Iβm an EVM security researcher, Lead Senior Watson at Sherlock and Founding Auditor at Blackthorn, with more than 3 years of experience working in the DeFi ecosystem as both developer and security researcher. I've conducted audits for a wide range of DeFi projects, including lending protocols, stablecoins, omnichain systems, and account abstraction, identifying vulnerabilities in top live protocols like Safe, Yearn, and Renzo.
- Audited EIP-7002 and EIP-7251 for the Ethereum Foundation as part of the Pectra upgrade.
- Participated in +20 audit competitions, with 3 first places and +10 top 5 placements.
- Secured +$1B by submitting vulnerabilities via bug bounties.
| Contest | Type | Language | Date | Leaderboard | Report |
|---|---|---|---|---|---|
| Ubiquity | Stablecoin | Solidity | 02-01-2024 | Top 5 | π |
| Telcoin | Governance | Solidity | 12-01-2024 | π₯ | π |
| Arcadia | Lending | Solidity | 29-01-2024 | π₯ | π |
| Opal | Omnipools | Solidity | 12-02-2024 | Top 5 | π |
| Tapioca | Omnichain/Lending | Solidity | 23-02-2024 | Top 5 | π |
| Teller Finance | Lending | Solidity | 23-04-2024 | π₯ | π |
| Telcoin Wallet | Wallet | Solidity | 04-06-2024 | π₯ | Private |
| CCIP V1.5 | Cross-Chain | Solidity | 02-07-2024 | Top 5 (anon) | Private |
| Midas | RWA | Solidity | 19-08-2024 | Top 5 | π |
| Redstone | Oracles | Sway (Fuel) | 24-09-2024 | π₯ (anon) | Private |
| Farcaster Attestation | Solidity | Farcaster | 13-01-2025 | π₯ | TBD |
| Plaza Finance | Bonds | Solidity | 14-01-2025 | π₯ | π |
| Liquid Ron | Liquid Staking | Solidity | 28-01-2025 | π₯ (anon) | TBD |
| Blend | Lending | Soroban (Rust - Stellar) | 24-02-2025 | 11 | TBD |
| Contest | Type | Date | Report |
|---|---|---|---|
| Asterix | NFTs | 01-04-2024 | π |
| ERC6551 | Token Bound Account | 01-04-2024 | π |
| Tapioca Magnetar | Omnichain/Lending | 12-04-2024 | π |
| Ubiquity Dollar | Stablecoin | 18-04-2024 | π |
| Tapioca Bar | Omnichain/Lending | 15-05-2024 | π |
| Arcadia | Lending | 27-06-2024 | π |
| Amplified | Yield Management | 18-09-2024 | π |
| Ethereum Foundation | Pectra Upgrade | 28-10-2024 | π |
| Mellow | AMM | 20-11-2024 | TBD |
| Dodo | AMM | 23-12-2024 | TBD |
| Beraborrow | Stablecoin | 27-01-2025 | TBD |
| 40Acres | Lending | 24-03-2025 | TBD |
| Bounty | Platform | Severity | Date | Report |
|---|---|---|---|---|
| Yearn Finance: Improper strategy parameters adjustment due to incorrect loss accounting | Immunefi | Low | 04-04-2023 | π |
IPOR: DoS in LiquidityMining's updateIndicators() and calculateAccruedRewards() due to missing loop variable increment |
Immunefi | Low | 15-10-2023 | π |
| Safe: Tracking nonce in each Safe individually can lead to transactions being replayed | Immunefi | Low | 18-11-2023 | π |
| IPOR: AmmPoolsServiceEth is vulnerable to inflation attacks | Immunefi | High | 30-11-2023 | π |
| Renzo | Immunefi | High | 12-04-2024 | Private |