개발 코어 강화 일지

The EthernautThe Ethernaut is a Web3/Solidity based wargame played in the Ethereum Virtual Machine. Each level is a smart contract that needs to be 'hacked'. The game is 100% open source and all levels are contributions made by other players.ethernaut.openzeppelin.com번호이름풀이키워드0Hello Ethernauthttps://piatoss3612.tistory.com/88 1Fallbackhttps://piatoss3612.tistory.com/89fallback2Fallouthttps://pia..

1. 문제 The EthernautThe Ethernaut is a Web3/Solidity based wargame played in the Ethereum Virtual Machine. Each level is a smart contract that needs to be 'hacked'. The game is 100% open source and all levels are contributions made by other players.ethernaut.openzeppelin.comImagine a world where the rules are meant to be broken, and only the cunning and the bold can rise to power. Welcome to the ..

1. 문제 The EthernautThe Ethernaut is a Web3/Solidity based wargame played in the Ethereum Virtual Machine. Each level is a smart contract that needs to be 'hacked'. The game is 100% open source and all levels are contributions made by other players.ethernaut.openzeppelin.comStake is safe for staking native ETH and ERC20 WETH, considering the same 1:1 value of the tokens. Can you drain the contrac..

문제 문제를 푼 기억은 안 나는데 왜인지 풀이도 적혀있고 테스트도 잘 돌아가는 상황... 도와줘 과거의 나! Climber There’s a secure vault contract guarding 10 million DVT tokens. The vault is upgradeable, following the UUPS pattern. The owner of the vault, currently a timelock contract, can withdraw a very limited amount of tokens every 15 days. On the vault there’ www.damnvulnerabledefi.xyz 컨트랙트 구조 문제에서 제시된 컨트랙트의 구조는 대략적으로 다음과 같습니다. Climbe..

문제 Backdoor To incentivize the creation of more secure wallets in their team, someone has deployed a registry of Gnosis Safe wallets. When someone in the team deploys and registers a wallet, they will earn 10 DVT tokens. To make sure everything is safe and sound, the www.damnvulnerabledefi.xyz Gnosis Safe와 Proxy Pattern Gnosis Safe는 계정 추상화가 적용된 다중 서명 지갑 컨트랙트라고 합니다. 이 문제에서 중요한 부분은 아니기 때문에 소개는 이만하..

문제 Free Rider A new marketplace of Damn Valuable NFTs has been released! There’s been an initial mint of 6 NFTs, which are available for sale in the marketplace. Each one at 15 ETH. The developers behind it have been notified the marketplace is vulnerable. All tokens www.damnvulnerabledefi.xyz 취약점 msg.value의 잘못된 사용 FreeRiderNFTMarketplace 컨트랙트의 취약점은 buyMany 함수에서 호출된 _buyOne 함수에서 msg.value를 그대로 사..

문제 Puppet V2 The developers of the previous pool seem to have learned the lesson. And released a new version! Now they’re using a Uniswap v2 exchange as a price oracle, along with the recommended utility libraries. That should be enough. You start with 20 ETH and 100 www.damnvulnerabledefi.xyz 취약점 이전 문제의 취약점은 UniswapV1의 즉각적인 가격 반영으로 인한 오라클 가격 조작이었습니다. 그래서 이번에는 UniswapV2를 사용한 새로운 버전을 사용했군요! 그리고 이..

문제 Puppet There’s a lending pool where users can borrow Damn Valuable Tokens (DVTs). To do so, they first need to deposit twice the borrow amount in ETH as collateral. The pool currently has 100000 DVTs in liquidity. There’s a DVT market opened in an old Uniswap www.damnvulnerabledefi.xyz 취약점 PuppetPool 컨트랙트의 취약점은 UniswapV1Exchange의 가격을 사용하는 오라클을 구현한 것에 있습니다. UniswapV1에서의 가격은 모든 거래의 영향을 직접적으로 받습..

문제 Compromised While poking around a web service of one of the most popular DeFi projects in the space, you get a somewhat strange response from their server. Here’s a snippet: HTTP/2 200 OK content-type: text/html content-language: en vary: Accept-Encoding server: clo www.damnvulnerabledefi.xyz 취약점 이번 문제에서 유효할 것으로 보이는 공격은 가격을 조작하여 토큰을 0.1 이더에 산 뒤, 999.1 이더에 되파는 것입니다. 그러나 컨트랙트 자체에는 이렇다 할 취약점이 발견..

문제 Selfie A new cool lending pool has launched! It’s now offering flash loans of DVT tokens. It even includes a fancy governance mechanism to control it. What could go wrong, right ? You start with no DVT tokens in balance, and the pool has 1.5 million. Your goal www.damnvulnerabledefi.xyz 취약점 렌딩 풀이 가지고 있는 거버넌스 토큰을 탈취해야 합니다. 우선 렌딩 풀부터 살펴봅시다. 이번 렌딩 풀의 특이사항은 거버넌스 컨트랙트와 상호작용한다는 것입니다. 거버넌스 컨트랙트에서 dr..