🧵Ready to level up your knowledge about smart contract bugs? 🚀. We are planning to publish examples of known attacks along with their references and PoC scripts. Stay tuned to learn more bug types and don't forget to save this thread!.#SmartContracts #EVM #Blockchain.

RT @0x60scs: I've participated in the @eatsleepyeet audit contest on @immunefi. Found 1 Critical and 1 Insight 🔥. I learned a lot during t….

Join millions who have switched to Grok.

RT @0x60scs: I've just found my first Critical bug on @immunefi.

RT @0x60scs: This was my first contest!.It's a great feeling to see your hard work pay off 💪. This will be a great motivation for me to rea….

5/5🧵.Reference:.

4/5🧵. Some public reports:.

3/5🧵. How to Prevent It?. Mitigation techniques such as implementing minimum return values or setting transaction deadlines may be applied.

2/5🧵. What happens when slippage is not checked?. Lack of slippage checks leave users unable to set a minimum acceptable price - creating opportunities for malicious actors to exploit. Attacker can make profit by executing sandwich attack while a victim user is trading.

🔍 Bug Highlight-5: ."Unchecked Slippage" . 1/5🧵. What is Slippage?. Slippage defines (in the context of AMMs) the difference between the expected price of a trade in a DEX and the price at which the trade is executed.

On this day 16 years ago, the first Bitcoin block—the Genesis Block—was mined. 🚀 A milestone that forever changed the world of finance. Here’s to many more blocks ahead! #Bitcoin

@code4rena @ShieldifySec @CyfrinAudits 9/9. H-4: No slippage protection during repayment due to dynamic slippage params and easily influenced `slot0()` .@sherlockdefi.

@code4rena @ShieldifySec 8/9. On-chain slippage calculation using exchange rate derived from `pool.slot0` can be easily manipulated .@CyfrinAudits.

@code4rena 7/9. [H-01] Usage Of `slot0` To Get `sqrtPriceLimitX96` Is Extremely Prone To Manipulation .@ShieldifySec.

6/9. [H-01] Reallocation depends on the `slot0` price, which can be manipulated .@code4rena.

5/9. How to Prevent It?. -Increased Liquidity to stabilize prices. -Advanced Algorithms like TWAP and VWAP to average prices over time/volume, reducing manipulation. -Monitoring Large Trades to detect suspicious activity.

4/9. Impact of Price Manipulation. Price manipulation can mislead traders, drain liquidity, and hurt automated trading bots. It undermines trust in the platform.

3/9. How Does Manipulation Happen?. Manipulators can perform large trades to artificially change the price of a token in a pool, especially in those with low liquidity.

2/9. What is Slot0?. Slot0 is a key parameter in Uniswap v3 liquidity pools, storing data like the current price and liquidity between tokens. It helps determine the price within a pool.

🔍 Bug Highlight-4: . "What is Slot0 Price Manipulation on Uniswap?". 1/9🧵. On DEXs like Uniswap, prices are determined by liquidity pools. Slot0 price manipulation involves altering these prices through large trades. Let’s break it down. #Uniswap #DeFi #Crypto.