AMOW
@armormadeofwoe
Followers
456
Following
377
Media
17
Statuses
115
SR @CertoraInc portfolio: https://t.co/xhrIpIfBNU
-
Joined August 2023
Wasn't there a public outrage some time ago when the contestant pot was <50% of the total pot?
2
1
39
Huge shoutout to @yearnfi for the pristine communication and swift resolution, shaking our hands on severity being High 🤝 Aug 13th 13:00 report was submitted on Immunefi Aug 15th 14:00 report was assessed, confirmed and vulnerability patched
Feels nice, severity is still under negotiation, but it took less than 48 hours between submission and confirmation. Hopefully I will be able to share some details and give credit where it's due. @immunefi #immunefitribe
1
1
47
🗳️ Calling all @compgovernance voters! @chain_security and Certora are excited for the opportunity to secure Compound for one year after being selected by the Compound Foundation. https://t.co/L5Mf7l4ty9 We would love to get your vote:
comp.xyz
TL;DR The Compound Foundation recommends ChainSecurity & Certora as the new security partner for Compound, augmented by ZeroShadow as the incident response and monitoring provider. These vendors...
1
6
34
This isn't a 1 off: new L1s are coming, crucial, and need to be secured. I've audited many L1s and integrations, including Cosmos EVM, IBC V2 Eureka, Lombard IBC integration, Story, Omni... See my portfolio here https://t.co/yNegn4glmM. Want to secure your L1? Come talk to me.
github.com
Contribute to kuprumxyz/audits development by creating an account on GitHub.
This isn't a 1 off. This is the start of a massive trend of real businesses building their own L1 blockchains. We're in talks with tons of other companies (including some major fortune 500s) who are considering launching their own L1s. Years ago, enterprise blockchains failed
1
1
13
Feels nice, severity is still under negotiation, but it took less than 48 hours between submission and confirmation. Hopefully I will be able to share some details and give credit where it's due. @immunefi #immunefitribe
immunefi.com
Review code. Prevent hacks. Build rep. Get paid.
11
4
114
Currently wrapping up a Solana audit and wanted to share some stats: - 60 leads - 44 went nowhere or the team thought of the scenario and patched it beforehand - 16 are H/M/L/I, can't share more details, however I want to focus on the lows. Majority of our lows would've been
2
2
52
I am stoked to announce I have joined @CertoraInc as a Security Researcher. It's surreal to think that January 2024 I left my fintech banking job, not knowing what an ERC-20 is, and just a year and a half later to be here. Excited to see what the future holds.
19
3
123
When we started RAAC, my AC was warming my apartment up in February. Results came out under the same AC cooling in June. 61 submissions, 45 valid, 20H/18M/7L out of 6K+ contest submissions, 4th place. Huge props to @CodeHawks
8
1
77
Almost 600 days ago, the very first First Flight on @CodeHawks concluded. Decided to observe the top 100 participant out of curiosity to see who stuck around: - #29 @MrPotatoMagic - Certora SR - #36 @el_hajin - Spearbit ASR - #59 @tpiliposian - Certora SR - #89 @giraffe0x -
7
8
106
My humble university experience taught me how to read currency pairs in the exact opposite way than how it's done here. For example, USD/ETH is "1 unit worth of ETH expressed in USD". I have spent too much time checking price feed validity due to this. /rant
1
0
15
Escalations Saturdays are better when Touching Grass Sundays follow
0
0
10
On the topic of improvements - the HIGH-MED issue severities have proven to be quite inefficient in capturing the entire spectrum of vulnerabilities within a protocol. The 2 current severities are rewarded as categories while they should be treated as ranges. For example, a
1
0
4
Super thrilled to see @deadrosesxyz's @YieldoorFi coming to life. Jordan is one of the most inspirational figures you could ever come across, not only in web3, but in IRL as well. Wishing nothing but juicy yields. Just did my first deposit, so should you.
2
0
41
Any Move auditoors out there? Recently finished The Move Book and @net2dev1 's Aptos Move Basic and Advanced, looking for some cool newbie-level codebases or reports. All insights are appreciated.
4
0
18
How do you interpret seeing 30+ comments on a contest submission? Has the SR provided a vague/low-quality report and is trying to convince the judge otherwise? Is the judge not too familiar with the codebase and needs further guidance? Either way it is not looking good for
1
0
11
This is not an inspirational post stating "less is more". I'm saying to ditch the rituals, habits and items that "boost performance". There are no tricks/tips/roadmaps to becoming better or getting ahead of the competition. Just do.
2
2
15
Auditing setup months 0-5: ear plugs, brown noise on youtube, pomodoro breaks, perfect lighting, can only audit on 2-monitor PC - barely 2k$ Auditing setup months 6-9: lofi-hiphop radio, perfect posture, still only audit on 2-monitor PC - barely 2k$ Auditing setup months
5
3
75
- start audit - go down with the flu after only 10 hours spent on it - ask teammate @amarfares_ to submit everything after I quit and go to have a knee surgery - contest = 3rd - knee = surged
11
0
162
Moral of the story - just read code (and some docs). Learn things only when you actually need them. Be curious.
0
0
4