https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_3.png

infosec_us_team

Security Researcher

Full-stack whitehats. Reached ~#100 in @intigriti (web2) and #29 in @Immunefi (web3)

Contact Me

High

24

Total

Medium

12

Total

$175.14K

Total Earnings

#56 All Time

5x

Payouts

gold

3x

1st Places

regular

3x

Top 10

regular

4x

Top 25

All

Code4rena

Cantina

Immunefi

Jul '24

Audit Comp | Shardeum: Core

Audit Comp | Shardeum: Core

108,385 USDC • 14 total findings • Immunefi • infosec_us_team

gold

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Apr '24

Audit Comp | Alchemix

Audit Comp | Alchemix

22,436 USDC • 14 total findings • Immunefi • infosec_us_team

gold

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

low

Finding not yet public.

Jan '24

Blast

Blast

36,745.93 USDC • 4 total findings • Cantina • infosec-us-team

#11

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Nov '23

Audit Comp | DeGate

Audit Comp | DeGate

7,000 USDC • 3 total findings • Immunefi • infosec_us_team

gold

low

Finding not yet public.

low

Finding not yet public.

low

Finding not yet public.

Jul '22

Fractional v2 contest

Fractional v2 contest

575.14 USDC • 5 total findings • Code4rena • infosec_us_team

#28

high

Steal NFTs from a Vault, and ETH + Fractional tokens from users.

high

Malicious Users Can Exploit Residual Allowance To Steal Assets

medium

A VAULT OWNER CAN FRONTRUN A PLUGIN CALL AND CHANGE ITS IMPLEMENTATION

medium

`fallback()` function can bypass permission/auth checks imposed in `execute()`

medium

Delegate call in `Vault#_execute` can alter Vault's ownership