├── .gitbook └── assets │ ├── Screenshot 2023-01-24 at 6.06.34 PM.png │ ├── Screenshot 2023-01-25 at 12.02.27 AM.png │ ├── Untitled.png │ ├── disorganized-embroidery-thread-02 (1) (1).jpg │ ├── disorganized-embroidery-thread-02 (1).jpg │ └── disorganized-embroidery-thread-02.jpg ├── README.md ├── SUMMARY.md ├── encyclopedia-of-common-solidity-bugs ├── README.md ├── asymmetrical-code.md ├── constant-protocol-parameters.md ├── delete-item-unupdated-index.md ├── division-precision-loss.md ├── duplicate-values.md ├── forget-to-update-parallel-data-structures.md ├── images │ └── transfer-function-EIP20-standard.jpg ├── inaccurate-allowance.md ├── lack-of-access-control.md ├── lack-of-exception-handling.md ├── lack-of-success-checks.md ├── matching-to-from-addresses.md ├── native-vs-wrapped-handling.md ├── off-by-1.md ├── overflow-underflow.md ├── storage-not-updated.md ├── unexpected-panic-revert.md └── unsafe-erc20-operations.md ├── encyclopedia-of-security-research ├── README.md ├── interfaces.md ├── layerzero.md ├── uniswap.md └── whitelists.md ├── encyclopedia-of-solidity-attack-vectors ├── README.md ├── block.timestamp-manipulation.md ├── contract-cannot-accept-ether-dos.md ├── directly-sending-funds.md ├── external-call-reverts-dos.md ├── front-back-running.md ├── gas-griefing.md ├── images │ ├── README.md │ ├── alice-bob-front-run.jpg │ ├── mal.png │ ├── pool.png │ ├── sandwich-attack-bob.jpg │ ├── sandwich-attack-graph.jpg │ ├── sandwich-attack.jpg │ ├── solidityDocTruncateDivision.jpg │ ├── valueofallTheirValue1.png │ └── valueofallTheirValue2.png ├── iscontract-manipulation.md ├── reentrancy.md ├── signature-malleability.md └── tx.origin-phishing-attack.md └── the-auditors-handbook ├── README.md └── the-auditing-process ├── README.md ├── addendum.md ├── after-the-audit.md ├── audit-setup-preparation.md ├── beginning-the-audit.md ├── the-meat-of-the-audit.md ├── wrapping-up-the-audit.md └── writing-tests-and-pocs.md /.gitbook/assets/Screenshot 2023-01-24 at 6.06.34 PM.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/Screenshot 2023-01-24 at 6.06.34 PM.png -------------------------------------------------------------------------------- /.gitbook/assets/Screenshot 2023-01-25 at 12.02.27 AM.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/Screenshot 2023-01-25 at 12.02.27 AM.png -------------------------------------------------------------------------------- /.gitbook/assets/Untitled.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/Untitled.png -------------------------------------------------------------------------------- /.gitbook/assets/disorganized-embroidery-thread-02 (1) (1).jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/disorganized-embroidery-thread-02 (1) (1).jpg -------------------------------------------------------------------------------- /.gitbook/assets/disorganized-embroidery-thread-02 (1).jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/disorganized-embroidery-thread-02 (1).jpg -------------------------------------------------------------------------------- /.gitbook/assets/disorganized-embroidery-thread-02.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/.gitbook/assets/disorganized-embroidery-thread-02.jpg -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/README.md -------------------------------------------------------------------------------- /SUMMARY.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/SUMMARY.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/README.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/asymmetrical-code.md: -------------------------------------------------------------------------------- 1 | # ⚖ Asymmetrical Code 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/constant-protocol-parameters.md: -------------------------------------------------------------------------------- 1 | # 🛑 Constant Protocol Parameters 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/delete-item-unupdated-index.md: -------------------------------------------------------------------------------- 1 | # 🕵 Delete Item, Unupdated Index 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/division-precision-loss.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/division-precision-loss.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/duplicate-values.md: -------------------------------------------------------------------------------- 1 | # ✖ Duplicate Values 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/forget-to-update-parallel-data-structures.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/forget-to-update-parallel-data-structures.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/images/transfer-function-EIP20-standard.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/images/transfer-function-EIP20-standard.jpg -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/inaccurate-allowance.md: -------------------------------------------------------------------------------- 1 | # 📝 Inaccurate Allowance 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/lack-of-access-control.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/lack-of-access-control.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/lack-of-exception-handling.md: -------------------------------------------------------------------------------- 1 | # 🦺 Lack of Exception Handling 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/lack-of-success-checks.md: -------------------------------------------------------------------------------- 1 | # 🚫 Lack of Success Checks 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/matching-to-from-addresses.md: -------------------------------------------------------------------------------- 1 | # 👬 Matching to/from Addresses 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/native-vs-wrapped-handling.md: -------------------------------------------------------------------------------- 1 | # 🎁 Native vs Wrapped Handling 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/off-by-1.md: -------------------------------------------------------------------------------- 1 | # 1⃣ Off By 1 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/overflow-underflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/overflow-underflow.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/storage-not-updated.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/storage-not-updated.md -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/unexpected-panic-revert.md: -------------------------------------------------------------------------------- 1 | # ‼ Unexpected Panic Revert 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-common-solidity-bugs/unsafe-erc20-operations.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-common-solidity-bugs/unsafe-erc20-operations.md -------------------------------------------------------------------------------- /encyclopedia-of-security-research/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-security-research/README.md -------------------------------------------------------------------------------- /encyclopedia-of-security-research/interfaces.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-security-research/interfaces.md -------------------------------------------------------------------------------- /encyclopedia-of-security-research/layerzero.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-security-research/layerzero.md -------------------------------------------------------------------------------- /encyclopedia-of-security-research/uniswap.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-security-research/uniswap.md -------------------------------------------------------------------------------- /encyclopedia-of-security-research/whitelists.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-security-research/whitelists.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/README.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/block.timestamp-manipulation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/block.timestamp-manipulation.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/contract-cannot-accept-ether-dos.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/contract-cannot-accept-ether-dos.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/directly-sending-funds.md: -------------------------------------------------------------------------------- 1 | # 📩 Directly Sending Funds 2 | 3 | -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/external-call-reverts-dos.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/external-call-reverts-dos.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/front-back-running.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/front-back-running.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/gas-griefing.md: -------------------------------------------------------------------------------- 1 | # ⛽ Gas Griefing 2 | 3 | {% embed url="https://twitter.com/0xOwenThurm/status/1618417556683108352" %} 4 | -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/README.md: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/alice-bob-front-run.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/alice-bob-front-run.jpg -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/mal.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/mal.png -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/pool.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/pool.png -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/sandwich-attack-bob.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/sandwich-attack-bob.jpg -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/sandwich-attack-graph.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/sandwich-attack-graph.jpg -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/sandwich-attack.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/sandwich-attack.jpg -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/solidityDocTruncateDivision.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/solidityDocTruncateDivision.jpg -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/valueofallTheirValue1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/valueofallTheirValue1.png -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/images/valueofallTheirValue2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/images/valueofallTheirValue2.png -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/iscontract-manipulation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/iscontract-manipulation.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/reentrancy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/reentrancy.md -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/signature-malleability.md: -------------------------------------------------------------------------------- 1 | # ✍ Signature Malleability 2 | 3 | In-depth thread here: 4 | 5 | {% embed url="https://twitter.com/0xOwenThurm/status/1619151598877577216" %} 6 | -------------------------------------------------------------------------------- /encyclopedia-of-solidity-attack-vectors/tx.origin-phishing-attack.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/encyclopedia-of-solidity-attack-vectors/tx.origin-phishing-attack.md -------------------------------------------------------------------------------- /the-auditors-handbook/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/README.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/README.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/addendum.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/addendum.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/after-the-audit.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/after-the-audit.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/audit-setup-preparation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/audit-setup-preparation.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/beginning-the-audit.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/beginning-the-audit.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/the-meat-of-the-audit.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/the-meat-of-the-audit.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/wrapping-up-the-audit.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/wrapping-up-the-audit.md -------------------------------------------------------------------------------- /the-auditors-handbook/the-auditing-process/writing-tests-and-pocs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GuardianAudits/SolidityLab/HEAD/the-auditors-handbook/the-auditing-process/writing-tests-and-pocs.md --------------------------------------------------------------------------------