 1 total finding • Cantina • 0xRstStn

#18

high

Finding not yet public.

Oct '24

stakeup-bloomv2

stakeup-bloomv2

235.63 USDC • 4 total findings • Cantina • 0xRstStn

#39

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

Aug '24

Tadle

Tadle

80.08 USDC • 8 total findings • CodeHawks • 0xrststn

#56

high

Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function

high

TokenManager - Unlimited withdraw

high

Taker of bid offer will loss assets without any benefit if he calls the DeliveryPlace::settleAskMaker() for partial settlement.

high

Native token withdrawal fails until manually approved

high

`DeliveryPlace::settleAskTaker` Has Incorrect Access Control

high

Malicious user can drain protocol by bypassing `ASK` offer abortion validation in `Turbo` mode

high

The `DeliveryPlace::settleAskTaker()` function mistakenly uses `makerInfo.tokenAddress` to update the `TokenBalanceType.PointToken` in the `userTokenBalanceMap` mapping, leading to a critical error.

high

[H-4] The function `PreMarkets::listOffer` charges an incorrect collateral amount, allowing users to manipulating collateral rates and drain the protocol's funds

Jul '24

Zaros Part 1

Zaros Part 1

842.47 USDC • 2 total findings • CodeHawks • 0xrststn

#12

high

Wrong parameter passed in `TradingAccount::deductAccountMargin` function that results in excess margin withdrawal

medium

User can withdraw all collateral when a position has enough profit so if liquidated no collateral can be deducted

Jun '24

Size

Size

6.22 USDC • 2 total findings • Code4rena • 0xRstStn

#57

high

Users won't liquidate positions because the logic used to calculate the liquidator's profit is incorrect

medium

Fragmentation fee is not taken if user compensates with newly created position

Feb '24

Jala Swap

Jala Swap

255.08 USDC • 1 total finding • Sherlock • 0xRstStn

#6

medium

```_update``` function in ```JalaPair.sol``` will revert when ```priceCumulativeLast```overflows

Sep '23

Maia DAO - Ulysses

Maia DAO - Ulysses

11.58 USDC • 1 total finding • Code4rena • 0xRstStn

#59

high

All tokens can be stolen from `VirtualAccount` due to missing access modifier

Allo V2

Allo V2

0.26 USDC • 1 total finding • Sherlock • 0xRstStn

#73

medium

QVBaseStrategy.sol

Jul '23

Beedle - Oracle free perpetual lending

Beedle - Oracle free perpetual lending

0.04 USDC • 3 total findings • CodeHawks • 0xrststn

#227

high

Sandwich attack to steal all ERC-20 tokens in the Fees contract

medium

The `borrow` and `refinance` functions can be front-run by the pool lender to set high interest rates

low

Lender fails to giveLoan because of inconsistent length between `loadIds` and `poolIds`

Foundry DeFi Stablecoin CodeHawks Audit Contest

Foundry DeFi Stablecoin CodeHawks Audit Contest

1,327.73 USDC • 1 total finding • CodeHawks • 0xrststn

#5

high

Business Logic: Protocol Liquidation Arithmetic