Security Researcher
High
Total
Medium
Total Earnings
#986 All Time
Payouts
Top 25
Top 50
All
Sherlock
Code4rena
Cantina
Jul '25
0.04 USDC • 1 total finding • Sherlock • holtzzx
#43
medium
In case of a transfer of TokenizedShareManager, the `updateChecks` function is inverted logic in the branch, will incorrectly DOS.
21.07 USDC • 2 total findings • Sherlock • holtzzx
#46
Zero-Duration Cooldown in EthenaCooldownHolder Swallows Redeemed USDe
StakingStrategy and CurveConvex2Token require that chainid is Mainet, but protocol says possible deployments on Arbitrum and Base
Jun '25
0.26 USDC • 1 total finding • Sherlock • holtzzx
#72
`GatewaySend::depositAndCall` functions will not work with USDT
May '25
33.83 USDC • 1 total finding • Sherlock • holtzzx
#57
high
Wrong LToken address is being carried across chains causes unexpected reverts on Liquidations
115.05 USDC • Code4rena • holtzzx
#19
58.96 USDC • 1 total finding • Cantina • holtzzx
#47
1,336.08 USDC • 1 total finding • Cantina • holtzzx
#16
Apr '25
25.39 USDC • 1 total finding • Cantina • holtzzx
#55
641.63 USDC • 2 total findings • Cantina • holtzzx
349.77 USDC • 1 total finding • Code4rena • holtzzx
#18
Attacker can partially DoS L1 operations in StakingManager by making huge number of deposits
Feb '25
182.96 USDC • 3 total findings • Code4rena • holtzzx
#39
Lack of Access Control in `AgentNftV2::addValidator()` Enables Unauthorized Validator Injection and Causes Reward Accounting Inconsistencies
Public `ServiceNft::updateImpact` call leads to cascading issue
Precision loss in priceALast, priceBLass