Security Researcher
blockchain security engineer / auditor @ sigmaprime
High
Total
Medium
Total Earnings
#615 All Time
Payouts
3rd Places
Top 10
Top 25
All
Code4rena
Oct '23
150.79 USDC • 2 total findings • Code4rena • elprofesor
#41
high
Lenders can escape the blacklisting of their accounts because they can move their MarketTokens to different accounts and gain the WithdrawOnly Role on any account they want
medium
`setAnnualInterestBips()` can be abused to keep a market's reserve ratio at 90%
Oct '22
0.38 USDC • 1 total finding • Code4rena • elprofesor
#50
Chainlink oracle data feed is not sufficiently validated and can return stale `price`
Sep '22
235.61 USDC • 1 total finding • Code4rena • elprofesor
#53
Multiple vote checkpoints per block will lead to incorrect vote accounting
Jun '22
599.88 USDC • 1 total finding • Code4rena • elprofesor
#19
Rebases can be frontrun with very little token downtime even when warmUpPeriod > 0
Nov '21
5,371.72 USDC • 2 total findings • Code4rena • elprofesor
MEV miner can mint larger than expected UDT total supply
Frontrunning `PublicLock.initialize()` can prevent upgrades due to insufficient access control
104.12 USDC • Code4rena • elprofesor
#24
716.28 USDC • 1 total finding • Code4rena • elprofesor
#16
TWAP Oracle inflexible `_updatePeriod`
13.41 ETH • Code4rena • elprofesor
615.76 USDC • 2 total findings • Code4rena • elprofesor
#17
Claim airdrop repeatedly
No Transfer Ownership Pattern
Oct '21
461.32 ETH • 1 total finding • Code4rena • elprofesor
#7
Swap.sol implements potentially dangerous transfer