Cryptor
@Cryptor256
Followers
933
Following
1K
Media
28
Statuses
532
Web3 Security Researcher Student at @RareSkills_io
Joined May 2019
Wow! I am speechless. Making the top 10 in the UniswapV4 competition was something that I never expected in my wildest dreams. Thanks @cantinaxyz and thanks to the sponsors at @Uniswap for hosting such a great competition!
6
0
129
Not expecting much from this; I have just been too focused on ZK lately. Still, a bug is a bug. I will try harder on the next competition . @immunefi #immunefitribe
3
2
34
RT @peckshield: .@GMX_IO has been exploited for ~$42M. The exploiter has bridged ~$9.6M worth of cryptos to #Ethereum. .
0
101
0
This isn't true IMO. Contest auditors back then used to get paid for gas optimizations (lol) and even false positives. They didn't know another SC language aside from solidity. They didn't have to do mandatory POCs. They didn't have good static analyzers picking up bugs. They.
Hot take on the audit competition industry. Thoughts?. I don’t think it was always like this. Early on there were genuinely sharp auditors who added real value. But now? Tbh I feel like the comment below has a point - sadly it’s mostly spam and noise today.
1
3
39
So @spectra_finance ran an audit competition on @immunefi and simply decided to not pay up. This is nuts .
25
23
215
A simple ZK problem . Find the elements in a finite field that are congruent to the following values. 1. -69.2. 400.3. -5. Assume the finite field is p = 29 i.e. [0-28].
4
0
7
Thinking about posting some modified homework problems from my ZK class. I think it would provide more value for my profile as well as ZK curious folks. This is better IMO than lazily reposting ZK papers that no one will understand anyway lol.
0
0
3
ZK math isn't too difficult, but it is extremely unintuitive. Definitely requires you to rewire your brain.
0
0
1
This is good info and analysis. Interesting how C4 is slowly falling off. Will they still be around in the next 5 years?.
In 2024, Cantina hosted 17% of all public web3 security contests. In 2025, they're hosting 45% — a ~165% increase 🤯. Here’s a thread on how contest share is shifting across platforms:
0
0
2
A little late but I forgot to mention that I am a @RareSkills_io ZK student. Looking forward to trying new things.
2
1
20
In 2025, putting 100% into small pot contests is not the way to go for newbie SRs. or even experienced SRs. Platform doesn't matter. You are putting yourself in a lose-lose situation. Either the project has little to no bugs (where you have to get lucky to win) or the project.
Cantina: A Shameful Example of Exploiting a Researcher's Labour. Mighty finance is a contest that had TONS of issues that many researchers used it to farm rep points instead of focusing on the $$$ return. But Cantina did not like that. They came up with a new rule, which is.
3
0
14
Hoping to be an Immunefi All-Star before the end of the year. Just need one more big win. .
We’ve only got a few slots left. If you think you have what it takes, put in an application to become an Immunefi All Star. We’ll personally respond to everyone.
1
0
8
I also believe that there is another aspect, which is that 95% of the time, contest findings are public, meaning that a rare finding can quickly become worthless, while a BB hunter can submit the same finding multiple times due to a lack of transparency.
~ Bug bounties are overhyped. Contests and private audits are harder. After 26 web3 bounties in live protocols and 49 findings in contests, this is our take:. - In bug bounties, assuming you can afford a few months of rent, you have plenty of time to discover a critical, and.
0
0
5
Not sure about this change from C4 This is somehow worse than Cantina, because C4 is also mandating to use the provided testing suite. So if the sponsor is using hardhat, so must the auditors 😬.
1
0
3
If funds were drained due to a smart contract bug (like in this case), can we truly say that the funds were stolen? He was playing by the rules.
🚨ANNOUNCEMENT . As of earlier today, we have confirmed that an attacker has stolen approximately $223M from Cetus Protocol. We have took immediate action to lock our contract preventing further theft of funds. $162M of the compromised funds have been successfully paused. We are.
2
0
2
Problem with conditional contests is that Sponsors are incentivized to downgrade findings when possible, creating a hostile environment. Most folks wouldn't mind going to war if there was 5-6 figures at stake. But for a <1k bucks, elite auditors will rather walk away.
0
0
4
Crazy that I have never bothered to look at my auditing profile until a few days ago. I'm currently at 44k in total earnings . Making a personal challenge to crack 50K before the end of the year. I know it's trendy to post daily, but I honesty think it's.
1
0
4
Damn. Some really tough decisions are going to be made next month.
The countdown begins. 🪐. Mark your calendars: @ethereumfndn is launching a new $2,000,000 competition on Cantina. We're looking for researchers to help shape Ethereum's future and secure Pectra - the next major upgrade.
0
0
4