An interactive Ethereum-based platform for mastering offensive security in Smart Contracts.
The smart contracts in this repository are intended for learning the offensive security aspects of Ethereum smart contracts. Some contracts are vulnerable, some are simplified for minimal, some contain malicious code. Hence, do not use the source code in this repository in your production.
Nonetheless, feel free to contact Valix Consulting for your smart contract consulting and auditing services.🕵
| # | Name |
|---|---|
| 1 | Extra Bank |
| 2 | Lock Pool |
| 3 | NFT Whitelist |
| 4 | Poor Boy |
| 5 | The Collector |
| 6 | Bullied Boy |
| 7 | The Secret Source |
| 8 | Trick or Thieve |
| 9 | Lotto888 |
| 10 | Alice in The Dark |
| 11 | Freeze The Flow |
- Clone this repository
- Install dependencies with
npm install - Code your solution in the
*.challenge.jsfile (inside each challenge's folder in the test folder). - In all challenges you must use the account called
player. In Ethers, that may translate to using.connect(player). - Run the challenge with
npm run <<challenge-name>>If the test is executed successfully, you've passed!
- Solidity is absolutely required.
- Typescript knowledge is beneficial but not a must-have
- To code the solutions, you may need to read Ethers and Hardhat docs.
- Some challenges require you to code and deploy custom smart contracts. Keep them in the
contracts/@player-contracts
Valix Consulting is a blockchain and smart contract security firm offering a wide range of cybersecurity consulting services. Our specialists, combined with technical expertise with industry knowledge and support staff, strive to deliver consistently superior quality services.
For any business inquiries, please get in touch with us via Twitter, Facebook, or [email protected].
Inspiration by Damn Vulnerable DeFi.