Oak Security
@SecurityOak
Followers
2,007
Following
178
Media
22
Statuses
412
Securing the decentralized, trustless future.
Joined July 2021
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#Eurovision2024
• 1443921 Tweets
América
• 489127 Tweets
New Jersey
• 221256 Tweets
#धरती_को_स्वर्ग_बनाना_है
• 181169 Tweets
#母の日
• 155711 Tweets
Nemo
• 120414 Tweets
ヴィクトリアマイル
• 62568 Tweets
#MothersDay
• 60490 Tweets
#UFCStLouis
• 47995 Tweets
Barco
• 30835 Tweets
Tatum
• 30010 Tweets
Pachuca
• 29430 Tweets
カーネーション
• 28767 Tweets
ストフェス
• 27108 Tweets
Igor
• 23763 Tweets
Saint MSG Insan
• 20112 Tweets
カグヤ様
• 19463 Tweets
Canes
• 17958 Tweets
Roger Corman
• 16886 Tweets
Garland
• 16316 Tweets
ナミュール
• 14064 Tweets
Buckley
• 11443 Tweets
Derrick Lewis
• 10937 Tweets
We are pleased to release our audit for .
@NolusProtocol
who are part of the
#CosmosEcosystem
You can find the full report here 👇
3
341
353
We are very excited to partner with
@DuskFoundation
to improve the security of its protocol.
As security is of utmost importance to the Dusk team, we will not be limiting ourselves to a pure code review. We are going to perform a security assessment of their economic model and…
🎉Introducing Oak Security, Dusk’s elite audit partner in the security of the decentralized future of
#RWAs
🌐
@SecurityOak
's global team is auditing the very core of $DUSK architecture, with emphasis on the innovative Succinct Attestation (SA) consensus & our groundbreaking…
11
38
192
3
13
77
We have published our audit report of
@DA0_DA0
's smart contracts for
#DAO
tooling on
@JunoNetwork
:
6
20
66
We are happy to announce our partnership with
@Neutron_org
to conduct all the audits under its initial audit sponsorship program!
👇
3
11
67
We have just published our audit report of
@astroport_fi
's Astroport on Osmosis
@CosmWasm
smart contracts. Learn more:
2
10
66
1/ Exciting news for
#blockchain
enthusiasts, developers, and aspiring security auditors! Oak Security is proud to announce the release of our new open-source project, The CosmWasm Security Dojo!
#CosmWasm
#security
#auditing
🧵1/7
3
13
61
We have just published our audit report of
@astroport_fi
's Incentives (previously Generator)
@CosmWasm
contracts. Read all about our findings and recommendations:
3
7
52
We have completed our audit of
@StargazeZone
's Marketplace contracts and are pleased to share the findings and recommendations from our team 🌳
2
10
48
Just published our audit report of
@DA0_DA0
's Vesting and Payroll Factory smart contracts 👇
1
17
46
After months of work with
@mars_protocol
, we have now published our audit reports for several of their
#CosmWasm
smart contracts. Find them here 👇
1
3
43
We have now published our latest audit report on
@astroport_fi
's LP token balance tracking feature 👇
3
8
42
We are proud to announce our official launch. With collaborations in place with
@terra_money
,
@flow_blockchain
,
@pNetworkDeFi
and
@sifchain
we are on a good path to fulfilling our mission of securing the decentralized,
trustless future.
5
14
37
We have now published our audit report of the ICS721 smart contracts by Public Awesome. Read the report below 👇
0
9
37
The report from our audit of the Noble
@cosmos
SDK chain by
@noble_xyz
is now available. Read about our security audit findings and recommendations here 👇
0
5
35
After multiple months of collaboration with
@snowfork_inc
, we have now published our audit report of Snowbridge, a light-client-based bridge between
@Polkadot
and
@Ethereum
. Read more about our findings, recommendations, and a detailed security model listing security assumptions…
5
10
36
🚀 Big announcement!
We are excited to hold the official
@AwesomWasm
Capture The Flag (CTF) side event between July 10 and 17. Find
#security
vulnerabilities in ten
@CosmWasm
contracts to show your skills to the community and climb the leaderboard. Follow us to receive all the…
3
14
35
We have now published our audit report of
@OsmosisLabs
' CosmWasm WBTC smart contracts. Read about our findings, recommendations, and threat model here:
1
5
34
A lot has been said about
#AccountAbstraction
and
#ERC4337
, but do you have a clear idea of each of the standard's components?
Enjoy Part I of
@agfviggiano
's deep dive series on the topic:
#ethereum
#security
2
6
33
After months of collaboration with
@confio_tech
, we have just published our audit reports of the CosmWasm platform and the underlying wasmvm. Learn more about our findings and recommendations 👇
#CosmWasm
#Cosmos
1
4
30
We have just published our audit report of
@noble_xyz
's Tariff
@cosmossdk
Module. Read about our findings and recommendations here 👇
1
4
29
Receiving coins is usually good, right? Let's dive into another critical vulnerability found during our Cosmos Interchain Security
#ICS
audit.
👇
3
7
30
We have just published our audit report of
@astroport_fi
's Transmuter Pool. Read more here:
0
10
29
Just released our audit report of the
@Neutron_org
smart contract platform
#Cosmos
@cosmos
@cosmoshub
👇
0
4
29
We have just published our audit reports of
@astroport_fi
's latest Core and Governance Updates and IBC smart contracts 👇
0
7
24
We have just published our audit report of
@astroport_fi
's
@Injective_
Orderbook integration. Find out more below 👇
0
5
23
Our audit report of
@astroport_fi
's concentrated liquidity pool smart contracts is now available 👇
4
8
21
Our audit report on
@astroport_fi
's updated Maker and Vesting
#CosmWasm
smart contracts is now available. Find the report and all the details here 👇
2
4
21
We have recently finished a multi-stage audit of
@dexter_zone
's
#CosmWasm
smart contracts. Learn more about our findings and recommendations in the audit report 👇
0
5
19
0
3
19
After weeks of intense work with
@FilFoundation
, we're excited to publish our audit report.
We have reviewed several components of
@Filecoin
's EVM (also called FEVM), an Ethereum-compatible runtime on top of the Filecoin Virtual Machine.
Take a look 👇
1
2
17
We have concluded our audit of
@astroport_fi
's builder unlock
#cosmwasm
smart contract. Find the report here 👇
0
4
19
After a long collaboration with
@confio_tech
, we have now published our audit report of the wasmd
@cosmossdk
module. Learn more about our findings, including a critical issue allowing a DoS attack of chains that have CosmWasm enabled:
2
4
17
We have now published our audit report of
@pStakeFinance
's Auto-Compounding and Rebalancing features that were recently added to
@PersistenceOne
's pSTAKE Native
@cosmos
chain. Read more about our findings and recommendations here:
0
2
17
If you see any of these guys around
@AwesomWasm
ask them about
@CosmWasm
#security
!
#audits
#berlin
#blockchain
0
1
18
We have now published our audit reports of
@ComdexOfficial
's
#Cosmos
chain as well as their locking and vesting
#CosmWasm
smart contracts. Find out more 👇
1
5
14
We have now published our audit report of
@EvmosOrg
's EVM Extensions on their
@cosmossdk
chain. Find out more below 👇
0
2
17
We have just published our audit report of
@CALC_Finance
's
@osmosiszone
#CosmWasm
smart contracts. Check out our findings and recommendations 👇
6
1
16
We have just published our audit report of
@Fair_Block
's fairyring
@cosmossdk
chain. Dive into our findings and recommendations here:
0
3
14
We have now published our audit report of the highly anticipated
@Cosmos
Interchain Security (
#ICS
) codebase implemented by
@informalinc
. We thank
@SimplyStaking
for all the coordination work over the last months! Learn about our findings and recommendations 👇…
0
4
16
Ever wondered about the vulnerabilities often encountered in Cosmos SDK chains?
Today, we will explore one intriguing finding from our audit of the
@noble_xyz
Tariff Module. Let’s dive in! 👇
1
7
16
After months of collaboration with
@informalinc
and
@binary_builders
, we are proud to announce the publication of our audit report of Cosmos SDK. This audit covers many of
@cosmos
's core SDK modules in v0.47, which will be used in Gaia for the
@cosmoshub
upgrade to v15. Amongst…
0
4
15
After months of collaboration, we have now published our audit report of
@SeiNetwork
's Cosmos Chain as well as their changes to Cosmos SDK and Tendermint. Find our reports with all the issues we detected and our recommendations below 👇
@cosmos
@cosmossdk
0
3
16
We have now published our audit report of an early version of
@StargazeZone
's Infinity Pool
@CosmWasm
smart contracts. Read about our findings and recommendations here:
0
3
14
Security standards for projects in the
@cosmos
ecosystem just got upgraded!
Oak Security and
@RangeSecurity
are starting a partnership to further secure their clients' product lifecycle
0/ We're stoked to announce our partnership with Oak Security to provide end-to-end security to the Cosmos ecosystem
1
6
17
2
2
15
If you ever talked to some of our team members you probably have heard about our "blinded approach" to auditing.
Never heard of it?👀 take your take with this deep dive into our unique methodology to audit smart contracts
0
5
14
We have just published our audit report of changes to Snowbridge, the light-client-based bridge between
@ethereum
and
@Polkadot
by
@snowfork_inc
. Learn more about our findings and recommendations here:
2
3
13
Congrats
@berndartmueller
! Always proud of our team members crashing contests 🚀
Awards have been announced for the DittoEth contest🤝
Top 5:
🥇
@10xhash
- $9725.80
🥈
@cosine_wave
- $9197.42
🥉
@berndartmueller
- $3794.27
🏅
@TheSchnlich
- $3031.76
🏅
@mmdmyn191743163
- $2938.64
(1/2)
8
6
88
1
0
14
Encrypted transactions are a key feature of
@Fair_Block
’s fairyring protocol. The following critical issue discovered during our
#audit
of the fairyring
#CosmosSDK
chain shows how an unauthorized
#IBC
message can lead to decryption failures.
Keep reading this thread to learn…
1
4
14
We have just published our audit report of
@mars_protocol
's Mars Rover v2
@CosmWasm
smart contracts. Learn more about our findings and recommendations:
0
2
14
We have now published our audit report of ssz-rs, the
@rustlang
implementation of
@ethereum
's SimpleSerialize (SSZ) serialization scheme by
@ralexstokes
. This audit has been commissioned by
@snowfork_inc
. Read more about our findings and recommendations here:…
0
3
13
#OAKCTF
The results are finally here!! 🤩 Please salute the top 5 contenders of the first
@CosmWasm
Security CTF
@AwesomWasm
2023:
1.
@forbiddnstars
2.
@CruncherDefi
3.
@jc0f0116
4.
@LeTurt_
5.
@i_be_jc
from
@bearmarketlabs
Thanks to everyone that took the time to…
4
7
13
6/ Head over to to check out the challenge and start your journey towards better CosmWasm security practices!
#github
#CosmWasm
#securityawareness
6/7
1
2
12
We have just published our audit report of
@margined_io
's Power Perpetuals
@CosmWasm
smart contracts:
0
4
8
We encourage our auditors to participate in bug bounties. Congratulations to
@vn_martinez_
for finding this important bug!
Just published a write-up of the bug I discovered in the RAI stablecoin, that was introduced by a huge auditing firm after an audit
-sometimes even auditors can introduce vulns anon
8
13
62
1
2
14
@osmosiszone
2/3 So far, we had the chance to work with innovators such as
@phase_fi
,
@StreamSwap_io
,
@croncats
,
@IBCindex
,
@insaneinthembrn
,
@CALC_Finance
,
@ZodiacProtocol
, and
@Prism_Protocol
.
1
3
13
We have now published our audit report of
@mars_protocol
's Red Bank Updates. Learn more here:
0
2
13
In December 2022, we started a partnership with
@osmosiszone
's grants program to provide key projects with quality audits. Twelve weeks of auditing time were allocated, and we are excited to announce that we have just extended the partnership for another twelve weeks!
👇🧵
2
2
13
Ask The Auditors
When it comes to code, auditors have seen it all.
We asked our team about some common mistakes they encounter so that you can avoid making them. Here are 4 mistakes our auditors highlighted as being simple, common, and easily avoidable.
12
5
12
Security in DeFi can be difficult. From hacks and exploits to buggy code and unstable tokenomics, a lot of things can go wrong.
@beyer_st
gave us a very detailed overview of what is going wrong and how we can fix it 👇
0
2
12
Our team is thrilled to be at
@Polkadot
#Sub0Bangkok
! Don't miss the chance to visit our booth and ask your blockchain security questions to our experts.
See you around!
0
2
13
Are you excited about
@AwesomWasm
? Our Capture The Flag (CTF) side event will run from July 10-17. Find
#security
vulnerabilities and submit your findings to ten
@CosmWasm
challenges to climb the leaderboard. Follow us to not miss the kick-off on Monday 🚀
#OAKCTF
1
4
11
We have now published our audit report of
@DoraHacks
's Quadratic Grant
@CosmWasm
smart contracts for
@injective
. Read more about our findings and recommendations in the report:
0
2
12
It is always an honor to receive good feedback from the
@CosmWasm
team at
@confio_tech
. A pleasure to work with them!
Check out the following summary post about our recent Wasmd audit
1
2
12
#OAKCTF
You will have 10 contracts to crack. For each
#challenge
we will provide a brief description of its purpose, some integration tests and both a “base scenario” and the attacker’s goal. The base scenario shows the initial environment of the challenge while the goal shows…
0
1
11
We have now published our audit report of
@AbstractSDK
's Module Bases, Proxy and Manager
#CosmWasm
smart contracts. Learn about our findings and recommendations 👇
0
3
11
We will participate on our behalf in today's
@anchor_protocol
AMA focusing on security.
@contracthaxor
will present our view of crypto security and the current state of auditing.
Join us tomorrow at 6pm UTC for our security-focused AMA with
@ApertureFinance
,
@SecurityOak
,
@code4rena
, &
@InjectiveLabs
! 🔒
Special guests👇🏽
@gnarlycow
,
@lianzhu365
,
@gaohan137
,
@contracthaxor
,
@CloudEllie1
, &
@albertchon
⏰ Set your reminders ⏰
19
93
408
0
1
11
Our audit report of
@StreamSwap_io
's
#CosmWasm
smart contracts has now been published. Learn more about our findings and recommendations 👇
1
1
10
We have just published our audit report of
@eris_protocol
's hub and voting escrow smart contracts 👇
0
2
10
Thanks
@simon_warta
! It's always a pleasure to work with security-conscious teams like
@CosmWasm
!
The team of
@SecurityOak
are unsung heros in the
@CosmWasm
ecosystem. Dedication, expertise and humbleness makes it pure joy working with them. The value they add by strengthening the framework behind the scenes makes them a SAFU gem for all of us.
0
3
34
0
2
9
We have arrived at
#Devcon
! Looking forward to attending some great talks and meeting inspiring builders.
If you see us come and say "hi" and ask us about cyber security, audits, and how to build a secure protocol.
2
2
9
Wondering how you can keep your users' private keys safe? In light of the ongoing key leakage incident on
#Solana
wallets, let’s look at some best practices for builders.
10
2
8
Don't miss our teammate
@vn_martinez_
's talk; it will be full of alpha!
🎉
#TrustX2023
Speaker: Víctor Martínez
🎙️ Víctor Martínez
@vn_martinez_
, EVM & Security Researcher,
@TuringCons
@SecurityOak
will speak about "Tips to master fuzzing"
0
1
8
0
0
10
Do you want to expand your knowledge about
#AccessControl
vulnerabilities? check out
@CosmWasm
#Security
Spotlight 2 by
@jcsec_audits
for an introduction including real-life examples and recommendations on how to avoid them
#CosmWasm
#cosmostalesjkt48
1
4
10
We have published our audit reports for
@mars_protocol
. Three separate reports can be found here:
1
3
9
We recently responsibly disclosed a critical issue in
#CosmWasm
. Please check the official security advisory.
0
1
10
We just published our audit report of
@lum_network
's Millions
@cosmossdk
module. Learn more 👇
1
6
10
Reentrancy just does not want to disappear. One of our top lead auditors,
@jcsec_audits
, has created a great workshop on this ever-present security vulnerability.
2
2
8
We have completed our audit of
@stride_zone
and are happy to share our findings with the Cosmonaut community. You can find the full report below 👇
5
5
9
If you are planning to get a security audit for your blockchain or smart contract audit, and don't know where to start, read our article on how to prepare for an audit:
0
2
7
We have just published our audit report of
@noble_xyz
's changes to their tokenfactory and fiattokenfactory
@cosmos
#CosmosSDK
modules. Learn more:
2
1
9
Very interesting topic
@pstanislaus
Philip Stanislaus from Oak Security at
#CONF3RENCE
! An expert at the intersection of
#blockchain
security and economics, Philip will share insights on how to navigate economic risks in blockchain protocols. Dive into the world of blockchain with a leading expert!
#BlockchainTech
0
0
3
1
1
9
Have you heard about “Unsaved storage changes" bugs in
@cosmwasm
#smartcontracts
? The concept is quite simple, however, the impact heavily depends on each case! Check our new post about
#cosmwasm
#security
#audit
#blockchain
1
1
8
One of our founders and several team members will attend
@cosmoverse
#ATOMBerlin
and
@AwesomWasm
, having a nice booth in the latter.
Drop us a DM if you wanna meet to discuss anything
#blockchain
and smart contract
#security
! Come by and claim some stickers :P
#cosmos
#cosmwasm
…
1
2
9