https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/eba03224-528c-4120-ac7e-d7a35f9aefe8.jpeg

Xcrypt

Security Researcher

Contact Me

High

6

Total

Medium

9

Total

$5.42K

Total Earnings

#730 All Time

13x

Payouts

regular

2x

Top 10

regular

6x

Top 25

regular

8x

Top 50

All

Sherlock

Code4rena

Cantina

CodeHawks

Mar '25

PinLink: RWA-Tokenized DePIN Marketplace

PinLink: RWA-Tokenized DePIN Marketplace

0.44 USDC • Sherlock • Xcrypt

#85

Jan '25

Liquid Ron

Liquid Ron

0 USDC • 1 total finding • Code4rena • Xcrypt

#12

medium

Incorrect Logic in onlyOperator Modifier Leading to Denial-of-Service for Authorized Operators Across Critical Functions

IQ AI

IQ AI

243.25 USDC • 1 total finding • Code4rena • Xcrypt

#13

high

Adversary can win proposals with voting power as low as 4%

infrared-contracts

infrared-contracts

3,567.93 USDC • 2 total findings • Cantina • Xcrypt

#17

high

Finding not yet public.

medium

Finding not yet public.

Plaza Finance

Plaza Finance

3.51 USDC • 1 total finding • Sherlock • Xcrypt

#86

medium

Token Loss During `BalancerRouter` Deposit to `PreDeposit` Contract

Aave v3.3

Aave v3.3

13.68 USDC • Sherlock • Xcrypt

#104

Aave v3.3

Aave v3.3

10.69 USDC • Sherlock • 0xBhumii

#107

Ignite

Ignite

458.18 usdc • CodeHawks • xcrypt

#7

Dec '24

Oku's New Order Types Contract Contest

Oku's New Order Types Contract Contest

3.10 OP • 4 total findings • Sherlock • Xcrypt

#41

high

Reentrency Vulnerability in `OracleLess` Contract Enables Complete Pool Drain in a Single Attack

high

Order ID Collision Leading to Overriding of Bracket Orders

high

Missing Validation for Recipient Parameter in `createOrder` Function in `OracleLess` contract

medium

Incorrect Stale Price Check in `PythOracle` Contract Leads to Rejection of Fresh Prices

Nov '24

Telcoin Update #2

Telcoin Update #2

2.94 USDC • Sherlock • 0xBhumii

#49

Oct '24

Ethos Network Social Contracts

Ethos Network Social Contracts

45.37 USDC • 1 total finding • Sherlock • 0xBhumii

#6

medium

Lack of `Compromised Address` Check Allows Unauthorized Replies in `EthosDiscussion` contract

Jul '24

TraitForge

TraitForge

0.04 USDC • 4 total findings • Code4rena • Xcrypt

#86

high

Wrong minting logic based on total token count across generations

medium

Forger Entities can forge more times than intended

medium

Pause and unpause functions are inaccessible

medium

`Golden God` Tokens can be minted twice per generation

Apr '24

Zivoe

Zivoe

1,065.92 USDC • 1 total finding • Sherlock • 0xBhumii

#12

medium

Improper Allowance Management in OCY_`Convex_A.sol` & `OCY_Convex_C.sol'`s `pushToLocker` Function