ChainSentry

Just finished a contest & I'm jumping straight into the next one. I think I'm getting quite good at understanding protocols at a deeper level ! 💣It's the second time in a row that I experience the following: At 70% of contest duration I stop looking for bugs, because I don't have enough time to submit the ones I've already found ( explanations, POC, recommendations etc.) And I'm not talking about fee-on-transfer, no-slippage and all the other superficial vulnerabilities we all know. I'm talking about bugs that are tightly related to the logic flow of the particular protocol(the real bugs). I feel that once you start getting deep enough, bugs start popping up like popcorn🍿. Finding one deeper nested bug unlocks something like a ⛓️chain reaction that leads to new ones. And just when I think that I'm done and start validating and preparing my submissions, a plethora of really good questions come up that lead to new exploits. Problem is that once I'm at the stage of submitting my findings, there is no time left to tackle these new opportunities. P.S Since it's a recent experience that I'm having, contest results are not out yet to prove that I'm actually making quite the progress. 🎯But as far as my intuition goes, things feel VERY right

In 2024, we are going to witness TONS of projects built with Rust, and specifically Cosmwasm and Solana. My favorites are those built on Injective and Kujira ecosystems. These two will be the DeFi hubs on Cosmos blockchains. If you are security researcher, then you MUST start getting your hands dirty with Rust. By just learning the fundamentals, you can then start diving into frameworks such as cosmwasm and anchor! Till now, I have published two articles explaining in GREAT detail cosmwasm, while solving CTFs that address real-world scenarios. I even encountered a similar issue, that I first found in the CTFs, in one of my recent Cosmwasm audits! Grind away 👇👇