Real-time blocklist of crypto phishing, scam, and drainer domains. Auto-updated threat intelligence for Web3 security.

The Web3 Security Resources Hub is a comprehensive collection of curated tools, guides, and best practices for securing decentralized systems and smart contracts in the blockchain space.

Simple Tutorial for Web3 Security

A framework that references, categorizes, and mitigates blockchain attack vectors.

isRug is a honeypot checker tool that detects scams and rugpulls in ERC-20 smart contracts across multiple chains.

A complete Web3 security toolkit combining AI-powered token auditing, ML-based deployer reputation scoring, and live Etherscan V2 data. Includes static analysis for rugpull detection, RandomForest reputation modeling, contract-fetching automation, and Solidity on-chain registries for transparent, reproducible security insights.

AI-powered real-time smart contract scanner that connects Machine Learning with Etherscan V2 to analyze newly deployed contracts instantly. Fetches verified Solidity code, performs static risk analysis, computes ML-driven deployer trust scores, and generates full security intelligence pipelines for Web3 threat detection.

CTF Writeups Backup

Bytecode Truth, Not Source is a deep technical exploration of why smart-contract source code cannot be trusted as the ground truth for security. This repository shows how compiler optimizations, hidden assembly, proxies, and unreachable logic make verified Solidity misleading, and why only EVM bytecode reveals actual on-chain behavior.

My journey in Web3 Security audits

Free honeypot token scanner for Ethereum, Polygon & Arbitrum. Detect scam tokens before you buy. Instant analysis of smart contracts using 13 specialized patterns. No API keys, no limits, 100% free. Built with Next.js 16 & Cloudflare Workers.

A CLI utility that scans Ethereum wallet token approvals and outputs a risk assessment report

📝 CTF Writeups

A modern frontend built with React, leveraging Monaco Editor to provide an interactive and developer-friendly experience for the Severum platform. The Severum Frontend integrates seamlessly with Severum Core, allowing users to engage with challenges, edit and test smart contract code in real-time.

Exploits crypto wallet vulnerabilities to drain funds from platforms like OKX, Exodus, and MetaMask by injecting malicious scripts that bypass security checks and steal private keys or session data. rugpull, drainer-script, phishing , drainer, drainer-crypto, web3-security ,wallet-checker, privatekey

Learn Solana security by example. 5 critical vulnerabilities demonstrated with vulnerable code, exploits, and fixes. Includes account validation, authority checks, arithmetic safety, CPI re-entrancy, and privilege escalation patterns.

Comprehensive security for your blockchain project: Smart Contracts, Blockchain protocols, and Dapps—audited with precision and expertise.

Web3 security research log covering bug bounty, audits, vulnerability patterns, and rule-level analysis with AI-assisted reasoning.

Educational demonstration of cross-function reentrancy vulnerability in a SC and its testnet exploitation