Awesome Web3 Contracts
Holds the contracts that web3 developers use on a daily basis, including ethernaut, etc.
Install Dependency
yarn
Common install It might take a while.
forge installInstall spec lib version
git submodule add https://github.com/OpenZeppelin/openzeppelin-contracts foundry/lib/@openzeppelin/contracts-v4.7.3
cd foundry/lib/@openzeppelin/contracts-v4.7.3 && git checkout tags/v4.7.3 && cd ../../../../# run test case
forge test
# run local node
anvil -f sepolia
# run script
forge script foundry/script/Deploy.s.sol --fork-url http://localhost:8545 --broadcastDamn Vulnerable DeFi
Damn Vulnerable DeFi is the wargame to learn offensive security of DeFi smart contracts in Ethereum. Featuring flash loans, price oracles, governance, NFTs, DEXs, lending pools, smart contract wallets, timelocks, and more. I also do videos on CTF on BILIBILI and YouTube, so feel free to SUBSCRIBE OR 一键三连.
| Level | Docs | Video | Note |
|---|---|---|---|
| ✅ 1.Unstoppable | ... | BILIBILI、YouTube | ... |
| ✅ 2.Naive receiver | ... | BILIBILI | ... |
| ✅ 3.Truster | ... | BILIBILI | ... |
| ✅ 4.Side Entrance | ... | BILIBILI | ... |
| ✅ 5.The Rewarder | ... | BILIBILI | ... |
| ✅ 6.Selfie | ... | BILIBILI | ... |
| ✅ 7.Compromised | ... | BILIBILI | ... |
| ✅ 8.Puppet | ... | BILIBILI | ... |
| ✅ 9.Puppet V2 | ... | BILIBILI | ... |
| ✅ 10.Free Rider | ... | BILIBILI | ... |
| 11.Backdoor | ... | ... | ... |
| 12.Climber | ... | ... | ... |
| 13.Wallet Mining | ... | ... | ... |
| 14.Puppet V3 | ... | ... | ... |
| 15.ABI Smuggling | ... | ... | ... |
Ethernaut
Ethernaut is a Web3 / Solidity based adversarial game inspired by overthewire.org, running on the Ethernaut virtual machine. Each level is a smart contract that needs to be hacked.
| Level | Docs | Video | Note |
|---|---|---|---|
| ✅ 0.XXXX | Mirror | YouTube、 BILIBILI | ... |
| ✅ 0.Hello Ethernaut | Mirror | YouTube 、BILIBILI | ... |
| 1.Fallback | Mirror | YouTube、 BILIBILI | ... |
| 2.Fallout | Mirror | YouTube、 BILIBILI | ... |
| 3.CoinFlip | Mirror | YouTube、 BILIBILI | ... |
| 4.Telephone | Mirror | YouTube、 BILIBILI | ... |
| 5.Token | Mirror | YouTube、 BILIBILI | ... |
| 6.Delegate | Mirror | YouTube、 BILIBILI | ... |
| 7.Force | Mirror | YouTube、 BILIBILI | ... |
| 8.Vault | Mirror | YouTube、 BILIBILI | ... |
| 9.King | Mirror | YouTube、 BILIBILI | ... |
| 10.Reentrance | Mirror | YouTube、 BILIBILI | ... |
ONLYPWNER CTF
ELEVATE YOUR EVM EXPERTISE WITH HANDS-ON CHALLENGES, COMPETE ON THE LEADERBOARD, AND JOIN A COMMUNITY OF SECURITY RESEARCHERS AND ENTHUSIASTS.
| Status | Level | Docs | Video | Note |
|---|---|---|---|---|
| ✅ | 1.FREEBIE | ... | ... | ... |
| 2.TUTORIAL | ... | ... | ... | |
| 3.REVERSE RUGPULL | ... | ... | ... | |
| 4.UNDER THE FLOW | ... | ... | ... | |
| 5.WRAPPED ETHER | ... | ... | ... | |
| 6.ALL OR NOTHING | ... | ... | ... | |
| 7.PLEASE SIGN HERE | ... | ... | ... | |
| 8.BRIDGE TAKEOVER | ... | ... | ... | |
| 9.SHAPESHIFTER | ... | ... | ... | |
| 10.13TH AIRDROP | ... | ... | ... | |
| 11.DIVERSION | ... | ... | ... | |
| 12.PAYDAY | ... | ... | ... |
Hacking Analysis
Provide some Web3 Hack event analysis backtracking.
| Hack | Victim | Video | Note |
|---|---|---|---|
| 20231012 - Platypus | Victim contract,Exploit transaction,Exploit Code | BILIBILI,YouTube | 2.2 Million USD Stolen. |