https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/2804183e-c788-498e-a676-245d5847721d.jpg

typicalHuman

Security Researcher

Fullstack Web3 Developer/Security Researcher

Contact Me

High

18

Total

Medium

17

Total

$22.88K

Total Earnings

#367 All Time

19x

Payouts

bronze

2x

3rd Places

regular

5x

Top 10

regular

8x

Top 25

All

Sherlock

Code4rena

Cantina

CodeHawks

Oct '25

Index Fun Order Book

Index Fun Order Book

1,609.55 USDC • 4 total findings • Sherlock • typicalHuman

bronze

high

Sellers can lose significantly more money in fees than expected because there are no safeguards preventing matches with buyers that have high fees.

medium

PositionTokens violates one of the MUST rules defined in EIP-1155.

medium

Users can obtain PositionTokens for free, harming both the protocol and sellers.

medium

Prediction market funds become inaccessible when event is cancelled

Sep '25

Super DCA Liquidity Network

Super DCA Liquidity Network

0.00 OP • 1 total finding • Sherlock • typicalHuman

#52

high

Any SuperDCA token holder can completely block the accrual of rewards.

Apr '25

Kinetiq

Kinetiq

4.38 USDC • 1 total finding • Code4rena • typicalHuman

#34

high

Users Who Queue Withdrawal Before A Slashing Event Disadvantage Users Who Queue After And Eventually Leads To Loss Of Funds For Them

Mar '25

eigenlayer-contracts

eigenlayer-contracts

16,507.81 USDC • 1 total finding • Cantina • typicalHuman

#7

high

Finding not yet public.

badger-ebtc-bsm

badger-ebtc-bsm

740.19 USDC • 1 total finding • Cantina • typicalHuman

#10

medium

Finding not yet public.

Feb '25

Liquidity Management

Liquidity Management

74.97 usdc • 2 total findings • CodeHawks • typical_human

#37

high

Wrong refundExecutionFee in _handleReturn

low

Cancelling a Flow after a Position Is Created Might Result in Inflation/Deflation of Shares

Jan '25

Liquid Ron

Liquid Ron

0 USDC • 1 total finding • Code4rena • typicalHuman

#12

medium

Incorrect Logic in onlyOperator Modifier Leading to Denial-of-Service for Authorized Operators Across Critical Functions

napier-v2

napier-v2

2,592.28 USDC • 1 total finding • Cantina • typicalHuman

bronze

medium

Finding not yet public.

farcasterattestation-monorepo

farcasterattestation-monorepo

572.39 OP • 3 total findings • Cantina • typicalHuman

#23

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

Dec '24

Tally ARB Staker

Tally ARB Staker

0.01 USDC • Sherlock • typicalHuman

#48

SecondSwap

SecondSwap

103.86 USDC • 2 total findings • Code4rena • typicalHuman

#26

medium

`buyFee` And `sellFee` Should Be Known Before Purchase

medium

maxSellPercent can be buypassed by selling previously bought vestings at a later time

Lambo.win

Lambo.win

0.3 USDC • 2 total findings • Code4rena • typicalHuman

#35

high

Minting zero tokens when underlyingToken is not Ether in cashIn()

medium

Since the cost of launching a new pool is minimal, an attacker can maliciously consume VirtualTokens.

Nov '24

Nouns DAO - Auction Streams

Nouns DAO - Auction Streams

0.01 USDC • Sherlock • typicalHuman

#71

Oct '24

stakeup-bloomv2

stakeup-bloomv2

200.22 USDC • 5 total findings • Cantina • typicalHuman

#41

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Aug '24

Phi

Phi

30.12 USDC • 3 total findings • Code4rena • typicalHuman

#33

high

`shareBalance` bloating eventually blocks curator rewards distribution

medium

Refunds sent to incorrect addresses in certain cases

medium

Attacker can DOS user from selling shares of a credId

Tadle

Tadle

0.00 USDC • 2 total findings • CodeHawks • typical_human

#173

high

Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function

high

TokenManager - Unlimited withdraw

Jul '24

Munchables

Munchables

447.06 USDC • 3 total findings • Code4rena • typicalHuman

#8

high

Failure to Update Dirty Flag in transferToUnoccupiedPlot Prevents Reward Accumulation On Valid Plot

high

in `farmPlots()` an underflow in edge case leading to freeze of funds (NFT)

medium

Missing disapproval check in `LockManager.sol::approveUSDPrice` allows simultaneous approval and disapproval of a price proposal

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

0.08 USDC • 1 total finding • Sherlock • typicalHuman

#64

medium

Fee on transfer tokens are not supported

May '24

Munchables

Munchables

0.01 USDC • 3 total findings • Code4rena • typicalHuman

#16

high

Failure to Update Dirty Flag in transferToUnoccupiedPlot Prevents Reward Accumulation On Valid Plot

high

in `farmPlots()` an underflow in edge case leading to freeze of funds (NFT)

medium

Missing disapproval check in `LockManager.sol::approveUSDPrice` allows simultaneous approval and disapproval of a price proposal