Skip to main content

Multiversity​

The meaning of Multiversity is a large university with many different departments. We hope this resource becomes a collection of all the resources useful for Hackers and Developers of various Blockchains to learn, develop and contribute.

The Hacker DAO​

WeFuzz is working with community to build the Hacker DAO, a fully decentralized, community owned, crowdsourced security audit and bug bounty platform: allowing developers and companies to get their smart contracts, blockchains, websites and other applications audited by the auditors and hackers community.

Join the Hacker DAO here: Discord and follow us on Twitter to watch our progress.

Table of Contents​

Blockchains are revolutionary technologies that allow for secure, distributed, decentralized information storage. Blockchains disrupt the finance industry via DeFi, governance via DAOs, and collectibles via NFTs. Over the past few years, the blockchain has taken the engineering landscape by storm. However, due to the relative newness of blockchain compared to traditional technologies, its use is still hindered by speculation, confusion, uncertainty, and risk.

In this resource, you will take a holistic look at security, from the theoretical foundations of the blockchain and smart contracts to finding and exploiting vulnerabilities in smart contracts.

First, this course will give you the prerequisites to understand blockchain and smart contracts' architecture and major components. Then, it takes you through creating and setting up a development and testing environment allowing you to efficiently build, deploy and debug smart contracts on the local testnet. You will also get to learn how to find vulnerabilities and exploit vulnerabilities in the local testing environment.

Some of the skills and techniques you will learn are:

  • How to interact with and get data from public blockchains
  • How to write smart contracts in Solidity
  • How to find vulnerabilities in smart contract
  • How to test and exploit vulnerabilities in smart contracts

Introduction​

What Is Blockchain?​

  • Definitions and Origins
  • Types of Distributed Consensus
  • Purposes and Uses Cases
  • Brief introduction to Consensus mechanisms [Proof of Work/Mining/Proof of Stake]

Cryptography, Keys and Wallets​

  • Hashing Functions
  • Wallets
  • Mnemonic Keys

What Is a Smart Contract?​

  • Introduction to Smart Contracts
  • Smart Contract Use Cases and Platforms
  • A brief history of smart contracts hacks

Introduction to Ethereum​

  • Ethereum Architecture
  • Ethereum block Explorers
  • Components of a Transaction
  • API, Nodes, and Clients

Smart Contracts​

The Smart Contract Lifecycle​

  • The Architecture and Concepts of Ethereum
  • Tools for the Ethereum Blockchain

Introduction to Solidity​

  • Solidity language description
  • Layout of State Variables in Storage & Memory
  • Contract ABI Specification
  • Compiling a Contract
  • Deploying a Contract
  • Interacting with a Smart Contract

Introduction to Solana Programs​

  • Solidity language description
  • Layout of State Variables in Storage & Memory
  • Contract ABI Specification
  • Compiling a Contract
  • Deploying a Contract
  • Interacting with a Smart Contract

Vulnerabilities and Exploits đŸ’Ŗ​

Common Vulnerabilities​

Attacks​

Post-mortem Reports​

Reports​

Tools​

Static and Dynamic testing​

  • Static Analysis
  • Visualization Tools
  • Dynamic Analysis
  • Decompilers, Emulators and More

Capture The Flags​

  • Damn Vulnerable DeFi
  • Ethernaut
  • Capture the Ether
  • Blockchain CTF
  • Paradigm CTF (2021)
  • Cipher Shastra
  • Unhacked CTF
  • Vyper Punk
  • Sherlock CTF
  • Ethereum Hacker
  • Immunefi Community Challenges
  • EtherHack
  • A collection of Solana CTF challenges

Disclaimer​

This content is for educational purpose only.