Live Training #7 - Smart Contract Security #2
Learn to create smart contract audits
Your Instructor
Souhail Mssassi
$97
Course Details
Duration: 1 hour
Students: 886
Last Updated: Jul 13, 2021
Prerequisites
- Basic Javascript Knowledge
- Experience
Content
- Offensive security
- Audit methodology
- Detect critical endpoints in smart contracts
- The SWC Register
- Exploit Solidity vulnerabilities
- Static analysis
- Dynamic analysis
Course Outcome
- Learn how to audit smart contracts
- Learn how to use security tools
Course Description
What is the highest paid skill in the Blockchain industry?
Security.
As a smart contract security specialist, you can earn up to 250k USD / year.
Yep.
Hundreds of millions have been lost to smart contract hacks.
If you can write safe smart contracts, it's worth a LOT of money.
And in the security niche, smart contract audits is what pays the most.
Blockchain companies pay hundreds of thousands of dollars for a single smart contract audit.
In a smart contract audit, there are 2 components:
Finding security vulnerabilities
Presenting your findings in a report
The mindset to have is different than for a developer who try to write a safe smart contract.
As a smart contract auditor, you put yourself in the shoes of a hacker and try to exploit security vulnerability, if any.
In this training, you will learn from a professional security specialist how to do smart contract audits.
After this training, you will be able to do your own smart contract audits and charge top dollars for it!
LIVE EVENT
When is the training?
July 20th, 11pm UTC+8
If you cannot access the live event, you will still be able to access the recording after
PART I: OFFENSIVE SECURITY IN SMART CONTRACTS
The Mindset of a Pentester
Types of Scan:
Manual Scanning
Static Analysis
Dynamic Analysis
PART II: AUDIT METHODOLOGY
Black Box
Grey Box
White Box
How to write a report and risk assessment
PART III: DETECT CRITICAL ENDPOINTS IN SMART CONTRACTS
Solograph
Critical Functions Signature
PART VI: THE SWC REGISTER (SMART CONTRACT WEAKNESS CLASSIFICATION)
PART V: EXPLOIT SOLIDITY VULNERABILITIES
Detect and Exploit Re-Entrancy Attacks
Detect and Exploit Integer overflow/underflow
Detect Denial of Service
Force Sending Ether
Bypass the Tx.Origin Authentication
PART VI: STATIC ANALYSIS
Use Slither to detect Solidity issues
PART VII: DYNAMIC ANALYSIS
MythX
Manticore
Security.
As a smart contract security specialist, you can earn up to 250k USD / year.
Yep.
Hundreds of millions have been lost to smart contract hacks.
If you can write safe smart contracts, it's worth a LOT of money.
And in the security niche, smart contract audits is what pays the most.
Blockchain companies pay hundreds of thousands of dollars for a single smart contract audit.
In a smart contract audit, there are 2 components:
Finding security vulnerabilities
Presenting your findings in a report
The mindset to have is different than for a developer who try to write a safe smart contract.
As a smart contract auditor, you put yourself in the shoes of a hacker and try to exploit security vulnerability, if any.
In this training, you will learn from a professional security specialist how to do smart contract audits.
After this training, you will be able to do your own smart contract audits and charge top dollars for it!
LIVE EVENT
When is the training?
July 20th, 11pm UTC+8
If you cannot access the live event, you will still be able to access the recording after
PART I: OFFENSIVE SECURITY IN SMART CONTRACTS
The Mindset of a Pentester
Types of Scan:
Manual Scanning
Static Analysis
Dynamic Analysis
PART II: AUDIT METHODOLOGY
Black Box
Grey Box
White Box
How to write a report and risk assessment
PART III: DETECT CRITICAL ENDPOINTS IN SMART CONTRACTS
Solograph
Critical Functions Signature
PART VI: THE SWC REGISTER (SMART CONTRACT WEAKNESS CLASSIFICATION)
PART V: EXPLOIT SOLIDITY VULNERABILITIES
Detect and Exploit Re-Entrancy Attacks
Detect and Exploit Integer overflow/underflow
Detect Denial of Service
Force Sending Ether
Bypass the Tx.Origin Authentication
PART VI: STATIC ANALYSIS
Use Slither to detect Solidity issues
PART VII: DYNAMIC ANALYSIS
MythX
Manticore
Curriculum
Meet Your Instructor
Souhail Mssassi
With more than 8 years of experience in cybersecurity as an offensive Security Engineer specialized in application security, cryptography and security of decentralized applications he assisted several organizations in improving their own cybersecurity strategy.
And as an Instructor and a Speaker he presented Security lectures in universities and Conferences.
Recently researching on Formal Verification in the cybersecurity Field.
Invest in Yourself & Kickstart Your Web3 Career
Unlock access to all our video courses and our private community
Yearly Plan
Yearly Full Access
- ✓ Access to all courses
- ✓ Access to all lab projects
- ✓ Access to the discord community
- ✓ Support via chat and email
- ✓ Save $1164
SAVE $1164
Monthly Plan
Monthly Full Access
- ✓ Access to all courses
- ✓ Access to all lab projects
- ✓ Access to the discord community
- ✓ Support via chat and email
Partners
Polygon
Consensys
Chainlink