web3 security is embarrasing, by a. macpherson (2024)

basic_knowledge/README.md

@@ -17,42 +17,55 @@
 
 <br>
 
+#### cool readings
+
 * **[swc registry](https://swcregistry.io/)**
-* **[intro to security first dev](https://www.youtube.com/watch?v=72K57I9yvyI)**
 * **[spoof tokens on ethereum](https://medium.com/etherscan-blog/spoof-tokens-on-ethereum-c2ad882d9cf6)**
-* **[solidity security mind map](https://github.com/x676f64/secureum-mind_map)**
-* **[pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/4.%20Pitfalls%20and%20Best%20Practices%20101.md)**
 * **[uniswap oracle attack simulator, by euler](https://blog.euler.finance/uniswap-oracle-attack-simulator-42d18adf65af)**
-* **[thinking about smart contract security, by vitalik](https://blog.ethereum.org/2016/06/19/thinking-smart-contract-security/)**
+* **[thinking about smart contract security, by vub](https://blog.ethereum.org/2016/06/19/thinking-smart-contract-security/)**
-* **[advanced pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/5.%20Pitfalls%20and%20Best%20Practices%20201.md)**
-* **[the evolution of smart contract security](https://www.youtube.com/watch?v=fOkQuNzVn_Q)**
-* **[audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/7.%20Audit%20Findings%20101.md)**
-* **[advanced audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/8.%20Audit%20Findings%20201.md)**
 * **[account abstraction's impact on security and ux](https://blog.openzeppelin.com/account-abstractions-impact-on-security-and-user-experience)**
-* **[video on audit findings](https://www.youtube.com/watch?v=SromSImIpHE)**
+* **[smart contract audit checklist](https://consensys.net/diligence/blog/2019/09/how-to-prepare-for-a-smart-contract-audit/)**
+* **[ethereum signature database](https://www.4byte.directory/)**
+* **[rekt leaderboard](https://rekt.news/leaderboard/)**
+* **[list of known attack vectors](https://blog.sigmaprime.io/solidity-security.html)**
+* **[comprehensive analysis of phishing attacks on blockchain](https://mirror.xyz/x-explore.eth/z-QBZUMa3s9BOku4ixTCvmYyeACdFVqRlHvm6XdzvVA)**
+* **[defi hacks analysis and root causes](https://wooded-meter-1d8.notion.site/0e85e02c5ed34df3855ea9f3ca40f53b?v=22e5e2c506ef4caeb40b4f78e23517ee)**
+* **[smart contract security course by cyfrin updraft](https://updraft.cyfrin.io/courses/security)**
+* **[the forgotten ipfs vulnerabilities](https://diligence.consensys.io/blog/2022/09/the-forgotten-ipfs-vulnerabilities/)**
+* **[pow 51% attack cost per each chain](https://www.crypto51.app)**
+
+<br>
+
+#### cool tools
+
+* **[solidity security mind map](https://github.com/x676f64/secureum-mind_map)**
+* **[advanced pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/5.%20Pitfalls%20and%20Best%20Practices%20201.md)**
+* **[audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/7.%20Audit%20Findings%20101.md)**
+* **[another audit checklist](https://github.com/nascentxyz/simple-security-toolkit)**
+* **[opsec selfguard roadmap](https://github.com/OffcierCia/Crypto-OpSec-SelfGuard-RoadMap)**
+* **[the solcurity standard](https://github.com/Rari-Capital/solcurity)**
+* **[smart contract attack vectors](https://github.com/KadenZipfel/smart-contract-attack-vectors)**
+* **[awesome privacy](https://github.com/Lissy93/awesome-privacy)**
+* **[security and auditing full course 2023](https://github.com/Cyfrin/security-and-auditing-full-course-s23)**
+* **[awesome ethereum security](https://github.com/crytic/awesome-ethereum-security)**
+* **[smart contract security verification standard](https://github.com/securing/SCSVS)**
 * **[sigp public audits](https://github.com/sigp/public-audits)**
+* **[publications from trail of bits](https://github.com/trailofbits/publications#blockchain)**
+* **[pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/4.%20Pitfalls%20and%20Best%20Practices%20101.md)**
+* **[advanced audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/8.%20Audit%20Findings%20201.md)**
+
+<br>
+
+#### cool talks
+
+* **[web3 security is embarrasing, by a. macpherson (2024)](https://www.youtube.com/watch?v=4dr7sL42GAw)**
+* **[intro to security first dev](https://www.youtube.com/watch?v=72K57I9yvyI)**
+* **[the evolution of smart contract security](https://www.youtube.com/watch?v=fOkQuNzVn_Q)**
+* **[smart contract security fundamentals, by openzeppelin](https://www.youtube.com/playlist?list=PLBy3Qkuapv_7R1ZI_Cs2NOFn7ZTaNWY6G)**
+* **[white hat panel: defi exploits](https://www.youtube.com/watch?v=Df2zzfoTfMc)**
 * **[the dangers of price oracles in smart contracts](https://www.youtube.com/watch?v=YGO7nzpXCeA&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=5)**
 * **[strategies for secure governance with smart contracts](https://www.youtube.com/watch?v=GbDAmMdmh8Q&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=6)**
 * **[security in upgrades of smart contracts](https://www.youtube.com/watch?v=5WE6PEc305w&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=7)**
 * **[onward with smart contract security](https://www.youtube.com/watch?v=RipXdV7vygs&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=8)**
-* **[publications from trail of bits](https://github.com/trailofbits/publications#blockchain)**
+* **[video on audit findings](https://www.youtube.com/watch?v=SromSImIpHE)**
-* **[smart contract security fundamentals, by openzeppelin](https://www.youtube.com/playlist?list=PLBy3Qkuapv_7R1ZI_Cs2NOFn7ZTaNWY6G)**
+  
-* **[white hat panel: defi exploits](https://www.youtube.com/watch?v=Df2zzfoTfMc)**
-* **[smart contract audit checklist](https://consensys.net/diligence/blog/2019/09/how-to-prepare-for-a-smart-contract-audit/)**
-* **[another audit checklist](https://github.com/nascentxyz/simple-security-toolkit)**
-* **[ethereum signature database](https://www.4byte.directory/)**
-* **[opsec selfguard roadmap](https://github.com/OffcierCia/Crypto-OpSec-SelfGuard-RoadMap)**
-* **[the solcurity standard](https://github.com/Rari-Capital/solcurity)**
-* **[smart contract security verification standard](https://github.com/securing/SCSVS)**
-* **[rekt leaderboard](https://rekt.news/leaderboard/)**
-* **[smart contract attack vectors](https://github.com/KadenZipfel/smart-contract-attack-vectors)**
-* **[list of known attack vectors](https://blog.sigmaprime.io/solidity-security.html)**
-* **[awesome ethereum security](https://github.com/crytic/awesome-ethereum-security)**
-* **[bug bounty 101](https://www.youtube.com/watch?v=S-Z2iwbT1Fg)**
-* **[comprehensive analysis of phishing attacks on blockchain](https://mirror.xyz/x-explore.eth/z-QBZUMa3s9BOku4ixTCvmYyeACdFVqRlHvm6XdzvVA)**
-* **[defi hacks analysis and root causes](https://wooded-meter-1d8.notion.site/0e85e02c5ed34df3855ea9f3ca40f53b?v=22e5e2c506ef4caeb40b4f78e23517ee)**
-* **[awesome privacy](https://github.com/Lissy93/awesome-privacy)**
-* **[security and auditing full course 2023](https://github.com/Cyfrin/security-and-auditing-full-course-s23)**
-* **[smart contract security course by cyfrin updraft](https://updraft.cyfrin.io/courses/security)**
-* **[the forgotten ipfs vulnerabilities](https://diligence.consensys.io/blog/2022/09/the-forgotten-ipfs-vulnerabilities/)**
-* **[pow 51% attack cost per each chain](https://www.crypto51.app)**