QuillAudits 🥷
@QuillAudits_AI
Followers
14K
Following
9K
Media
2K
Statuses
8K
7+ Years Securing #Web3: 1M+ Lines Audited. Trusted by 1400 + Clients including StarkWare, Taiko, ZetaChain & Metis. Next-gen audits, KYC & on-chain monitoring.
Metaverse
Joined February 2019
🚨 We’re dissecting Curve's _checkpoint() logic which handles critical global and user state for voting power management. This is an essential audit video focusing on the intricacies of @CurveFinance's internal _checkpoint() function. This logic is crucial as it utilizes both
1
1
16
🚨 HAPPENING TODAY🚨 Building & Operating Tokenized RWAs. ⏰ In just a few hours - 3:30 PM UTC (9 PM IST) Join @Brickken, @Tokinvest_Cap, @zoniqxinc, @zothdotio, @0xPolygon, and our team as we dig into: • RWA lifecycle & architecture. • Settlement & custody workflows. •
Building & Operating Tokenized RWAs Join us for an expert discussion on the lifecycle, architecture, and common pitfalls of Real-World Asset tokenization. 📅 December 22, 2025. ⏰ 3:30 PM UTC (9:00 PM IST). Speakers: @jtdefi8 (@0xPolygon), @thezoctopus (@zothdotio),
1
5
16
Sleigh the season with the most personal gift around. Get them a Cameo video!
9
24
139
@muellerberndt If you've zero knowledge about Zero Knowledge, then this is a great place to start as well. We posted about it earlier on @QuillAudits_AI and were reached out by people sharing their respective learning journeys with us. Will leave it here in that case : )
github.com
This repository contains list of resources to aid your journey of mastering Zero Knowledge Proofs. If you find any resource missing, you can create a pull request and be a contributor of the projec...
0
2
13
Token & Asset Handling - Incorrect Fee-on-Transfer Token Accounting - Incorrect Rebasing Token Accounting - Inflation/Deflation Attacks via Donations - ERC777 tokensToSend/tokensReceived Re-entrancy - ERC20 Approval Race Conditions - Missing Return Value Checks for ERC20
List of Some Attack Vectors/Smart Contract Vulnerabilities! - Reentrancy - Reentrancy via Modifier - Read-Only Reentrancy - Cross-Function Reentrancy - Cross-Contract Reentrancy - Front-Running - Front-Running - Unprotected withdraw - Front-Running - Sandwich attack -
1
1
16
The RWA space is evolving rapidly, and we wanted to create a resource that bridges the gap between theory and implementation. We built it to be a practical, end-to-end resource for teams navigating the technical and compliance challenges of tokenizing real-world value. Built
0
0
6
ICE was born on a mission to Defend the Homeland. Will you answer the call to serve?
303
838
6K
Building & Operating Tokenized RWAs Join us for an expert discussion on the lifecycle, architecture, and common pitfalls of Real-World Asset tokenization. 📅 December 22, 2025. ⏰ 3:30 PM UTC (9:00 PM IST). Speakers: @jtdefi8 (@0xPolygon), @thezoctopus (@zothdotio),
2
11
25
Replace generic news sites with the RSS feeds of: • Vitalik Buterin's blog • a16z crypto research • EF Research Blog A dedicated, curated https://t.co/0PrWXENYNq or Roam Research graph to connect these disparate learnings. Web3 knowledge is nonlinear; your learning system
obsidian.md
The free and flexible app for your private thoughts.
Web3 learning resources: → Educational > cyfrin > LearnWeb3 .io > CryptoZombies → Documentation > Ethereum. org > Solidity Docs > foundry docs → Communities > LearnWeb3 community > Ethereum Stack Exchange > Reddit (r/web3, r/ethereum, r/ethdev) → News
1
1
8
The team scored an impressive 98% security score during our assessment. https://t.co/X0Esz6uwu4
quillaudits.com
Unveil the details of Bean-Exchange security audit by QuillAudits. Boost security and trust with our expert findings and comprehensive report.
19
12
39
Feedback like this is why we do what we do. 🙏 Smooth process, quality audits, safer protocols - that's the standard. @Bean_DEX - thank you for choosing QuillAudits. Let's keep building secure Web3 together!🛡️
26
14
46
yETH $9M Exploit Breakdown On Nov 30, @yearnfi's weighted stableswap pool was drained via invariant manipulation in single transaction (block 23,914,086). yETH weighted stableswap pool aggregates LSTs (apxETH, sfrxETH, wstETH) and uses custom Newton-Raphson solver to maintain
quillaudits.com
Learn how Yearn lost $9M in an invariant solver exploit, with a clear explanation of the bug, attacker method & defensive takeaways for DeFi security.
0
0
3
November 2025 Security Roundup 🛡️ Our team conducted comprehensive security assessments across 8 blockchain networks this month, identifying 65 distinct issues across the severity spectrum. 🔴 3 Critical 🟠 9 High 🟡 18 Medium 🟢 20 Low 🔵 15 Informational Chains secured:
1
2
13
Our next Conflux Hub Spaces is December 15 at 10 AM ET (15:00 UTC). We’ll be exploring AI Agents in Web3 with speakers from @QuillAudits_AI, @XerpaAI, @funton_ai and @canmasu, covering security, automation, and emerging AI-driven applications. https://t.co/9JKJB096HJ
16
7
53
At QuillAudits, the integrity of our audit process relies not only on the thorough technical review of smart contracts but also on the credibility and transparency of the teams behind them. To strengthen trust and align with global compliance standards, we are formally
10
10
106
🚀 QuillAudits is heading to Abu Dhabi. If you’re attending and want to discuss security for your protocol or ecosystem, let’s meet in Abu Dhabi. See you at Breakpoint, @bitcoinmenaconf, @ADFinanceWeek. 🇦🇪
7
4
21
0
0
7
We audited 1,400+ projects and created what we wish existed: THE REAL WORLD ASSETS HANDBOOK. 1.) Security frameworks by asset type 2.) Compliance considerations 3.) Actual vulnerabilities we've seen 4.) Prevention strategies Free. Open source. Tokenized real estate ≠
12
11
48
> Read exploits, not just articles. Post-mortems of actual hacks teach you more than theoretical writeups. See how: • Wormhole bridge got drained, • How Mango Markets got manipulated, • How Euler got rekt. Real attacks reveal what auditors missed and why. > Build, don't
How I improve as an security auditor? Formula is simple > learn attack vectors > read security articles > solidify the knowledge > test your understanding > audit complex projects > think about a code a lot > conduct self-analysis > improve approach daily > learn how to use AI
1
5
48