magoo/Blockchain-Graveyard magoo/Blockchain-Graveyard

  • Stars
    star
    201
  • Rank 194,491 (Top 4 %)
  • Language
  • Created over 8 years ago
  • Updated about 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
magoo/Blockchain-Graveyard
github

magoo

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

All publicly known blockchain incidents

Blockchain-Graveyard

Publicly known blockchain incidents that include details of the breach or victim statements.

https://magoo.github.io/Blockchain-Graveyard/

Contributing

This site consists of two main sections: The Graveyard is an enumeration of large incidents that we can see in one place. The advice section is for beginners advice to the enormous security subject matter required to lock down a blockchain company.

Graveyard

All content you'd want to add will live in _posts and should follow similar markup. Only title: and link: are really important.

Additions are preferred in this order of quality:

  1. Announcements or Post-Mortems from the primary victim (Email, blog posts, website announcements, tweets),
  2. Interviews of primary victims with commentary about the breach with journalists
  3. Primary victims discussing breach in public forums or communities
  4. Good journalism

Link bait, opinion pieces, or victimized customer rants not accepted. Please add any raw details about the breach into the body of the post, directly quoted from the underlying link if possible.

Advice

The advice section will be pretty heavily moderated. It's designed to be extremely introductory to avoid overwhelming information, and fairly broad.

More Repositories

1

redteam-plan

Issues to consider when planning a red team exercise.
611
star
2

ato-checklist

A checklist of practices for organizations dealing with account takeover (ATO)
262
star
3

AuthTables

AuthTables is a microservice that helps detect "Account Take Over" caused by simple credential theft. If bad actors are stealing your users passwords, AuthTables may be useful.
Go
224
star
4

Incident-Response-Plan

Boilerplate Incident Response Plan from "Starting Up Security"
161
star
5

minimalist-risk-management

A minimalist risk management program!
119
star
6

Vault-for-Incident-Responders

Things to know when DFIR occurs near a vault deployment.
43
star
7

risk-measurement

read the docs version of risk management
HTML
24
star
8

osquery-hids

Launchd daemon that reports major OSX modifications through growl
XML
16
star
9

forecast-documentation

Notes and reference for ongoing forecasting.
16
star
10

www-forecast

HTML
11
star
11

slack-tlp

Slack emojis for the Traffic Light Protocol (TLP)
8
star
12

simple-risk-analysis

A forecast driven risk assessment derived from other high risk industries.
HTML
7
star
13

acceptable_use_policy

5
star
14

Ethereum-Address-Anatomy

Building an external account from scratch (OpenSSL)
Ruby
5
star
15

Risk-Forecasting

A probabilistic approach to security risk management.
HTML
4
star
16

elicited

Helper functions to make expert elicitation easier
Python
4
star
17

nist-markdown

Markdown versions of NIST 800 Special Publications
4
star
18

batch-dmarc

take domains from STDIN, dump out dmarc policy.
Ruby
3
star
19

making-decisions

Short and drafty writing about decisions
HTML
3
star
20

Simple-Chain

A very simple blockchain.
Ruby
2
star
21

osquery-hids-config

2
star
22

simple-risk

deprecated, moved to https://magoo.github.io/risk-measurement
HTML
1
star
23

key_anatomy

Ruby
1
star
24

legal-risk

A monte carlo simulation for legal risk
Python
1
star
25

learn-netlify

1
star
26

nist-csf-markdown

1
star