Talks
DEFCON 28 BlockChain Village: Exploit Insecure Crypto Wallet
https://www.youtube.com/watch?v=oJaNiXVvE88
================================================================
Security workshop with Binance Smart Chain: Understanding Security Risks in DeFi
https://www.youtube.com/watch?v=ErvOqJZB5lU&t=172s
================================================================
Security risks in DeFi(Guest speaker for the Blockchain Cyberdefense Design Challenge at the Columbia university)
https://docs.google.com/presentation/d/1x8iAy-Hind7wAiUkTWSe_FG9VpWPFOXAbiR2hIwNqzc/edit?usp=sharing
================================================================
DEFCON 29 BlockChain Village: Evils in the DeFi world
================================================================
Articles
After I join CertiK as a Security Engineer, my articles(write-ups, vulnerability analysis, etc) were posted under CertiK’s website and medium. Here is a list of them:
Exploring the BRC-20 Token Standard: An Introduction
================================================================
2022 Year in Review – Crypto Wallet Security Incidents
================================================================
Upgradeable Proxy Contract Security Best Practices
================================================================
Uranium Finance Exploit – Technical Analysis
https://www.shentu.technology/blog/uranium-finance-exploit-technical-analysis
================================================================
Crypto Wallet Security Assessment Checklist
https://certik-io.medium.com/crypto-wallet-security-assessment-checklist-a977e3e80b99
================================================================
Blockchain explorer Denial-of-Service (DoS) attacks
https://certik.io/blog/technology/is-your-blockchain-safe-from-denial-of-service-dos-attacks/#home
================================================================
CVE-2020–5902 Analysis, F5 BIG-IP RCE vulnerability
https://medium.com/certik/cve-2020-5902-analysis-f5-big-ip-rce-vulnerability-3a3ae6278128
================================================================
Bug bounty write up: remote code execution in Electron desktop crypto wallet.
================================================================
Bancor smart contract vulnerability analysis
================================================================