https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/7f6174ae-1aa8-4012-ad2e-cb84cffaec2c.jpg

AresAudits

Security Researcher

Smart Contract Security Researcher | DM For Private Audit

Contact Me

High

4

Solo

8

Total

Medium

5

Solo

13

Total

$8.89K

Total Earnings

#581 All Time

12x

Payouts

gold

1x

1st Places

bronze

1x

3rd Places

regular

7x

Top 10

All

Sherlock

Cantina

CodeHawks

Hats Finance

Jan '25

DAOsis

DAOsis

738.5 wROSE • 6 total findings • Hats • AresAudits

bronze

high

`invest()` function does not check for Maximum Tokens Available for Sale

high

`invest()` Function Allows Investments Even After Sale Has Ended

medium

Lack of Validation for endTime in startSale Function Allows Setting Past Timestamps

medium

updateEndTime Function Allows Setting Invalid Timestamps and sale can be extend indefinitely

low

`updateDssToken` Function Allows Mid-Sale Token Address Changes

low

Constructor does not Validate Creator's Initial Contribution Against `minBuyCreator` , `maxBuyCreator`,maxCap Limits

daao-contracts

daao-contracts

0.23 USDC • 1 total finding • Cantina • AresAudits

#122

medium

Finding not yet public.

Dec '24

aligned-layer

aligned-layer

3,083.32 USDC • 2 total findings • Cantina • AresAudits

#7

medium

Finding not yet public.

medium

Finding not yet public.

InterPol

InterPol

254.71 USDC • 2 total findings • Cantina • AresAudits

#9

high

Finding not yet public.

medium

Finding not yet public.

Nov '24

Project

Project

109.11 USDC • 2 total findings • CodeHawks • aresaudits

#11

medium

NativeMetaTransaction.sol :: executeMetaTransaction() failed txs are open to replay attacks.

low

Users Can Join DAOs Using Removed Currencies Due To Missing Validation

Sep '24

Boost Core Incentive Protocol

Boost Core Incentive Protocol

9.11 USDC • 1 total finding • Sherlock • AresAudits

#23

medium

Incorrect Handling of Fee-on-Transfer Tokens in ManagedBudget

Aug '24

Sentiment V2

Sentiment V2

5.68 USDC • 1 total finding • Sherlock • AresAudits

#45

medium

Approval Race Condition for USDT Token

Tadle

Tadle

190.45 USDC • 5 total findings • CodeHawks • aresaudits

#30

high

Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function

high

TokenManager - Unlimited withdraw

high

Token withdrawal fails until someone manually approves spending

medium

`mulDiv()` can round down to 0 in realistic cases, allowing for tax avoidance

low

[Low-01] Missing Access Control in `CapitalPool::approve()` Function Allows any User to call it to set Allowance Amount `TokenContract` to `type(uint256).max`.

Jul '24

Fenix

Fenix

300 USDC • 1 total finding • Hats • AresAudits

#8

medium

Upgrade-Safe Usage of SafeERC20 in CompoundVeFNXManagedNFTStrategyUpgradeable.sol

illuminex

illuminex

281.9 wROSE • 1 total finding • Hats • AresAudits

#5

medium

Incorrect Data Type Handling in `writeVarInt` Function

Jun '24

Palmera

Palmera

921.1 USDC • 2 total findings • Hats • AresAudits

#4

high

Potential Vulnerability in `execTransactionOnBehalf` Function Allowing Destruction of `targetSafe` contract

medium

getPreviewModule() Returns Incorrect Data

May '24

Tapioca

Tapioca

3,000 USDC • 1 total finding • Hats • AresAudits

gold

high

User Can Claim More Than totalAmount Due to Lack of Max Return Amount Check in _vested Function