Locating Vulnerabilities in Ethereum Smart Contracts - Hybrid Analysis Method
Hack In The Box Security Conference via YouTube
Overview
Explore a hybrid analysis method for identifying vulnerabilities in Ethereum smart contracts in this 46-minute conference talk from the Hack In The Box Security Conference. Learn how to leverage EVM's gas limitations to perform full simulations, construct Control Flow Graphs (CFG), and recover byte code to a high-level abstraction. Discover the benefits of combining decompilation techniques with EVM full simulation for semi-automated analysis. Gain insights into overcoming challenges related to blockchain security, particularly in Decentralized Finance (DeFi) and Non-Fungible Token (NFT) projects. Witness practical demonstrations of this approach through various case studies presented by senior security researcher Boik Su.
Syllabus
#HITB2023HKT D2T1 - Locate Vulnerabilities Of Ethereum Smart Contracts - Boik Su
Taught by
Hack In The Box Security Conference