Banner
https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/5f4bb3a3-6eec-4625-a079-710b33f4b2dd.jpg

Tomo

Security Researcher

👨ME ▶️ https://t.co/GIOl8SNkQ6 💼 @jpy_coin @ango_ya @ninjaudit 🗺️ Web3 Sec Journey ▶️ https://t.co/9iYc2AEVnW

Contact Me

Medium

1

Solo

18

Total

$7.34K

Total Earnings

#714 All Time

17x

Payouts

regular

6x

Top 10

regular

10x

Top 25

regular

15x

Top 50

All

Sherlock

Code4rena

Feb '23

Surge

Surge

6.94 USDC • 1 total finding • Sherlock • Tomo

#21

medium

【Tomo-M#2】create safe version ERC20-approve function

Nov '22

Bull v Bear

Bull v Bear

32.53 USDC • 1 total finding • Sherlock • Tomo

#16

medium

[Tomo-M2] Unsupported for transfer-with-fee token

DODO

DODO

508.92 USDC • 2 total findings • Sherlock • Tomo

#5

medium

[Tomo-M1] Use call instead of transfer when sending ETH

medium

[Tomo-M2] Use safe version ERC20 transfer

FrankenDAO

FrankenDAO

747.53 USDC • 2 total findings • Sherlock • Tomo

#7

medium

[Tomo-M3] Use safeMint instead of mint for ERC721

medium

[Tomo-M4] Use safeTransferFrom instead of transferFrom for ERC721

Debt DAO contest

Debt DAO contest

84.39 USDC • 3 total findings • Code4rena • Tomo

#45

medium

Mistakenly sent eth could be locked

medium

address.call{value:x}() should be used instead of payable.transfer()

medium

Borrower/Lender excessive ETH not refunded and permanently locked in protocol

Oct '22

zkSync v2 contest

zkSync v2 contest

2,102.32 USDC • Code4rena • Tomo

#5

Illuminate

Illuminate

174.94 USDC • 1 total finding • Sherlock • Tomo

#21

medium

Unsupported transfer-with-fee tokens

Sep '22

QuickSwap and StellaSwap contest

QuickSwap and StellaSwap contest

78.45 USDC • Code4rena • Tomo

#38

VTVL contest

VTVL contest

28.92 USDC • 1 total finding • Code4rena • Tomo

#61

medium

Supply cap of VariableSupplyERC20Token is not properly enforced

Harpie

Harpie

222.24 USDC • 4 total findings • Sherlock • Tomo

#8

medium

Unsupported fee-on-transfer tokens

medium

Can be silent overflow

medium

Use `safeTransferFrom` for ERC721

medium

Use `call` instead of `transfer` and `send`

Y2k Finance contest

Y2k Finance contest

16.18 USDC • Code4rena • Tomo

#53

PartyDAO contest

PartyDAO contest

117.69 USDC • Code4rena • Tomo

#48

FEI and TRIBE Redemption contest

FEI and TRIBE Redemption contest

33.58 USDC • Code4rena • Tomo

#14

Canto Dex Oracle contest

Canto Dex Oracle contest

146.62 CANTO • 1 total finding • Code4rena • Tomo

#10

medium

unbounded loop length dos

Nouns Builder contest

Nouns Builder contest

2,858.26 USDC • 2 total findings • Code4rena • Tomo

#9

medium

Truncation in casting can lead to a founder receiving all the base tokens

medium

Attackers can increase voting power by incentivizing

Aug '22

Olympus DAO contest

Olympus DAO contest

131.95 USDC • Code4rena • Tomo

#50

Nouns DAO contest

Nouns DAO contest

52.12 USDC • Code4rena • Tomo

#36