juancito
@juancito
Followers
7K
Following
24K
Media
373
Statuses
8K
🕵️♂️ Security Researcher & web3 dev 🛠️
Joined January 2011
Winners and security legends: Wonderland CTF crushed by @DrasticWM @adrianromero @usmannk @juancito @blocksec
We won 1st!! @usmannk @juancito @DrasticWM & adriro . Thank you @DeFi_Wonderland for organizing. We had so much fun
1
9
56
We won 1st!! @usmannk @juancito @DrasticWM & adriro . Thank you @DeFi_Wonderland for organizing. We had so much fun
2
2
10
The Wonderland CTF was a blast! Huge congrats to all the teams, especially “STACK TOO DEEP”, “NADA ESPECIAL” and “SECSEE”. Oh, also: https://t.co/WHMt1f36Mk 👉👈
3
14
63
We won 1st!! @usmannk @juancito @DrasticWM & adriro . Thank you @DeFi_Wonderland for organizing. We had so much fun
The Wonderland CTF was a blast! Huge congrats to all the teams, especially “STACK TOO DEEP”, “NADA ESPECIAL” and “SECSEE”. Oh, also: https://t.co/WHMt1f36Mk 👉👈
9
5
81
We won the Devconnect + Wonderland Solidity CTF 🏆🙌 I managed to squeeze into the best team 😁
14
1
100
You can check the Twitter handle marketplace for inactive usernames
0
0
2
I met the team behind Unblind yesterday and I love the product... When you are about to make a transaction, it sends you a telegram message in plain english that describes what will happen! We all know blind signing is a problem and this is a great step! link to MM snap:
11
10
82
Wrote a post for the OZ blog 🔍 If you’ve ever wondered how Ethereum Execution Clients validate & process blocks/txs, this is a good place to start. I also dig into newer concepts like System Contracts & EL→CL Requests that unlock powerful use cases ⚡
1
2
17
A critical vulnerability I found in code forked from @1inch could have drained ~650k COVE tokens from @cove_fi contracts. Here's how the attack worked and how it was responsibly disclosed 🧵
On June 12, 2025, a critical reentrancy vulnerability was identified by @adrianromero @yAuditDAO @electisec in Cove’s liquidity mining program and promptly neutralized. No user funds were lost, and 652,565 non-transferable COVE tokens were secured as a precaution. The
9
17
190
On June 12, 2025, a critical reentrancy vulnerability was identified by @adrianromero @yAuditDAO @electisec in Cove’s liquidity mining program and promptly neutralized. No user funds were lost, and 652,565 non-transferable COVE tokens were secured as a precaution. The
3
8
83
Fun challenge. Got 5th
🎉 Secureum RACE-38 Results 🎉 💨 Number of Runners: 47 ⚖️ Median Score: 3/8 🥇 Top Score: 6.5/8 🙏 Designer: @windhustler ✍️ Reviewer: @patrickd_de
https://t.co/L2ixhSVRcJ 🏆🏆 Top 32 Leaderboard 🏆🏆
1
0
18
~24 hrs left for you to apply for the 2025 Pashov Audit Group security researcher internship program. Great auditors will be born from this, do not miss your chance. Good luck🫡 Details for the program, plus application form - in first comment below👇
5
12
131
7 mistakes that beginner Web3 security researchers make (and how to fix them) 🧵👇
16
52
277
Glad to have contributed a little bit here 🫡
Pashov Audit Group 2024 official stats: - 152 security reviews, ~130 full audits - 129 Critical, 243 High, 570 Medium, 906 Low severity issues found - Over 40 publicly-proven security researchers doing audits with us Doubling this in 2025! Infinite respect for our team🫡
1
0
28
Good audit firms compete for sponsored space. Legendary ones get to the top with organic traffic 😁
3
1
43
Great opportunity!
Pashov Audit Group security researcher internship coming soon. Learn by doing, 100% practice. Real audits, real projects. Like/RT this post if you'd be interested in this. There will be lots of slots, I've thought of a scalable model to do this right, full announcement soon🫡
1
0
9
I took a quick look at the code and found the vulnerability in @virtuals_io They seem to have been audited, but when I contacted them, the team replied that they were not running a bug bounty. And they closed the discord channel I created to report the vulnerability.
66
104
1K