Skip to content

securing/eth-rd-messenger

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
css
css
 
 
fonts
fonts
 
 
js
js
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
_config.yml
_config.yml
 
 
index.html
index.html
 
 

Repository files navigation

Ethereum Responsible Disclosure Messenger (by @drdr_zz).

Check it out right now: https://securing.github.io/eth-rd-messenger/

This tool is used to:

  • send a secret message to the owner of a personal or contract Ethereum address, encypted with its owner ECC public key,
  • decrypt the message sent to the personal address or contract's owner.

Motivation

When doing research in the field of Ethereum Smart Contract security I came across a problem in finding the owner of the vulnerable contracts. This is particularly important for publicly available smart contracts, where time plays a crucial role.

When you, as an ethical hacker, want to report the vulnerability you can either:

  • exploit it illegally and start looking for the owner (we don't want to do that), or
  • start looking for the owner and hope that noone exploits the vulnerability (we don't want to do that either).

I want to use this tool for Responsible Disclosure. I firstly leave the encrypted, unmodifiable and undeniable message (in the end it's blockchain) where to find the stolen Ether and then exploit the vulnerability.

About

Ethereum Responsible Disclosure Messenger

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

5 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages