https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/9468ba7c-9070-48ba-a5b9-bee437c361be.png

TECHFUND-inc

Security Researcher

Securiy Audit Service Company in Tokyo

Contact Me

High

7

Total

Medium

12

Total

$1.09K

Total Earnings

#1222 All Time

18x

Payouts

regular

2x

Top 10

regular

6x

Top 25

regular

12x

Top 50

All

Sherlock

Code4rena

Feb '25

Usual Labs

Usual Labs

109.12 USDC • Sherlock • Bugvorus

#29

Aug '24

Cork Protocol

Cork Protocol

3.41 USDC • 1 total finding • Sherlock • ravikiran.web3

#17

medium

VaultCore::depositLv and previewLvDeposit functions will not work as expected due to incorrect implementation of Modifier

Rumpel Point Tokenization Protocol

Rumpel Point Tokenization Protocol

3.15 USDC • Sherlock • ravikiran.web3

#28

Phi

Phi

4.49 USDC • 2 total findings • Code4rena • TECHFUND-inc

#49

medium

`PhiFactory:claim` Potentially Causing Loss of Funds If `mintFee` Changed Beforehand

medium

Refunds sent to incorrect addresses in certain cases

Sentiment V2

Sentiment V2

14.70 USDC • 1 total finding • Sherlock • ravikiran.web3

#41

medium

validation to liquidation should include Liquidation fees as they are liable from customers

Jul '24

TraitForge

TraitForge

0.01 USDC • 2 total findings • Code4rena • TECHFUND-inc

#88

medium

Pause and unpause functions are inaccessible

medium

Discrepancy between nfts minted, price of nft when a generation changes & position of `_incrementGeneration()` inside `_mintInternal()` & `_mintNewEntity()`

Munchables

Munchables

0.39 USDC • 1 total finding • Code4rena • TECHFUND-inc

#48

high

Single plot can be occupied by multiple renters

MakerDAO Endgame

MakerDAO Endgame

0.35 USDC • Sherlock • Gowtham_Ponnana

#119

Union Finance Update #2

Union Finance Update #2

213.68 USDC • 1 total finding • Sherlock • Bugvorus

#8

high

H-2: VouchFacet::claimTokens lacks to update the state after operation causes caller to claim token much more than they should.

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

0.48 USDC • 1 total finding • Sherlock • Gowtham_Ponnana

#63

medium

Non-Admins can able to Add/Modify an existing Staking Position without any owner or allowance rights.

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

0.48 USDC • 1 total finding • Sherlock • dev0cloo

#63

medium

Improper Access Control of addToPosition() allows anyone to increase the position of any existing lsNFT

Velocimeter

Velocimeter

11.00 USDC • 1 total finding • Sherlock • dev0cloo

#52

high

Claimable rewards are permanently locked in Voter.sol when `killGaugeTotally()` is called

Jun '24

Thorchain

Thorchain

18.87 USDC • 1 total finding • Code4rena • TECHFUND-inc

#19

medium

Due to the use of `msg.value` in for loop, anyone can drain all the funds from the `THORChain_Router` contract

May '24

Predy

Predy

323.85 USDC • 1 total finding • Code4rena • TECHFUND-inc

#20

medium

`updateIRMParams` does not call `applyInterestForToken` before updating `irmParams` which leads to incorrect calculation of interest rate for subsequent trades.

Jan '24

Avail

Avail

15.14 USDC • Sherlock • ravikiran.web3

#24

Telcoin Platform Audit

Telcoin Platform Audit

371.15 USDC • 2 total findings • Sherlock • ravikiran.web3

#6

high

StakingRewardManager::topUp() implementation is buggy

high

CouncilMember::burn() function is incorrectly implemented

May '23

USSD - Autonomous Secure Dollar

USSD - Autonomous Secure Dollar

1.32 USDC • 3 total findings • Sherlock • ravikiran.web3

#80

high

Chainlink address for StableOracleWBTC is wrong

high

Minting and Burning are exposed as public function in USSD contract, there is no restriction

medium

removeCollateral function in USSD is risky as it does not check of index to be with in valid range.

Footium

Footium

0.00 USDC • 1 total finding • Sherlock • ravikiran.web3

#35

medium

FootiumEscrow contract's transferERC20 function is not checking the status of the transfer.