Smart-contract security Available
Drain the lending vault
Exploit a reentrancy flaw to drain an ETH lending vault, then read the checks-effects-interactions fix beside it.
CriticalIntermediate
Open lab →
▦ Labs
Pick a target. Break it. Read the fix.
Every lab is a faithful recreation of a real vulnerability class, running on a sandboxed testnet. You get a live objective, a live target, and the patched contract beside the flawed one.
Bridge security Coming soon
The validator majority
Recreate a Ronin-style validator-key compromise: obtain majority signatures and authorise a fraudulent withdrawal from a bridge.
CriticalAdvanced
Notify me →
Bridge security Coming soon
The forged signature
A Wormhole-style signature-verification bypass: slip a fabricated guardian signature past a missing validation step to mint unbacked tokens.
CriticalExpert
Notify me →
DeFi security Coming soon
Bend the oracle
Use a flash loan to skew a spot-price oracle, then borrow against the inflated collateral. Learn TWAP and manipulation-resistant feeds.
HighAdvanced
Notify me →
Smart-contract security Coming soon
Unchecked delegatecall
Collide proxy storage slots through an unguarded delegatecall and seize ownership of an upgradeable contract.
CriticalAdvanced
Notify me →
Wallet security Coming soon
Replay the signature
Replay a signed permit that never bound a nonce or chain id, draining approvals across transactions and chains.
HighIntermediate
Notify me →