Critical

Security Researcher

Contact Me

High

Total

Medium

Total

$9.21K

Total Earnings

#605 All Time

8x

Payouts

1x

1st Places

3x

Top 10

4x

Top 25

All

Code4rena

Dec '22

Tigris Trade contest

271.34 USDC • 3 total findings • Code4rena • Critical

#36

high

Incorrect Assumption of Stablecoin Market Stability

medium

Bypass the delay security check to win risk free funds

medium

`_handleDeposit` and `_handleWithdraw` do not account for tokens with decimals higher than 18

Sep '22

Frax Ether Liquid Staking contest

1,941.03 USDC • 1 total finding • Code4rena • Critical

high

Wrong accounting logic when syncRewards() is called within beforeWithdraw makes withdrawals impossible

Canto Dex Oracle contest

3,984.61 CANTO • 2 total findings • Code4rena • Critical

high

Hardcoded USD pegs can be broken

medium

`getUnderlyingPrice()` should return `0` when errored

Jul '22

ENS contest

78.88 USDC • Code4rena • Critical

#64

Fractional v2 contest

535.42 USDC • 2 total findings • Code4rena • Critical

#30

high

Vault implementation can be destroyed leading to loss of all assets

high

Malicious Users Can Exploit Residual Allowance To Steal Assets

Jun '22

Putty contest

110.36 USDC • 1 total finding • Code4rena • Critical

#44

medium

Order duration can be set to 0 by Malicious maker

Canto v2 contest

2,148.1 USDC • 2 total findings • Code4rena • Critical

high

AccountantDelegate: The sweepInterest function sweeps an incorrect number of cnote.

high

Deny of service in `AccountantDelegate.sweepInterest`

Dec '21

Vader Protocol contest

141.51 USDC • 1 total finding • Code4rena • Critical

#13

high

`VaderPoolV2` minting synths & fungibles can be frontrun