Skip to content

Research around Ethereum smart contract vulnerabilities (Detection/Secure Code Generation)

License

Notifications You must be signed in to change notification settings

darwindeveloper901/Ethereum-Smart-Contract-Vulnerability

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits
 
 
 
 
 
 
 
 

Repository files navigation

Ethereum-Smart-Contract-Vulnerability

Research around Ethereum smart contract vulnerabilities (Detection/Secure Code Generation)

[!] All pdf are available :)

Let's take a look on Ethereum :}

Oyente 👈 Making Smart Contracts Smarter
ref:https://dl.acm.org/doi/abs/10.1145/2976749.2978309

EthIR 👈 A Framework for High-Level Analysis of Ethereum Bytecode
ref:https://link.springer.com/chapter/10.1007/978-3-030-01090-4_30

Zeus 👈 Analyzing Safety of Smart Contracts
ref:http://pages.cpsc.ucalgary.ca/~joel.reardon/blockchain/readings/ndss2018_09-1_Kalra_paper.pdf

SmartCheck 👈 Static Analysis of Ethereum Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1145/3194113.3194115

Slither 👈 A Static Analysis Framework For Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1109/WETSEB.2019.00008

ReGuard 👈 Finding Reentrancy Bugs in Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1145/3183440.3183495

Manticore 👈 A User-Friendly Symbolic Execution Framework for Binaries and Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1109/ASE.2019.00133

MuSC 👈 A Tool for Mutation Testing of Ethereum Smart Contract
ref:https://dl.acm.org/doi/abs/10.1109/ASE.2019.00136

Securify 👈 Practical Security Analysis of Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1145/3243734.3243780

Mythril 👈 Smashing Ethereum Smart Contracts for Fun and Real Profit
ref:https://github.com/b-mueller/smashing-smart-contracts

SolAnalyser 👈 A Framework for Analysing and Testing Smart Contracts
ref:https://www.research.ed.ac.uk/en/publications/solanalyser-a-framework-for-analysing-and-testing-smart-contracts

Echidna 👈 effective, usable, and fast fuzzing for smart contracts
ref:https://dl.acm.org/doi/abs/10.1145/3395363.3404366

Artemis 👈 An Improved Smart Contract Verification Tool for Vulnerability Detection
ref:https://scholars.cityu.edu.hk/en/publications/publication(540f6e82-4908-4408-beef-521a653bcb2f).html

Vandal 👈 A Scalable Security Analysis Framework for Smart Contracts
ref:https://ui.adsabs.harvard.edu/abs/2018arXiv180903981B/abstract

NeuCheck 👈 A more practical Ethereum smart contract security analysis tool
ref:https://onlinelibrary.wiley.com/doi/abs/10.1002/spe.2745

sFuzz 👈 An Efficient Adaptive Fuzzer for Solidity Smart Contracts
ref:https://dl.acm.org/doi/abs/10.1145/3377811.3380334

echidna-parade 👈 a tool for diverse multicore smart contract fuzzing
ref:https://dl.acm.org/doi/abs/10.1145/3460319.3469076

Smartian 👈 Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses
ref:https://softsec.kaist.ac.kr/~jschoi/data/ase2021.pdf

Defectchecker 👈 Automated Smart Contract Defect Detection by Analyzing EVM Bytecode
ref:https://ieeexplore.ieee.org/abstract/document/9337195/

TokenHook 👈 Secure ERC-20 smart contract
ref:https://ui.adsabs.harvard.edu/abs/2021arXiv210702997R/abstract

SmartInspect 👈 Solidity Smart Contract Inspector
ref:https://www.computer.org/csdl/proceedings-article/iwbose/2018/08327566/12OmNwpGgGD

Porosity 👈 A Decompiler For Blockchain-Based Smart Contracts Bytecode
ref:https://infocon.org/cons/DEF%20CON/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEF%20CON%2025%20-%20Matt-Suiche-Porosity-Decompiling-Ethereum-Smart-Contracts-WP.pdf

MadMax 👈 surviving out-of-gas conditions in Ethereum smart contracts
ref:https://dl.acm.org/doi/abs/10.1145/3276486

Reentrancy vulnerability identification 👈 Reentrancy Vulnerability Identification in Ethereum Smart Contracts
ref:https://www.computer.org/csdl/proceedings-article/iwbose/2020/09050260/1iES4PuwIs8

SmartAnvil 👈 Open-Source Tool Suite for Smart Contract Analysis
ref:https://hal.inria.fr/hal-01940287/file/Duca18a-BookChapter-SmartAnvil.pdf

Ethploit 👈 From Fuzzing to Efficient Exploit Generation against Smart Contracts
ref:https://www.computer.org/csdl/proceedings-article/saner/2020/09054822/1iHVa68uXy8

Ethainter 👈 A Smart Contract Security Analyzer for Composite Vulnerabilities
ref:https://dl.acm.org/doi/abs/10.1145/3385412.3385990

VeriSolid 👈 Correct-by-Design Smart Contracts for Ethereum
ref:https://aronlaszka.com/papers/mavridou2019verisolid.pdf

Secure Code Generation for Ethereum :}

FSolidM 👈 Tool Demonstration: FSolidM for Designing Secure Ethereum Smart Contracts
ref:https://www.aronlaszka.com/papers/mavridou2018tool.pdf

Quartz 👈 A Framework for Engineering Secure Smart Contracts
ref:https://www2.eecs.berkeley.edu/Pubs/TechRpts/2020/EECS-2020-178.pdf

secure smart contract generation 👈 Secure smart contract generation based on petri nets
ref:https://link.springer.com/chapter/10.1007/978-981-15-1137-0_4

iContractML 👈 A Domain-Specific Language for Modeling and Deploying Smart Contracts onto Multiple Blockchain Platforms
ref:https://dl.acm.org/doi/abs/10.1145/3419804.3421454

ICML 👈 Domain Specific Language for Smart Contract Development
ref:https://ieeexplore.ieee.org/abstract/document/9169399/

Building Executable Secure Design Models 👈 Building Executable Secure Design Models for Smart Contracts with Formal Methods
ref:https://ui.adsabs.harvard.edu/abs/2019arXiv191204051X/abstract

Greate sites for learning more (advance topic) :}

🎂 vulnerability blog https://blog.sigmaprime.io/
🎂 Smart contract weakness classification https://swcregistry.io/
🎂 Nicola Atzei Thesis https://iris.unica.it/retrieve/handle/11584/261568/331756/main.pdf
🎂 watch vulnerable contract onchain https://contract-library.com/
🎂 Decentralized Application Security Project https://www.dasp.co/#item-1
🎂 Solidity Hacks https://solidity-by-example.org/hacks/

About

Research around Ethereum smart contract vulnerabilities (Detection/Secure Code Generation)

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published