https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/b45ec316-432e-444f-984b-2a0d24c0bbe9.jpg

Kral01

Security Researcher

Software Engineer| Bug Hunting @immunefi

Contact Me

High

8

Total

Medium

5

Total

$6.27K

Total Earnings

#725 All Time

13x

Payouts

regular

2x

Top 10

regular

5x

Top 25

regular

10x

Top 50

All

Sherlock

Code4rena

Cantina

May '25

mystic-monorepo

mystic-monorepo

64.47 USDC • 1 total finding • Cantina • kral01

#43

high

Finding not yet public.

Jan '25

ton-pool-contracts

ton-pool-contracts

1,157.32 USDC • 1 total finding • Cantina • kral01

#5

medium

Finding not yet public.

farcasterattestation-monorepo

farcasterattestation-monorepo

470.11 OP • 2 total findings • Cantina • kral01

#25

high

Finding not yet public.

high

Finding not yet public.

Dec '24

Autonomint Colored Dollar V1

Autonomint Colored Dollar V1

6.74 OP • 1 total finding • Sherlock • Kral01

#60

high

Admin signature for CDS#withdraw() can be reused.

Nov '24

TermMax

TermMax

3,975.28 USDC • 1 total finding • Cantina • kral01

#4

high

Finding not yet public.

Oct '24

mev-commit

mev-commit

13.67 USDC • 1 total finding • Cantina • kral01

#39

high

Finding not yet public.

Aug '24

zetachain-protocol

zetachain-protocol

59.87 USDC • 1 total finding • Cantina • kral01

#71

medium

Finding not yet public.

Jul '24

MakerDAO Endgame

MakerDAO Endgame

145.36 USDC • Sherlock • Kral01

#96

Oct '23

Ethena Labs

Ethena Labs

93.25 USDC • Code4rena • Kral01

#31

Real Wagmi #2

Real Wagmi #2

88.51 USDC • 1 total finding • Sherlock • Kral01

#17

high

[H-03] Use of `slot0` to get `sqrtPriceLimitX96` can lead to price manipulation.

Sep '23

Allo V2

Allo V2

108.18 USDC • 2 total findings • Sherlock • Kral01

#44

high

[H-02] Tracking of `voiceCredits` in `QVSimpleStrategy` is not done which can be used to allocate votes indefinitely.

medium

[M-01] Allocation can start before registration ends. Which can break things in strategies.

Centrifuge

Centrifuge

85.12 USDC • 1 total finding • Code4rena • Kral01

#29

medium

```trancheTokenAmount``` should be rounded UP when proceeding to a withdrawal or previewing a withdrawal.

Aug '23

Cooler Update

Cooler Update

0.70 USDC • 1 total finding • Sherlock • Kral01

#20

medium

[H-01] Malicious lender can set very large interest rates and make the loan unpayable.