diff --git a/basic_knowledge/README.md b/basic_knowledge/README.md new file mode 100644 index 0000000..7fce9da --- /dev/null +++ b/basic_knowledge/README.md @@ -0,0 +1,40 @@ +### security resources + +
+ +* [SWC Registry](https://swcregistry.io/) +* [Blockchain Security Database](https://consensys.github.io/blockchainSecurityDB/) +* [Intro to Security first dev](https://www.youtube.com/watch?v=72K57I9yvyI) +* [Spoof tokens on Ethereum](https://medium.com/etherscan-blog/spoof-tokens-on-ethereum-c2ad882d9cf6) +* [Solidity security mind map](https://github.com/x676f64/secureum-mind_map) +* [Pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/4.%20Pitfalls%20and%20Best%20Practices%20101.md) +* [Hacking the Blockchain by Immunefi](https://medium.com/immunefi/hacking-the-blockchain-an-ultimate-guide-4f34b33c6e8b) +* [Uniswap Oracle Attack Simulator by Euler](https://blog.euler.finance/uniswap-oracle-attack-simulator-42d18adf65af) +* [Thinking About Smart Contract Security by Vitalik](https://blog.ethereum.org/2016/06/19/thinking-smart-contract-security/) +* [Advanced Pitfalls and best practices](https://github.com/x676f64/secureum-mind_map/blob/master/5.%20Pitfalls%20and%20Best%20Practices%20201.md) +* [The Evolution of Smart Contract Security](https://www.youtube.com/watch?v=fOkQuNzVn_Q) +* [Audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/7.%20Audit%20Findings%20101.md) +* [Advanced audit findings](https://github.com/x676f64/secureum-mind_map/blob/master/8.%20Audit%20Findings%20201.md) +* [Video on audit findings](https://www.youtube.com/watch?v=SromSImIpHE) +* [Sigp public audits](https://github.com/sigp/public-audits) +* [The Dangers of Price Oracles in Smart Contracts](https://www.youtube.com/watch?v=YGO7nzpXCeA&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=5) +* [Strategies for Secure Governance with Smart Contracts](https://www.youtube.com/watch?v=GbDAmMdmh8Q&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=6) +* [Security in Upgrades of Smart Contracts](https://www.youtube.com/watch?v=5WE6PEc305w&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=7) +* [Onward with Smart Contract Security](https://www.youtube.com/watch?v=RipXdV7vygs&list=PLdJRkA9gCKOONBSlcifqLig_ZTyG_YLqz&index=8) +* [Publications from Trail of Bits](https://github.com/trailofbits/publications#blockchain) +* [Smart contract security fundamentals by OpenZeppelin](https://www.youtube.com/playlist?list=PLBy3Qkuapv_7R1ZI_Cs2NOFn7ZTaNWY6G) +* [White Hat panel: DeFi exploits](https://www.youtube.com/watch?v=Df2zzfoTfMc) +* [Smart contract audit checklist](https://consensys.net/diligence/blog/2019/09/how-to-prepare-for-a-smart-contract-audit/) +* [Another audit checklist](https://github.com/nascentxyz/simple-security-toolkit) +* [Ethereum signature database](https://www.4byte.directory/) +* [OpSec SelfGuard RoadMap](https://github.com/OffcierCia/Crypto-OpSec-SelfGuard-RoadMap) +* [The Solcurity Standard](https://github.com/Rari-Capital/solcurity) +* [Smart Contract Security Verification Standard](https://github.com/securing/SCSVS) +* [SecurETH Guidelines](https://guidelines.secureth.org/) +* [REKT leaderboard](https://rekt.news/leaderboard/) +* [Smart Contract Attack Vectors](https://github.com/KadenZipfel/smart-contract-attack-vectors) +* [List of known attack vectors](https://blog.sigmaprime.io/solidity-security.html) +* [Awesome Ethereum security](https://github.com/crytic/awesome-ethereum-security) +* [Bug Bounty 101](https://www.youtube.com/watch?v=S-Z2iwbT1Fg) +* [DeFi hacks analysis and root causes](https://wooded-meter-1d8.notion.site/0e85e02c5ed34df3855ea9f3ca40f53b?v=22e5e2c506ef4caeb40b4f78e23517ee) +* [awesome privacy](https://github.com/Lissy93/awesome-privacy)