Nothing found.

Latest stories

Security audits

Eco Contracts Audit

The Eco team asked us to review and audit the contracts for their open payment network. We looked at the code and have…

Read More

by OpenZeppelin Security

Perspectives

A Year of Research at OpenZeppelin

It's been a busy 2019 for our dearest Research team. These are the main highlights of the year!.

Read More

by tinchoabbate

Guides

Deep dive into the Minimal Proxy contract

In this deep dive into low-level EVM code, you will learn how to code a Minimal Proxy (EIP 1167) from scratch, no…

Read More

by tinchoabbate

Our most popular audit reports

Nothing found.

SEE ALL >
More stories

Security audits

Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.

Security audits

OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler

We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.

Security audits

PROPS Rewards Engine Contracts Audit

The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.

Security audits

PROPS Token Contracts Audit

The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.

Security audits

Compound Finance Audit Summary

Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.

Security audits

Compound Audit

The Compound team asked us to review and audit their platform's smart contracts. We examined their code and our results are published here.

AnnouncementsGuides

Build your app with the Gas Station Network

The Gas Station Network, or GSN for short, is a decentralized solution for solving user onboarding to Ethereum applications. It allows you as an app developer to pay for your users' transactions...

Security audits

Bypassing Smart Contract Timelocks

In this article, we look at a game theoretical attack against smart contract timelock systems that allows the beneficiary (i.e., the early ICO investor or the company founder)...

Announcements

GSN: The Ultimate Ethereum Onboarding Solution

Gas Station Network is an open-source service that allows developers to create unique decentralized applications that are indistinguishable from

Security audits

Exploiting Uniswap: from reentrancy to actual profit

Uniswap is a public, open-source protocol to exchange tokens in Ethereum. In Uniswap, there is a separate exchange contract for each token. While it was designed to seamlessly work with ERC20…

More stories

Security audits

Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.

Security audits

OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler

We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.

Security audits

PROPS Rewards Engine Contracts Audit

The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.

Security audits

PROPS Token Contracts Audit

The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.

Security audits

Compound Finance Audit Summary

Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.

Security audits

Compound Audit

The Compound team asked us to review and audit their platform's smart contracts. We examined their code and our results are published here.

AnnouncementsGuides

Build your app with the Gas Station Network

The Gas Station Network, or GSN for short, is a decentralized solution for solving user onboarding to Ethereum applications. It allows you as an app developer to pay for your users' transactions...

Security audits

Bypassing Smart Contract Timelocks

In this article, we look at a game theoretical attack against smart contract timelock systems that allows the beneficiary (i.e., the early ICO investor or the company founder)...

Announcements

GSN: The Ultimate Ethereum Onboarding Solution

Gas Station Network is an open-source service that allows developers to create unique decentralized applications that are indistinguishable from

Security audits

Exploiting Uniswap: from reentrancy to actual profit

Uniswap is a public, open-source protocol to exchange tokens in Ethereum. In Uniswap, there is a separate exchange contract for each token. While it was designed to seamlessly work with ERC20…