evilcos/darkhandbook evilcos/darkhandbook

  • Stars
    star
    420
  • Rank 103,194 (Top 3 %)
  • Language
  • Created almost 2 years ago
  • Updated 3 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
evilcos/darkhandbook
github

evilcos

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Update by evilcos, for DarkHandBook.io

黑手册(DarkHandBook)

Update by evilcos, for DarkHandBook.io

Blockchain dark forest selfguard handbook
Master these, master the security of your cryptocurrency.

🔥Website: https://darkhandbook.io/
🇨🇳中文版:《区块链黑暗森林自救手册》

扩展阅读,持续更新...

这里会列一些我个人总结的、围绕黑手册的扩展阅读,基本都会是 Twitter Thread 形式。

案例分享:经典授权钓鱼如何分析定位
https://x.com/evilcos/status/1732627608440115665?s=20

细节是魔鬼👹,钱包 UI 对抗首尾号钓鱼技巧的建议
https://x.com/evilcos/status/1727940167649124627?s=20

案例分享:钓鱼合约 create2 + permit 将离线授权签名在链上授权后转走 $ARB
https://x.com/evilcos/status/1730517667810083189?s=20

比特币被盗的几种方式(注意下签名)
https://x.com/evilcos/status/1727940167649124627?s=20

比特币生态 Atomicals 由于签名类型支持 SIGHASH_NONE,导致用户资产被盗
https://x.com/evilcos/status/1726992159436644708?s=20

friend.tech 用户被盗的一次成功追回
https://x.com/evilcos/status/1725148293502767404?s=20

钓鱼用 Create2 来预创建资金接收地址,绕过钱包的安全检测机制
https://x.com/evilcos/status/1723642251853922595?s=20

又一个设计感很好的链游木马
https://x.com/evilcos/status/1721847917152198914?s=20

记住 approve 与 permit/permit2 授权的区别
https://x.com/evilcos/status/1721753572436738218?s=20

硬件安全密钥(Security Key)是安全认证的标配之一了,在 2FA 场景下可以很好对抗钓鱼网站
https://x.com/evilcos/status/1721705293250461842?s=20

貔貅盘一直很泛滥,谨慎对待“机扫安全数据”...
https://x.com/evilcos/status/1720311395512906196?s=20

慢雾发布《智能合约安全审计技能树》
https://x.com/evilcos/status/1714893390800945587?s=20

慎用围绕 friend.tech 做的各类工具
https://x.com/evilcos/status/1714178009291456602?s=20

恶意书签盗取用户 friend.tech 资金
https://x.com/evilcos/status/1713164067358294293?s=20

Crypto 钓鱼目前流行的手法大概分类(技术线)
https://x.com/evilcos/status/1709135646294671595?s=20

friend.tech 用户账号被黑资产被盗案例
https://x.com/evilcos/status/1709030582150381713?s=20

钓鱼网站诱骗用户添加一个“新网络”,但 Chain ID 不变
https://x.com/evilcos/status/1707723997780344904?s=20

陷阱合约:目标地址通过较隐蔽方式计算得出…
https://x.com/evilcos/status/1705156497481904519?s=20

Coinbase Wallet 上的 Web3 消息网络协议钓鱼风险
https://x.com/evilcos/status/1704389310089453666?s=20

friend.tech code 遍历风险
https://x.com/evilcos/status/1702649514283381218?s=20

Vitalik 推特号被 SIM Swap 攻击
https://x.com/evilcos/status/1701413519798026676?s=20

Lido 的 LDO Token 假充值风险
https://x.com/evilcos/status/1700796470163841125?s=20
注:假充值风险是我们 2018 年首提且一直在沉淀研究的细分安全方向,这种风险主要影响的是中心化平台,如果没正确对接相关公链或 Token,就可能导致被假充值。这种风险广泛存在。

一个安全考点:有朋友私信问我:不小心点了这种签名,是否有被盗币风险
https://x.com/evilcos/status/1699691438802620781?s=20

Discord 自定义靓号链接过期时被钓鱼团伙抢注风险
https://x.com/evilcos/status/1698259690000679049?s=20

黑手册灵魂的安全建议就这两条:

  • 始终保持怀疑
  • 持续验证

能真 get 这两点的,在 Crypto 行业也挺难踩大坑的…
https://twitter.com/evilcos/status/1694536755066875914?s=20

警惕恶意合约放长线钓大鱼
https://twitter.com/evilcos/status/1693083229191114875?s=20

friend.tech 的一些安全风险
https://twitter.com/evilcos/status/1692780573507596585?s=20
https://twitter.com/evilcos/status/1693581053972402453?s=20

在时间紧迫的场景下,当发现电脑疑似有“木马”,应当如何及时止损
https://twitter.com/evilcos/status/1691438131852312576?s=20

一笔交易盗走用户可能所有有价值的 token
https://twitter.com/evilcos/status/1690202721260081153?s=20

链上喊话指南
https://twitter.com/evilcos/status/1687452679625486337?s=20

陷阱合约:隐蔽的 Rug Pull,合约存储引起的跑路盘
https://twitter.com/evilcos/status/1684126488910761985?s=20

关于 Worldcoin 采集虹膜这件事
https://twitter.com/evilcos/status/1683484789674844167?s=20

关于匿名货币
https://twitter.com/evilcos/status/1682044499143569409?s=20

钱包地址缩写建议:0x0000ac61…eb000000
https://twitter.com/evilcos/status/1679367167215812608?s=20

陷阱合约:以取消授权名义盗走用户过大的 Gas
https://twitter.com/evilcos/status/1677837819350495233?s=20

Blur V2 挂单盲签风险
https://twitter.com/evilcos/status/1676899283914870784?s=20

Emblem Vault 中心化风险
https://twitter.com/evilcos/status/1676385791269011456?s=20

OPENDIME 这个超级大骰子,功能非常单一的类硬件钱包
https://twitter.com/evilcos/status/1674955233364185088?s=20

MetaMask 安全沙盒机制 LavaMoat
https://twitter.com/evilcos/status/1674789379125178370?s=20

MPC 与智能合约钱包的一点看法
https://twitter.com/evilcos/status/1674394959615754241?s=20

HTML 铭文引入的安全风险
https://twitter.com/evilcos/status/1673316843501793282?s=20

Web3 安全入门(重点智能合约安全)
https://twitter.com/evilcos/status/1671088109591863296?s=20

比特币铭文一键批量钓鱼
https://twitter.com/evilcos/status/1667389165804343297?s=20

把以太坊 NFT 带到比特币的做法是有去无回的(BRC-721E)
https://twitter.com/evilcos/status/1666674623554129921?s=20

别以为开启了 Discord 2FA 就万事大吉了
https://twitter.com/evilcos/status/1665673399731998720?s=20

伪造事件的诈骗合约,再科普
https://twitter.com/evilcos/status/1664226365959446534?s=20

Telegram 骗子伪造安全助手
https://twitter.com/evilcos/status/1663848225554706432?s=20

歌曲:) 随风潜入夜、润物细无声
https://twitter.com/evilcos/status/1662274150319423489?s=20

Ledger Recovery 引起有关硬件钱包的一些安全话题
https://twitter.com/evilcos/status/1659724906609909761?s=20
https://twitter.com/evilcos/status/1659526623962755072?s=20
https://twitter.com/evilcos/status/1658400654195568641?s=20

检查与取消与漏洞合约有关的授权
https://twitter.com/evilcos/status/1659236088979034113?s=20

一个安全冷知识:连接陌生 Wi-Fi 的安全风险已经比数年前小了非常非常多
https://twitter.com/evilcos/status/1658817516599386112?s=20

硬件钱包被高手替换了个有问题的固件
https://twitter.com/evilcos/status/1658341670105288704?s=20

小心小应用拿走你 Twitter 账号的许多关键权限
https://twitter.com/evilcos/status/1657220098174889984?s=20

慢雾:Web3 钱包 eth_sign 支持情况分析
https://twitter.com/evilcos/status/1656576468946915328?s=20

流行的 Permit 签名钓鱼再解析
https://twitter.com/evilcos/status/1656543466707648514?s=20

Scam Sniffer 专门针对 Permit2 签名钓鱼出的安全检查和取消授权解决方案
https://twitter.com/evilcos/status/1655831186743394306?s=20

RevokeCash 出的取消签名功能
https://twitter.com/evilcos/status/1655744296828694528?s=20

比特币铭文(Ordinals)/BRC-20 风险提醒
https://twitter.com/evilcos/status/1654710328960364544?s=20
https://twitter.com/evilcos/status/1654408076605407232?s=20
https://twitter.com/evilcos/status/1653296237662334976?s=20

钓鱼网页禁用开发者工具(DevTools)技巧
https://twitter.com/evilcos/status/1652873300534767616?s=20

进化中的钱包地址首尾号钓鱼技术能力
https://twitter.com/evilcos/status/1652622264028766208?s=20

CryptoPunks 一个漏洞导致的分叉文化
https://twitter.com/evilcos/status/1650014094920151041?s=20

RevokeCash 的这篇关于 Crypto 钓鱼的几种方式的总结很赞
https://twitter.com/evilcos/status/1648697629453488128?s=20

警惕 WalletConnect 使用不当可能存在的钓鱼风险
https://twitter.com/evilcos/status/1648306943583457280?s=20

关于链游木马及浏览器扩展木马的安全提醒
https://twitter.com/evilcos/status/1644551979618955265?s=20

慢雾针对 Web3 项目的安全实践要求
https://twitter.com/evilcos/status/1644237107945414656?s=20 image_01_00

呼吁钱包们禁用 eth_sign 这种盲签机制
https://twitter.com/evilcos/status/1643410971409670145?s=20

Mac 电脑中毒后的危害都有哪些
https://twitter.com/evilcos/status/1640935800195125248?s=20

偷 Gas 的空投代币
https://twitter.com/evilcos/status/1640618513676263424?s=20

小心你的钱包及相关账号被链游木马一窝端
https://twitter.com/evilcos/status/1640366330405883906?s=20

钱包有关的事件伪造+首尾字符欺骗钓鱼
https://twitter.com/evilcos/status/1639125376285945857?s=20

针对 Cloudflare 的静默劫持攻击
https://twitter.com/evilcos/status/1639122575229087744?s=20

可升级智能合约偷梁换柱钓鱼盗币
https://twitter.com/evilcos/status/1639114967680159744?s=20

MetaMask 支持 EIP-4361,钱包同源策略开始来了
https://twitter.com/evilcos/status/1639091781374717953?s=20

针对 Blur 平台的 NFT “盲签”钓鱼
https://twitter.com/evilcos/status/1632712060114194433?s=20

如下四种签名弹框,安全性如何?为什么?
https://twitter.com/evilcos/status/1632663595757760512?s=20

闪电网络通道科普一例
https://twitter.com/evilcos/status/1628945985811660800?s=20

如果你的 Discord token 被钓了,但被你及时发现,以下哪个做法并不能阻止黑客使用你的 Discord token 权限?
https://twitter.com/evilcos/status/1628018317893181440?s=20

被钓鱼网站钓走钱包签名后,相关资产被盗了,这个钱包还安全吗?
https://twitter.com/evilcos/status/1625387330117992449?s=20

Twitter 链接预览 User-Agent 欺骗钓鱼
https://twitter.com/evilcos/status/1624268782993821696?s=20

闪电网络地址等有关科普
https://twitter.com/evilcos/status/1621380824867430400?s=20

NFT 钓鱼 Apetainz 的 UI 伪装欺骗
https://twitter.com/evilcos/status/1619504230586535936?s=20

删除 MetaMask 扩展时,私钥/助记词文件会如何?
https://twitter.com/evilcos/status/1615540204441591814?s=20

当你电脑中相关木马后,木马是如何黑掉你的 MetaMask 的
https://twitter.com/evilcos/status/1615931120457220100?s=20

为什么 WETH 一个签名就被钓走
https://twitter.com/evilcos/status/1615220059299000324?s=20

Web3 Cybersecurity Academy - Enhancing user asset security Lesson 1
https://twitter.com/1nf0s3cpt/status/1614612129671438343?s=20

Telegram 盗号导致盗币
https://twitter.com/evilcos/status/1611541986120732672?s=20

APTOS 钓鱼
https://twitter.com/evilcos/status/1610910301934989313?s=20

讨论钱包的一个关键安全点
https://twitter.com/evilcos/status/1607721007837769728?s=20

Solana 钓鱼
https://twitter.com/evilcos/status/1607558572921217027?s=20

警惕密码管理器永久删除风险
https://twitter.com/evilcos/status/1606889696436813825?s=20

关于 LastPass 被黑
https://twitter.com/evilcos/status/1606615478277132289?s=20

一个有趣的“被盗”案例
https://twitter.com/evilcos/status/1605826949850374144?s=20

NFT 零元购技术解析
https://twitter.com/evilcos/status/1604067276265000960?s=20

Discord token 废弃方式,三选一:

  1. 主动登出账号,不是关闭页面;
  2. 修改密码;
  3. 添加 2FA 或修改 2FA。

MetaMask CLAIM REWARDS 欺骗
https://twitter.com/evilcos/status/1600356939845640193?s=20

看去像乱码的签名是否有风险
https://twitter.com/evilcos/status/1599258003798396929?s=20

零转载骗局
https://twitter.com/evilcos/status/1598245354951974913?s=20

钓鱼网页模仿 MetaMask 弹框
https://twitter.com/evilcos/status/1597813536323170304?s=20

波场(Tron)多重签名骗局
https://twitter.com/evilcos/status/1596374505751924736?s=20

突破钓鱼网页反调试
https://twitter.com/evilcos/status/1594514681401835520?s=20

MetaMask Security Update 欺骗
https://twitter.com/evilcos/status/1593588745353060352?s=20

当 Connect 一个钓鱼网站,会有安全风险吗?
https://twitter.com/evilcos/status/1593579289726709760?s=20

钱包「签名」和「授权」的区别
https://twitter.com/evilcos/status/1592888608364511233?s=20

Uniswap swapExactTokensForTokens 钓鱼
https://twitter.com/evilcos/status/1591783549505511426?s=20

假币安 App 钓鱼
https://twitter.com/evilcos/status/1589921365393805312?s=20

OpenSea 签名认证请求
https://twitter.com/evilcos/status/1588722701669404672?s=20

signTypedData 用成“盲签”的感觉
https://twitter.com/evilcos/status/1588522243285716994?s=20

双因素认证(2FA)安全的话题
https://twitter.com/evilcos/status/1587674436710584321?s=20

OpenSea upgradeTo 钓鱼
https://twitter.com/evilcos/status/1585909695990022145?s=20

DAI/USDC 等的 permit 签名钓鱼
https://twitter.com/evilcos/status/1581215108910309377?s=20

eth_sign 盲签钓鱼
https://twitter.com/evilcos/status/1579449487302725647?s=20

几种签名钓鱼区别:eth_sign/personal_sign/signTypedData
https://twitter.com/evilcos/status/1578988023945269248?s=20

OpenSea 空投假 Offer 骗局
https://twitter.com/evilcos/status/1576747276684259328?s=20

Punycode 字符欺骗钓鱼
https://twitter.com/evilcos/status/1563739097893462016?s=20

BGP 劫持案例与科普
https://twitter.com/evilcos/status/1560881728910426113?s=20

DNS Hijacking(劫持)案例与科普
https://twitter.com/evilcos/status/1557222249958350848?s=20

授权钓鱼识别技巧:0xa22cb465 即 setApprovalForAll
https://twitter.com/evilcos/status/1548581215648694273?s=20

被盗了怎么办?
https://twitter.com/evilcos/status/1533288715065634817?s=20

😈与其成为千奇百怪的猎物,不如成为特立独行的猎人。

More Repositories

1

papers

my open papers
2,236
star
2

xssor2

XSS'OR - Hack with JavaScript.
JavaScript
2,111
star
3

xssor

XSSOR:方便XSS与CSRF的工具,http://evilcos.me/lab/xssor/
JavaScript
460
star
4

cookiehacker

Chrome extension, very easy to use. Cookies from: JavaScript document.cookie/Wireshark Cookies etc.
JavaScript
443
star
5

crawlers

Some crawlers u know it:-)
Python
339
star
6

xss.swf

a tiny tool for swf hacking, just browse it:)
238
star
7

xssprobe

xss probe to steal page info: browser, ua, lang, referer, location, toplocation, cookie, domain, title, screen, flash, etc.
JavaScript
226
star
8

python-webshell

webshell writen in python
154
star
9

clonegithubstar

Easy to git clone the stars of somebody to local backup.
Python
14
star