https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_4.png

MaratCerby

Security Researcher

Contact Me

High

1

Total

Medium

15

Total

$9.69K

Total Earnings

#594 All Time

19x

Payouts

regular

2x

Top 10

regular

10x

Top 25

regular

19x

Top 50

All

Code4rena

May '22

Velodrome Finance contest

Velodrome Finance contest

308.11 USDC • 1 total finding • Code4rena • MaratCerby

#23

medium

Bribe.sol is not meant to handle fee-on-transfer tokens

Rubicon contest

Rubicon contest

224.38 USDC • 4 total findings • Code4rena • MaratCerby

#36

medium

USDT is not supported because of approval mechanism

medium

Inconsistent Order Book Accounting When Working With Transfer-On-Fee or Deflationary Tokens

medium

Use `safeTransfer()`/`safeTransferFrom()` instead of `transfer()`/`transferFrom()`

medium

`RubiconMarket.sol#isClosed()` always returns false, making the market can not be stopped as designed

OpenSea Seaport contest

OpenSea Seaport contest

450.19 USDC • Code4rena • MaratCerby

#41

Sturdy contest

Sturdy contest

500.81 USDC • 2 total findings • Code4rena • MaratCerby

#11

high

The check for value transfer success is made after the return statement in _withdrawFromYieldPool of LidoVault

medium

Possible lost msg.value

Aura Finance contest

Aura Finance contest

1,920.92 USDC • 1 total finding • Code4rena • MaratCerby

#13

medium

Users may lose rewards to other users if rewards are given as fee-on-transfer tokens

Cally contest

Cally contest

164.56 USDC • 1 total finding • Code4rena • MaratCerby

#22

medium

Vault is Not Compatible with Fee Tokens and Vaults with Such Tokens Could Be Exploited

Enso Finance contest

Enso Finance contest

1,654.46 USDT • Code4rena • MaratCerby

#16

Alchemix contest

Alchemix contest

278.33 DAI • Code4rena • MaratCerby

#23

FactoryDAO contest

FactoryDAO contest

127.28 DAI • 2 total findings • Code4rena • MaratCerby

#34

medium

safeTransferFrom is recommended instead of transfer (1)

medium

amount requires to be updated to contract balance increase (1)

Cudos contest

Cudos contest

205.08 USDC • Code4rena • MaratCerby

#26

Forgotten Runes Warrior Guild contest

Forgotten Runes Warrior Guild contest

1,162.64 USDC • 1 total finding • Code4rena • MaratCerby

#10

medium

IERC20.transfer does not support all ERC20 token

bunker.finance contest

bunker.finance contest

52.48 USDC • Code4rena • MaratCerby

#26

Apr '22

PoolTogether Aave v3 contest

PoolTogether Aave v3 contest

893.04 USDC • 1 total finding • Code4rena • MaratCerby

#6

medium

_depositAmount requires to be updated to contract balance increase

Mimo DeFi contest

Mimo DeFi contest

903.72 USDC • 1 total finding • Code4rena • MaratCerby

#12

medium

Non-standard ERC20 Tokens are Not Supported

AbraNFT contest

AbraNFT contest

111.21 MIM • Code4rena • MaratCerby

#35

Backd contest

Backd contest

155.04 USDC • 1 total finding • Code4rena • MaratCerby

#36

medium

`call()` should be used instead of `transfer()` on an `address payable`

xTRIBE contest

xTRIBE contest

225.7 USDC • Code4rena • MaratCerby

#19

Phuture Finance contest

Phuture Finance contest

28.99 USDC • Code4rena • MaratCerby

#34

Badger Citadel contest

Badger Citadel contest

327.66 USDC • 1 total finding • Code4rena • MaratCerby

#28

medium

Funding.deposit() doesn't work if there is no discount set