Balancer V2 Hack Explained

By tim on

Since the first alert on the Balancer hack that occurred on Nov 3rd, our team was waiting for a post mortem or a deep-dive article explaining the issues in the BalancerV2 code base and the actual, low-level root cause of the exploit. While lots of researchers had already published their…

How we trained LLM to find reentrancy vulnerabilities in smart contracts

By tim on

We trained a CodeBERT model on a small dataset of manually selected reentrancy vulnerability examples, outperformed every static analysis tool at the time and found a couple real-world cases where DeFi projects and DAO admins could withdraw all tokens from the contract. Reentrancy vulnerabilities: a short recap For a broad…