There are people in X who post a lot of alpha. And then there are a lot of people who just post toxic stuff and noise. Be mindful of who you follow and who you engage with.

You can also read the online version here: https://t.co/MGJRKb9sFJ

Mastering Ethereum v2 is out now for free! This book is how I got into web3 and eventually co-founded a security company protecting billions in assets. If you’re serious about Ethereum or security, start here. https://t.co/pu4F1ZCAhG

If you want to become a better auditor, learn from better auditors than you. Study their findings, learn their mindset, connect with them. Just don't ask them "where to start?" 🥲

One of the most exciting things is opening a new codebase to audit.

To succeed in web3 security, you need to know your "why". If it's for a quick buck, you will most probably fail - it's hard and requires a lot of hard work and consistency. If you want to genuinely help the space and provide real value, you'll probably be successful.

Many security researchers don't look into codebases that are well-audited (Lido, Euler, etc.). Maybe you will not find a bug there but there is a lot to learn from them that will serve you in your journey. Spend time studying such codebases.

Solidity. Rust. Move. Vyper. Javascript/Typescript. There is enough security demand for all the languages. Don’t let the FOMO hit you and stick to one.

If it's doable, then you can do it. No matter how complex it looks. There's nothing more to winning than that. Especially for web3 security.

One of the guaranteed ways to fail is to be overwhelmed with too many things. Focus on 1-2 things max and truly master them. Then move to the next thing and repeat.

If you are coming from a technical background, you can easily get into web3 security. If you are coming from a Maths background, you can easily get into web3 security. If you are coming from a non-technical and non-Maths background, you can still get into web3 security.

POV: how I felt today with Cloudflare being down and not a single thing loading

Official Post-Mortem of the Balancer V2 hack that resulted in ~$95M theft of user funds.

Link to Core Solidity Deep Dive: https://t.co/TUKGr5omiD

A lot of changes are coming to Solidity!🚨 Inheritance will be completely removed. Other features that could be removed or reworked: - try/catch - libraries - function pointers - type conversion - data locations This will be significant, check the link below👇

The new @CDSecurity_ website is LIVE! Go check it out 👇 https://t.co/H6IxmmWegy Any feedback is welcome 🫡

Before this week starts, choose 3 important tasks for next week, and put them on your calendar. If it is not scheduled, it probably won’t happen. When Monday comes, you won’t ask “what now?”, you’ll already know.✌️

More potential is wasted through inaction than incompetence. Especially true in web3 security.

8/Here is a full detailed article that dives deeper into each of the types and discovers different use cases: https://t.co/mxMnuICtlD

7/ Memecoins No rights, no utility. Just memes + speculation. Price = attention. If real utility or rights are added, they stop being pure memecoins and slide into another bucket.