https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/31eb1a84-becd-41de-8cc2-d0ca16589a3d.png

befree3x

Security Researcher

Contact Me

High

Total

Medium

Total

$1.40K

Total Earnings

#1201 All Time

11x

Payouts

1x

Top 10

2x

Top 25

3x

Top 50

All

Sherlock

Code4rena

CodeHawks

Jul '25

DeBank

3.42 USDC • Sherlock • befree3x

#97

Jun '25

Symbiotic Relay

17.43 USDC • 1 total finding • Sherlock • befree3x

#11

medium

Unbounded iteration over logically removed elements in `PersistentSet` could lead to gas DOS

DODO Cross-Chain DEX

0.20 USDC • 1 total finding • Sherlock • befree3x

#73

high

Anyone can steal pending refunds due to flawed recipient validation

May '25

LEND

16.97 USDC • 1 total finding • Sherlock • befree3x

#75

high

Stale collateral data risk in cross-chain borrow execution may lead to undercollateralized loans

Jan '25

Aave v3.3

0.57 USDC • Sherlock • befree3x

#118

Dec '24

Oku's New Order Types Contract Contest

0.26 OP • 1 total finding • Sherlock • befree3x

#63

medium

Canceling an `OracleLess` order type is vulnerable to DOS

Autonomint Colored Dollar V1

0.14 OP • 1 total finding • Sherlock • befree3x

#67

high

`updateDownsideProtected` can be called by anyone leading to incorrect downside protection records on CDS module

Nov '24

Nouns DAO - Auction Streams

0.10 USDC • Sherlock • befree3x

#70

Debita Finance V3

0.47 USDC • 1 total finding • Sherlock • befree3x

#56

medium

Anyone can delete all active lending offers without authorization

May '24

Sablier

1,272.86 USDC • 1 total finding • CodeHawks • befree3x

medium

Insufficient input validation on `SablierV2NFTDescriptor::safeAssetSymbol` allows an attacker to obtain stored XSS

Mar '24

Revert Lend

92.11 USDC • 1 total finding • Code4rena • befree3x

#48

medium

Wrong global lending limit check in `_deposit` function