https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/7f00ea36-344d-47a5-acdb-88755d42b4d0.jpg

0xShitgem

Security Researcher

i'm learning

Contact Me

High

Total

Medium

Total

$1.06K

Total Earnings

#1320 All Time

7x

Payouts

1x

3rd Places

3x

Top 10

3x

Top 25

All

Sherlock

Code4rena

Cantina

May '25

jigsaw-contracts

71.74 USDC • 2 total findings • Cantina • nikos

#53

high

Finding not yet public.

high

Finding not yet public.

Mar '25

Nudge.xyz

610.41 USDC • 1 total finding • Code4rena • 0xShitgem

medium

Anyone can DOS handleReallocation over and over

Feb '25

Virtuals Protocol

27.3 USDC • 1 total finding • Code4rena • 0xShitgem

#62

medium

Attacker can prevent user from executing application registered through `initFromToken()` in `AgentFactoryV4`.

Apr '24

DYAD

4.1 USDC • 2 total findings • Code4rena • 0xShitgem

#106

high

Design flaw and mismanagement in vault licensing leads to double counting in collateral ratios and positions collateralized entirely with kerosine

high

Unable to withdraw Kerosene from `vaultmanagerv2::withdraw` as it expects a `vault.oracle()` method which is missing in Kerosene vaults

Mar '24

RadicalxChange

1.18 USDC • 1 total finding • Sherlock • 0xShitgem

high

Not implemented restriction inside `EnglishPeriodAuctionInternal::_cancelAllBids` leads to possibility of stealing funds by attacker

Amphor

235.05 USDC • 1 total finding • Sherlock • 0xShitgem

medium

Use safeTransfer() instead of transfer()

Feb '24

AI Arena

111.68 USDC • 1 total finding • Code4rena • 0xShitgem

#59

high

FighterFarm:: reroll won't work for nft id greator than 255 due to input limited to uint8