Exploiting weak on-chain randomness using a smart contract. Learn how transaction execution order and historical block data make deterministic randomness highly exploitable.
Exploiting a simple typographical error in a smart contract constructor. Learn how a single character typo can turn a critical initialization function into a public exploit vector.
Exploiting msg.value reuse in batch processing. Learn how to combine Uniswap V2 flash swaps with a faulty NFT marketplace loop to drain an entire collection for the price of one.
Claim ownership and drain the contract by exploiting weak access control in the receive fallback function. Learn about Solidity receive/fallback mechanics and the critical importance of secure defaults.