A set of challenges to hack implementations of DeFi in Ethereum. Featuring flash loans, oracles, governance, NFTs, lending pools, and more!
Created by @tinchoabbate at OpenZeppelin
Visit damnvulnerabledefi.xyz!
Share your solutions, comments, feedback and more in Twitter with #DamnVulnerableDeFi.
This is a fork of the original repo, where I present the write-ups and lessons learned from the vulnerable contracts. Each challenge has a write-up (links below), an exploit (in the testcase file) and some have attacker contracts (in this directory).
Here is the list of write-ups for all challenges:
I have added new category to Smart Contracts Security Verification Standard called Decentralized Finance basing on the challenges and recent hacks in #DeFi.
It contains the security requirements specific to the mechanisms used by the #DeFi applications.
Check out the list of new requirements!
All Solidity code, practices and patterns in this repository are DAMN VULNERABLE and for educational purposes only.
DO NOT USE IN PRODUCTION.