Antonio Viggiano @agfviggiano
I help protocols improve their invariant tests @getreconxyz getrecon.xyz Joined June 2017-
Tweets3K
-
Followers2K
-
Following1K
-
Likes9K
Creating content for the sake of the public good is not a very reliable source of income. You should view it as part of a marketing budget: your time versus the potential profit it could generate. This changes everything.
It's a bittersweet feeling that invariant testing doesn't find bugs unless you specify the invariant that must hold (obviously). This means that poorly specified properties might miss important bugs. We need better ways to scale property derivation than brainstorming.
I am releasing into the open my Immunefi-terminal. SQL-first UI for all of the Immunefi bug bounties with a built-in source code downloader. See README for the full description. github.com/shortdoom/immu… CC: @joranhonig @nicht_tintin @agfviggiano @immunefi
I did a deep dive on Recon (@getreconxyz) today. It's a great tool, and I will be using it for my next fuzzing engagement. Any protocols dreading to set up fuzzing infrastructure should check it out. Links below 👇
Some protocols: refuse to extend the audit contest duration Other protocols: announce it months in advance and release the code earlier Pretty obvious what's better for security
Does anyone know any Rust opportunities for non web3 native developers in crypto? Asking for a friend (seriously)
How to spend as much money on security services as possible, while ensuring you are still vulnerable to Critical exploits. 🧵
Here's the script I've been using to make both Echidna & Medusa work with external libraries. gist.github.com/aviggiano/d0c3… This is useful so that you don't need to manually edit your `cryticArgs` or `deployContracts` config parameters. Also, it converts all external libs to…
Today I talk about onchain fuzzing with Echidna allthingsfuzzy.substack.com/p/onchain-fuzz…
How are you implementing DOS checks on your invariant tests? Any ideas on how to make this less verbose?
Data = Beautiful I've been diving in and doing data analytics on audit contest data, finding all sorts of interesting things. Continue reading for a tl;dr on my research up to now: 👇 🧵
echidna on-chain fuzzing public ankr node vs local reth node
Yesterday I demo'd a new feature we're testing at Recon For projects that use the Recon Boilerplate, we can automatically create code that will check global properties against the deployed code on each block Video soon!
I diverted yet another call preaching the virtues of VIM. vim-adventures.com
To facilitate contribution, I migrated this list to github.com/aviggiano/secu…
To facilitate contribution, I migrated this list to github.com/aviggiano/secu…
Andy Li @andyfeili
7K Followers 273 Following Finding bugs in Smart Contracts 🔎 | Podcast Host 🎙️ | Security Engineer @sigp_io σ'Immunefi @immunefi
44K Followers 638 Following The leading bug bounty platform for blockchain with the world's largest bug bounties. More than $95m paid out to whitehats and $156m in rewards available.Patrick Collins @PatrickAlphaC
84K Followers 4K Following Co-founder of 🛡️@cyfrinaudits | 🟪 @soloditofficial | 🦅 @codehawks | 🎓 @cyfrinupdraft Building the Web3 we promised.Code4rena @code4rena
30K Followers 394 Following Web3 security, on demand. ‣ $20M+ in rewards paid ‣ 950+ High Severity vulns found ‣ Start your audit in 48 hrs: https://t.co/tD4F3jaqFm@bytes032.xyz @bytes032
16K Followers 860 Following IYKYK @code4rena, 1/4 of @RenascenceLabs | Connecting you with 100's security providers for free @FindAuditDeGatchi @DeGatchi
7K Followers 1K Following host @scrapingbits technical podcast - DM to come on! / ex-exploit synthesis @nibbleonbytes / follow my math + ai journey @ https://t.co/vYbN2jfiUuSunSec @1nf0s3cpt
11K Followers 794 Following CISO @xrexinc | Co-Founder @UnitasProtocol | Founder of DeFiHackLabs Web3 Security Community.Roman @romanboehr
2K Followers 3K Following Building & breaking stuff on the blockchain. Prev. data engineering / backend dev, data science MSc @ETH. Trail running in the alps when not staring at a screenchrisdior.eth @chrisdior777
5K Followers 526 Following Co-Founder @CDSecurity_ Over 35 audits done Smart Contract SecurityAdrian ⛩️ Hetman .. @adrianhetman
6K Followers 2K Following Lead of Triage @immunefi 🛡️⚔️ Crypto bug swatter 🐛🔨 Web3 enthusiast 💻 Hobbies: spreading security awareness & brewing coffee ☕️ F1🏎️ | Lunarpunk 🌒 | 📸George Hunter @GeorgeHNTR
7K Followers 209 Following Founder @HunterBlockSec | Reach out for smart contract security audit inquiries at https://t.co/Mu3ZxENgT1devtooligan @devtooligan
8K Followers 419 Following GROWTH GRINDSET blocksec🧐 buidlr💻 makr🤖 ascii artiste🎨 chief pharmacist @huff_language💊monsoon @0xmonsoon
2K Followers 729 Following keeping defi secure @openzeppelin • prev @yieldscan @yield_baypatrickd @patrickd_de
4K Followers 679 Following Information Security, Privacy, and Freedom under God. Security Researcher @SpearbitDAO, @VentralDigital. Mentor @TheSecureum.🐸Smart🐸Contract.. @ProgrammerSmart
24K Followers 221 Following https://t.co/1QN0tguH9c https://t.co/9Is13KVO2c https://t.co/k6t3JMxZen https://t.co/LLkIeiANtkStErMi @StErMi
4K Followers 2K Following #web3 dev + auditor | @SpearbitDAO LSR, @immunefi bug hunter, sage of AAVE codebase :DDitto @dittoproj
217 Followers 97 Following anon, bringing sstore everywhere ☀️ making https://t.co/pGM2jvVdkm, a stablecoin protocolEz D @EasyD_
490 Followers 1K Following 🐶🦴@doginaldogs🦴🐶 💸DVDATheCult💸 🐧 WASSIE 🐧 💊🐇THNFTS🐇💊📈$CFA 📈🟣$DUKO 🟣🐈$LUIS👅Teach @AbishekBa28756
0 Followers 601 FollowingOgheneovie Iyaga @therealjohnjil
61 Followers 116 Following The real John Jil → web development in Africa is easier than you think → Tweets on → ▪️Programming▪️Tech▪️Lifestyle Your Friendly Neighborhood Developerkaracurt @karacurt_eth
5 Followers 54 FollowingSashuski @Sashuski253714
165 Followers 5K FollowingHudaibia @Hudaibia99
170 Followers 954 Following "Web3 security enthusiast. Passionate about building secure and user-friendly experiences . Let's talk tech #web3security #SwiftLang #SketchFerran @_fr0zn
2K Followers 726 Following Security Researcher and Open Source lover. Principal Security Engineer and Principal Security Architect at @HalbornSecurityJason Gao @ancap_gao
237 Followers 194 Following Sharing thoughts about defi @tinkeringsoc, @zkrollupsXYZ, and Macro for Crypto newsletter.girei🐨 @Jaarabytes
891 Followers 634 Following Add .eth to your username //web3 security (formerly web2)0xMax1mus @prasad00019
37 Followers 179 Following Blockchain developer by day | security researcher by night.Clément Moller | Swe.. @clement_moller
263 Followers 188 Following 🇫🇷🇬🇧🇩🇪 Lead Smart Contract & Solidity Developer @swellnetworkio. Prev @StakeDAOHQ Views are my own.Nick @2187Nick
621 Followers 1K Following Builder, Trader, Always Learning, Mystic Live GEX: https://t.co/zbw0eBVzC6 https://t.co/EcOgCjEjQ1 Goal: Build and Ship a project every week.jovial @grepNstep
19 Followers 2K Following Retweet != endorsement. Trust those who seek the truth, doubt those who find itOddly Specivik @OddlySpecivik
515 Followers 413 Following Hi! :) I'm Specivik, the new canine hacker success specialist at @immunefi. Send a DM my way and I'll come barking! 🦴🐾combab0 @combab0
534 Followers 3K FollowingMojowlekaz @mojowlekaz
8K Followers 4K Following Financial Analyst||Cryptocurrency Analyst ||Project Manager ||Fullstack Blockchain Developer||Crypto Advisor|| Crypto YouTuberhash @10xhash
591 Followers 37 Following #1 @CodeHawks 2023 | Prev #1 90 Day @code4rena | Lead Senior Watson @sherlockdefi Portfolio: https://t.co/KrV2QMAwS3MightyHotdog @mighty_hotdog
123 Followers 368 FollowingGastón, PhD @gzanitti
222 Followers 803 Following Language design & VMs @ethereum protocol fellow | Dr. en Cs. de la Computación | Un tipo que hace números y les saca verdades | No sé retirarme a tiempo.Sanic 🦔🪼 @SanicDaHedgegob
1K Followers 2K Following 3 iq Superchain is the real eth 2.0 Optimism is key to happi lyfeAifos Si Prahs @AifosSi
54 Followers 622 FollowingCharlie Bilello @charliebilell77
113 Followers 3K Following Chief Market Strategist @ Creative Planning. Investor | Writer | Reader | Thinker Trying to become a little wiser every day.quirksha @quirksham
7 Followers 55 Following0xVolodya @Volodya_eth
2K Followers 2K Following Solidity Dev, DeFi enjoyer, Macro researcher, Powell's father, CTO & Co-Founder @BlasterSwapEternity @nicejie1
116 Followers 4K FollowingAtlas Sighed @MGOmnissiah
49 Followers 161 Following Data-free extrapolater, Analyst of Albanese secrets, Uwubuntu user, Duke of botsMr_Crypto_Hack @mr_cryptohack
22 Followers 51 Following My journey to WebSec 3.0 . Smart Contract Security Researcheralbertlin.eth @ksin751119
419 Followers 466 Following Solidity Engineer | Work-to-Earn Web3 Deployment Tool: https://t.co/IHB1MGgHri…Katie @iamkatiejohnson
412 Followers 848 Following Passionate about Workforce management | Healthcare Innovation catalyst #NHSCEP | Other interests: Philanthropy & EquitiesEV_om @0xEV_om
792 Followers 305 Following Securing the industry one bug at a time ⚡️ Warden & Lookout @code4rena: https://t.co/dk4brhs5lC刘富龙 @xliufulong
6 Followers 56 FollowingBridget Payne @bridpayne
2 Followers 86 Following 2x founder (fintech, web3) enjoying sabbatical clean slate-ing my twitter presence & migrating over from founder account for prev company3DOↃ Security @3DOCsec
263 Followers 162 Following Independent security researcher in the web3 domain. Member of the Sapphire Dynasty @code4rena blue team.Antonio Scognamillo @AntonioScogna_
173 Followers 554 Following Web 3 Content Creator, member of @WolvesDAORomain Ruetschi @_romac
960 Followers 1K Following @informalinc // Rust • Scala • Haskell • Formal Methods • Distributed Systems • FP • Type Theory • InfoSec // he/him // https://t.co/6otWWpVCTbzakk.eth @0xZakk
6K Followers 3K Following Enthusiast. Digital homebody. BizOps Lead @informalinc, co-founder @solidityguild, contributor @elcapxyz, formerly @gitcoin @creatorcabins @GA @ncludAndy Li @andyfeili
7K Followers 273 Following Finding bugs in Smart Contracts 🔎 | Podcast Host 🎙️ | Security Engineer @sigp_io σ'samczsun @samczsun
143K Followers 203 Following hunter @paradigm, powered by @openai. art by @Keiseeaaa,@vincywp. reach out via telegram https://t.co/1IDOUbRX6vImmunefi @immunefi
44K Followers 638 Following The leading bug bounty platform for blockchain with the world's largest bug bounties. More than $95m paid out to whitehats and $156m in rewards available.Patrick Collins @PatrickAlphaC
84K Followers 4K Following Co-founder of 🛡️@cyfrinaudits | 🟪 @soloditofficial | 🦅 @codehawks | 🎓 @cyfrinupdraft Building the Web3 we promised.Code4rena @code4rena
30K Followers 394 Following Web3 security, on demand. ‣ $20M+ in rewards paid ‣ 950+ High Severity vulns found ‣ Start your audit in 48 hrs: https://t.co/tD4F3jaqFm@bytes032.xyz @bytes032
16K Followers 860 Following IYKYK @code4rena, 1/4 of @RenascenceLabs | Connecting you with 100's security providers for free @FindAuditsudo rm -rf --no-pres.. @pcaversaccio
16K Followers 374 Following 𝐖𝐨𝐫𝐤𝐢𝐧𝐠 𝐨𝐧 𝐰𝐡𝐚𝐭'𝐬 𝐧𝐞𝐱𝐭. ꟼGꟼ: 063E 966C 93AB 4356 492F E032 7C3B 4B4B 7725 111FTrust @trust__90
14K Followers 454 Following Head of Trust Security, DM for booking | Master of hand-to-hand audit combat | C4/Immunefi/Sherlock VIP | Hacked Embedded, IoT, iOS in past lifecygaar @0xCygaar
86K Followers 437 Following I explain crypto topics in simple terms. contributing to @frame_xyz. advisor @MocaverseNFT.Jackson @sjkelleyjr
7K Followers 65 Following 175k+ LoC #robinhoodwallet | 300k+ LoC @alexa99 | 30+ smart contract security reviews @securityoak & @yAuditDAO | The patron saint of junior auditorsDeGatchi @DeGatchi
7K Followers 1K Following host @scrapingbits technical podcast - DM to come on! / ex-exploit synthesis @nibbleonbytes / follow my math + ai journey @ https://t.co/vYbN2jfiUuSunSec @1nf0s3cpt
11K Followers 794 Following CISO @xrexinc | Co-Founder @UnitasProtocol | Founder of DeFiHackLabs Web3 Security Community.Joran Honig @joranhonig
6K Followers 1K Following Security Researcher 👨💻 | Professional Bug Bounty Hunter | Resider on the @immunefi leaderboard | Building things @ConsensysAuditsgmhacker.eth @realgmhacker
4K Followers 460 Following aerospace engineer 🚀 Head of Security @immunefi 🪲 Teaching Advanced Solidity at @RareSkills_io 😎 views are my ownJason Gao @ancap_gao
237 Followers 194 Following Sharing thoughts about defi @tinkeringsoc, @zkrollupsXYZ, and Macro for Crypto newsletter.Zigtur @zigtur
615 Followers 441 Following I break Solidity and Rust code | Web3 Security Researcher | RareSkills studentaori ⑁ @aori_io
16K Followers 1 Following The Orderbook Protocol | Join our Discord https://t.co/IeZ3yHzxeYConsensys @Consensys
316K Followers 2K Following A complete suite of trusted products to build anything in web3.tamaratran.eth @tamarajtran
1K Followers 344 Following I built an app that got 7M downloads in 2 days. Prev @apple @dukeURJ 🟩 @thisisrj
834 Followers 79 Following Founder @yetanotherco. Building applications and infrastructure to help @ethereum be the internet value layer with @yanotherbridge and @alignedlayer.Aligned Layer @alignedlayer
8K Followers 32 Following Universal Verification Layer for @ethereum using @eigenlayer. A product by @yetanotherco and @class_lambda. Align with us ➡️ https://t.co/HpluRJKcEKkirk @OneTrueKirk
4K Followers 2K Following father, garden appreciator, building @creditguild. occasional curmudgeon. Writing at https://t.co/deW8VVdiQhInstitut Louis Bachel.. @LouisBachelier
2K Followers 982 Following The Louis Bachelier Group promotes sustainable development in Economics and Finance. Together, we seek answers for a world in transition!Zhuo Zhang | Purdue C.. @i2huer
2K Followers 321 Following PostDoc, Ph.D. in Computer Science @PurdueCS | Chief Research Scientist of @Offside_Labs 👉 Binary Analysis 🐱💻 ➕ Web3 🦇🔊 👉 Opinions are my own. ❄️❄️❄️Mamori @mamori_xyz
169 Followers 1 Following An Automated Smart Contract Auditing System focusing on Zero-Day Economic Exploits.Andy M. Lee @andymooselee
45 Followers 495 Following Building https://t.co/8nVA9LHxGo - an Automated Smart Contract Auditing System for ZERO-DAY Economic Exploit.Enigma Dark @EnigmadarkLabs
63 Followers 5 Following Leveraging white-hat expertise to protect a wide range of blockchain applications & enhance their security.Guillaume Verdon @GillVerd
52K Followers 3K Following Founder & CEO @Extropic_AI • prev: Physics & AI R&D @ (Alphabet X / Google) • Founder @ TensorFlow Quantum • (PhD(ABD) + MMath) @ (IQC / UWaterloo / PI) • e/acccarrotsmuggler @CarrotSmuggler
409 Followers 368 Following poking holes in smart contracts. Auditor profile at https://t.co/rva1Q0aWFPRotkiapp - protects y.. @rotkiapp
11K Followers 21 Following Opensource portfolio management app that protects your privacy. Code: https://t.co/oFmj9cTLMw Get premium: https://t.co/cdTINrUMi1hash @10xhash
591 Followers 37 Following #1 @CodeHawks 2023 | Prev #1 90 Day @code4rena | Lead Senior Watson @sherlockdefi Portfolio: https://t.co/KrV2QMAwS3gasbot.xyz @gasbot_xyz
994 Followers 19 Following The easiest way to get gas on any chain. Crypto's first "gas service" ⚡ Chat with us here 👉 https://t.co/OKbwRrM2PgSuccinct @SuccinctLabs
24K Followers 10 Following Making zero-knowledge proofs accessible to any developer. Hiring: https://t.co/1o2QBjOqPXElhaj 🇵🇸 @el_hajin
452 Followers 754 Following 💎 love to play with smart contracts logic 🕵️|💎 Embracing the future of Web 3.0 with zk|Andre Cronje @AndreCronjeTech
403K Followers 1K Following Co-Founder & Architect @fantomfdn. Previously; Founder @yearnfi. Founder @thekeep3r.mikedemarais.eth (on .. @mikedemarais
53K Followers 16K Following 🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈🌈 cofounder of @rainbowdotme follow me on fartcaster https://t.co/zWTvLoSAyZPendle @pendle_fi
119K Followers 326 Following Liberating Yield | Discord: https://t.co/5H8gUMvtPs | Telegram: https://t.co/c77ig0GeQCNiels Hoven @NielsHoven
20K Followers 2K Following Founded @MentavaInc to support high achieving kids. Seeker of truth, critic of tribalism, lover of ice cream. Tweets about startups, education, and my four kidsShadow @shadowxyz
5K Followers 66 Following Get gas-free event logs on any smart contract with just a few lines of code.0xSha @0xsha
11K Followers 466 Following 10+ years journey in security research. Blockchain engineer, occasional startups CTO. CS PhD candidate. I build and break stuff, sometimes in public.Hudson Jameson @hudsonjameson
53K Followers 3K Following I enjoy my cats, privacy tech, & ice cream. Now: VP @ Polygon Labs Previous: USAA, Ethereum Foundation, Flashbots, Zcash Grants Poly/Bi 🏳️🌈Wintermute @wintermute_t
53K Followers 366 Following Powering liquidity to crypto markets | One-stop shop OTC | Builders of decentralized future | CEO @evgenygaevoy | COO @emgurevich Not directed towards UK usersGianfranco 💙 OpenZ.. @BazziBazzani
210 Followers 600 Following Web3 native | Space Cadet at @OpenZeppelinWeek in Ethereum News @WeekInEthNews
23K Followers 3 Following The Official Weekly Newsletter™️ Editor (and job listings inquiries): @abcoathuptwMatt.eth ⚪ @twMattt
3K Followers 147 Following making defi not suck anymore @tapioca_dao | shitposts are my ownNascent Security @NascentSecurity
546 Followers 4 Following Building for a more secure crypto ecosystem @nascentxyzAmar Fares @amarfares_
377 Followers 146 Following @HunterBlockSec Mentorship Cohort #1 🕵️♂️ | 1/2 @9liveslabs | ex cats0xcacti @0xcacti
3K Followers 714 Following I read Godel, Escher, Bach and now, I think, I am interesting.Chaos Labs @chaos_labs
9K Followers 1 Following Economic Security, Mechanism Design, and Risk Management Platform for DeFi protocols. (We're hiring!)Hexagate @hexagate_
2K Followers 56 Following Hexagate prevents cyber exploits, hacks, governance and financial risks for protocols, Web3 apps and asset managers. Get access today - https://t.co/n9UkoC25wHVERA @verifalliance
598 Followers 11 Following The Verifier Alliance is an ecosystem collective aiming for easy, unified, and open access to the source-code of EVM smart contracts.“Making Ethereum safer” You mean rushing to find a bug in pre audit code that was subsequently found by 6+ researchers in the first of multiple audits? Then organizing a marketing stunt to misrepresent the context and pretend it was a big deal?
Today, we disclosed two serious vulnerabilities in OP stack fraud proofs. Ethereum is better when we work together 🤝 Our team has a ton of expertise in building fraud proof systems, and I’m proud of our team for helping make Ethereum safer for everyone 💙🧡❤️
Looking forward to running down the aisle in traffic making a siren noise and blinking my flashlight to open up a lane for the ride.
> first they take your privacy > then they take your lightning channels > then they take your self-custody > then a vc writes a thread about how america is still the land of the free and a country of opportunity
On May 3rd, 2024, @PhoenixWallet will be removed from US app stores. Users from the US should empty their wallet: - Settings > Close channels (Android) - Settings > Drain wallet (iOS) We highly recommend *not force-closing* channels, as on-chain fees could be significant.
@nisedo_ wait til you read the findings from my Spearbit audits 👀
Latest Week in Ethereum News weekinethereumnews.com/week-in-ethere…
@agfviggiano That said, the other massive benefit of talking about about things you find fascinating is meeting the other people who are interested in the same things.
@agfviggiano For me it's just because when I learn something, and I then write about it, I learn more. That does mean that I don't end up writing comprehensively on any given topic, just a some deep dives on things that five people care about. Still would be worth it even with zero readers.
@danrobinson Fixed rate lending/credit market with continuous liquidity across maturities docs.size.cash
Bunzz is not an AI auditor any more guys, done and dusted 😎 They also forgot that the competition was about highs and mediums, and they missed all them. Get an organic, pure human-based smart contract audit that catches actual bugs from me. DM for audit.
As we officially stated on our landing page (bunzz.dev/audit), AI Tech-Stack is not yet perfect in detecting vulnerabilities derived from project-specific logic. Consequently, we offer Human Audits as an option for those seeking comprehensive scrutiny. As we’ve…
Gentle reminder as we approach the end of the first week, we are waaaay behind in the popularity contest! 😭 👋 donate.otterscan.io
.@gitcoin #GG20 has begun and we are participating in the Developer Tooling round! 🛠️ 🙏 If you like Otterscan, please consider contributing to our grant as every $1 counts towards getting a bigger slice of the matching funds. 🔗 donate.otterscan.io
only in crypto will a founder raise 200M, throw lavish parties, & become an angel investor of competitors before ever releasing a product
🦘 See you all in @ETHGlobal Sydney!
Hello World @GnosisDAO! This is a huge endorsement for years of hard work dedicated to building privacy infrastructure 🙏 It's also a huge task to now actually deliver privacy to the Gnosis ecosystem. Myself & the entire @hoprnet team couldn't be more excited to start, LFG 🚀
GnosisDAO has decided on a combined investment of US$1.5M and 500 GNO tokens in @hoprnet, a pioneer in providing fully private, uncensorable data exchange between peers, to undertake the development of the fully decentralised GnosisVPN. Let's have a look details and more↓
Congratulations to all those that placed in our private @3dns_inc competition! The top 3 placements were: 🥇@zigtur - $10,847.5 🥈@m4rio_eth - $9,350.3 🥉@gpersoon - $6,542.42 Excellent work all! 🪐
i'm open for contracting; i can develop and/or optimize any evm contract in any language. terms are as follows: - 20 hr/week max - remote only - no shitcoin factories - i'm not joining an incubator pm for quote
If you are looking for post quantum cryptography expertise, you should reach out to our crypto team
\We’ve open-sourced our pure Rust and Go implementations of the post-quantum Leighton-Micali Hash-Based Signatures (LMS)! Explore secure digital signatures designed to withstand quantum attacks. blog.trailofbits.com/2024/04/26/ann…