Pinned
riptide
4,426 posts
riptide
@0xriptide
CEO & co-founder @therealgregoai | host of @bountyhunt3rz podcast | top ranked whitehat on @immunefi immunefi.com/profile/riptide
My bug bounty write-up on a critical vulnerability I discovered on Arbitrum Nitro which allowed an attacker to steal all incoming ETH deposits to the L1->L2 bridge medium.com/@briptide/hack… @icodeblockchain @samiamka2 @Mudit__Gupta @belminkalkan @BowTiedCrocodil @BowTiedDevil- 6 months ago I was a DeFi degen and couldn't read a smart contract .... So I spent 7 days a week reading contracts, audit reports, hack post-mortems, books on solidity, reading about merkle trees, assembly programming, etc... i was dead set on my path of bounty hunting
- 8 live criticals so far - want to know my secret? - Arbitrum - Balancer - Radiant - RadPie - Prisma - Deri - Sommelier - Polymarket i simply enjoy reading smart contracts and finding ways to break them have easily read over a thousand contracts staring at the
- We took a crack at the recent Solana contest on @code4rena with our AI audit tool and here's how it went: 2 findings confirmed as Medium by the judge after proper debate We were on-track to unlock the H/M pot and win the comp as we had the most medium findings Findings are
- such a based team at balancer whitehat approved 😎😎Replying to @BalancerThank you @0xriptide for the responsible disclosure on @immunefi. Even though the MerkleOrchard was not part of the Balancer Bug Bounty, a 50 ETH bounty was awarded given the relevance of the report.
- Replying to @0xriptideIf you are interested in learning how to get started with arbitrage bots in python, learning how a uniswap pool works, and a bunch of other resources for aspiring hackers @BowTiedDevil substack & discord are both really good resources ✌️
- i have the best job ever find bugs. challenge brain. get paid.
- My write-up on a vulnerability in Balancer's MerkleOrchard contract which allows any LP to fully drain the distributor resulting in a theft of unclaimed yield for all other LPs
- when you submit a bug so good the protocol cancels its bug bounty @AngleProtocol
- Replying to @0xriptideI had not coded in years (PHP4lif3) and was rusty ... none of the basic examples for using web3.js were making sense to my smooth brain until I found an anon called @BowTiedDevil who I think is a terrific writer/teacher that can break down a complex topic for anyone to understand
