EV_om
@0xEV_om
Followers
2K
Following
2K
Media
66
Statuses
686
#1 @ https://t.co/9638c4D0zh w/ Radiant Labs | Audits @zenith256 @CertoraInc | Judge @code4rena @cantinaxyz | Solidity, Cairo, Rust
calldata
Joined November 2021
A few weeks ago I shared an IDE with integrated LLM prompting. What I haven't shared publicly yet is the biggest use case I have for it: report writing. Contests still suffer from large amounts of low-quality reports, most of which could have been.
cursor.com
Built to make you extraordinarily productive, Cursor is the best way to code with AI.
5
25
157
I'm getting a lot of heat for suggesting the GMX hacker should be prosecuted. I'm surprised some people feel so strongly about protecting a criminal so I'd like to feed the flames a little here. first I have to say though that in this case, the amount the hacker was allowed to.
@0xEV_om Can share atleast 3 perspectives on why you’re completely wrong but I see people have already commented that. Here’s a TL;DR for you:.1. In future hackers won’t return any funds.2. Hacker was offered the 10% of stolen amount as bounty by GMX which is standard. He didn’t.
7
0
22
hot take. now that the funds have been recovered, GMX needs to step up and pursue legal action against the hacker - despite the negotiated bounty. this isn't just about recovering funds, it's about setting a precedent in defi where extortion isn't rewarded. first, consider the.
There was a security vulnerability in the GMX V1 codebase that was disclosed. GMX V1 forks were also safely notified. We would like to recognise the actions of 0xDF3340A436c27655bA62F8281565C9925C3a5221 in this recovery. A potential exploitable amount of $42 million belonging to.
14
0
43
I have not seen such a retarded take in a long time. the “rewards by threat level” categories are standard for every bounty program and contest on Immunefi, in a contest like yours there is no fixed pay per bug as the payout is split based on shares. hence it simply says “portion.
1
2
50
PSA: you can just hand Cursor an RPC, repo and deployment addresses and verify all proxies and implementations have been properly initialised with one prompt. also basically get the live value of any variable and generate a storage layout on the fly. prompt: "get the storage
Excited to announce the Foundry MCP server! 🥳 It's a fast, lightweight MCP server that gives your agents and LLMs on-chain capabilities. It can query contracts, send transactions, deploy contracts, and run Foundry scripts on any EVM chain at any block you specify. It can also.
7
7
97
let’s try this, anyone in taiwan.
its kinda amazing that CT allows you to fly to a random city and tweet “anyone here” and meet up with strangers who have hundreds of mutuals w u. no foreign country feels foreign anymore when this is possible. how many other global internet communities are as special as this?.
4
0
16
we're making Starknet our second home outside of Solidity at Radiant Labs & are now taking private engagements, so: DM for Cairo audits. we'll be louder soon - for now, here's a sneak peek at our reports
github.com
Optimism is Ethereum, scaled. Contribute to ethereum-optimism/optimism development by creating an account on GitHub.
0
0
7
it's easy to look at the language now and go: "oh, it's just another Rust-based DSL". however under the hood are layers and layers of complexity to compile everything to zk. to execute this vision as flawlessly as the Starknet team have is nothing short of brilliant.
1
0
6
I spent days diving into the language after working with Cairo 0, expecting to find complex syntax and hard to find bugs. only to realise it was a waste of time as this is a rock-solid, high level language that looks and feels very much like Rust.
1
0
3
this is so true for auditing. "intro to SC security" type posts are not worth the tokens it took to generate them. dive into complex codebases and work backwards until you get to the basics. you will feel absolutely overwhelmed. that's a good thing - learn to enjoy it.
Do not start with fundamentals. This is an awful approach to learning. Start with so-called "advanced" topics and ask questions until every term/concept is understood. This is the correct, rigorous, scientific way to learn, because the advanced topics are embedded in larger,.
4
5
88
RT @zenith256: Introducing Zenith: an auditing firm that delivers good, affordable audits ASAP. Teams want to ship this week, not next mon….
0
40
0
RT @m2magician: We are stuck with programmable privacy. Private payments have been possible with ZCash or Tornado, but a fully private, pr….
0
7
0
at uni, I was always the kid who crammed everything in the last 2 weeks and still performed above average. time pressure was the only thing that moved the needle to get me off my ass. at first this was something I was proud of, as I just had more time for the finer things in life.
2
2
56
RT @heymarcopolox: Ethereum's upcoming Pectra upgrade is set to bring the biggest short-term functionality upgrade to current Ethereum acco….
0
26
0
RT @xyz_remedy: The BIGGEST event of 2025 is already here. Remedy CTF 2025. Prizes: 🥇 $21,337 🥈 $13,337 🥉 $7,337. 💻 Compete with the best….
0
55
0
resharing this now that everyone and their grandma is already using Cursor. this is still largely my auditing methodology and reporting process. here in thread form:
threadreaderapp.com
@0xEV_om: A few weeks ago I shared cursor.sh, an IDE with integrated LLM prompting. What I haven't shared publicly yet is the biggest use case I have for it: report writing. Contests still suffer...
A few weeks ago I shared an IDE with integrated LLM prompting. What I haven't shared publicly yet is the biggest use case I have for it: report writing. Contests still suffer from large amounts of low-quality reports, most of which could have been.
0
1
37
RT @xb0g0: 💣 The MOTHER of ALL ALPHA is here. I officially present to you: . THE ART OF AUDITING. The first commun….
web3-sec.gitbook.io
0
155
0