{"id":13828,"date":"2024-02-16T05:56:29","date_gmt":"2024-02-16T05:56:29","guid":{"rendered":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/"},"modified":"2024-07-27T09:11:39","modified_gmt":"2024-07-27T09:11:39","slug":"smashing-smart-contracts-for-fun-and-real-profit-bkk2024","status":"publish","type":"product","link":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/","title":{"rendered":"Smashing Smart Contracts for Fun and Real Profit"},"content":{"rendered":"

ATTEND IN-PERSON<\/span><\/strong>: <\/span><\/strong>Onsite in Bangkok, Thailand<\/strong><\/h4>\n
\n
\n
\n

DATE: 26-28 August 2024<\/strong><\/h4>\n<\/div>\n

TIME: 09:00 to 17:00 ICT\/GMT+7<\/strong><\/h4>\n\n\n\n\n\n\n
Date<\/strong><\/td>\nDay<\/strong><\/td>\nTime<\/strong><\/td>\nDuration<\/strong><\/td>\n<\/tr>\n
26 Aug<\/td>\nMonday<\/td>\n0900-17:00 ICT\/GMT+7<\/td>\n8 Hours<\/td>\n<\/tr>\n
27 Aug<\/td>\nTuesday<\/td>\n0900-17:00 ICT\/GMT+7<\/td>\n8 Hours<\/td>\n<\/tr>\n
28 Aug<\/td>\nWednesday<\/td>\n0900-17:00 ICT\/GMT+7<\/td>\n8 Hours<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n
The Web3 industry has suffered significant consequences from cyber-attacks, resulting in a staggering loss of $1.84 billion in 2023. Unfortunately, the situation in 2024 and beyond appears even more alarming. Despite the widespread awareness of common smart contract vulnerabilities, developers continue to repeat the same mistakes, while security auditors also often overlook them.<\/h5>\n

Leveraging years of extensive research and invaluable insights, the Verichains team has compiled experience into this comprehensive training course. Participants will learn how to systematically categorize and analyze vulnerabilities of the past smart contracts, gaining a thorough understanding of these concepts. By the end of the course, participants will have acquired the necessary skills to audit smart contract and develop their own exploits. This will also enable them to effectively address vulnerabilities in their own codebase and mitigate potential risks.<\/p>\n

This course offers a comprehensive and practical learning experience based on industry insights and lessons from top Web3 security auditors. You’ll gain invaluable insights from experts who have discovered critical security vulnerabilities in key Web3 technologies like Smart contracts, MPC and ZKP, preventing potential losses amounting to billions of USD. Additionally, these experts have played key roles in incident response for major Web3 attack incidents, surpassing 1 billion USD in damages.<\/p>\n

This practical hacking course incorporates CTF-style hands-on challenges, allowing learners to understand concepts through practical experiments.<\/p>\n<\/div>\n<\/div>\n

 <\/p>\n

Key Learning Objectives<\/strong><\/h5>\n
    \n
  • In-deep knowledge about web3 contract in different languages<\/li>\n
  • Web3 security audit skills<\/li>\n
  • Web3 secure coding skills<\/li>\n
  • Foundry exploit\/test scripting skills<\/li>\n
  • Exploit transaction tracing skills<\/li>\n<\/ul>\n

     <\/p>\n

    Topics Covered \/ Agenda<\/strong><\/h5>\n

     <\/p>\n

    Day 1:<\/strong><\/h5>\n
    Review basic concepts about blockchain and Ethereum smart contract.<\/h5>\n

    Attacking Bridge contracts<\/strong>
    \n– Access control vulnerabilities
    \n– Signature issues
    \n– ecrecover() issues
    \n– Replay attack<\/p>\n

     <\/p>\n

    Day 2:<\/strong><\/h5>\n

    Attacking Vault, Staking contracts<\/strong>
    \n– Rounding issues
    \n– Inflation in ERC4626
    \n– Real flashloan attack via reentrancy
    \n– DoS unexpected revert
    \n– Incorrect handle of rewards
    \n– Incorrect handle of locktime in tokenized vault<\/p>\n

    Attacking AMM Dex, Router contracts<\/strong>
    \n– Incorrect handling of fee tokens
    \n– Price manipulation attacks
    \n– Arbitrary call (controlable target or calldata or both)
    \n– Incorrect token approvals
    \n– Phantom function vulnerability<\/p>\n

     <\/p>\n

    Day 3:<\/strong><\/h5>\n

    Attacking GameFi: NFT ecosystem<\/strong>
    \n– Reentrancy
    \n– Signature attacks
    \n– Front-running attacks
    \n– Random number generation attacks<\/p>\n

    Attacking Governance contracts<\/strong>
    \n– Security issue with selfdestruct
    \n– Re-deploy contract with the same address
    \n– Contract upgradeable issues<\/p>\n

    (Extra) Common vulnerabilities in Move contract (Aptos\/Sui)<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

    This advanced Smart Contract Security Course aims to provide developers and auditors with the information and skills required to identify and mitigate vulnerabilities in web3 solutions: – Explore top common bugs in Defi, GameFi, Bridge,… smart contracts in EVM based blockchains. – Explain what\/why\/how question when carry out a security audit. – Common vulnerabilities in other popular smart contract languages (e.g Move contract in Aptos\/Sui)<\/h6>\n","protected":false},"featured_media":13827,"template":"","meta":{"_acf_changed":false},"product_cat":[61,57],"product_tag":[],"class_list":{"0":"post-13828","1":"product","2":"type-product","3":"status-publish","4":"has-post-thumbnail","6":"product_cat-3-day-training","7":"product_cat-in-person","9":"first","10":"outofstock","11":"featured","12":"shipping-taxable","13":"purchasable","14":"product-type-simple"},"acf":[],"yoast_head":"\nSmashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Smashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok\" \/>\n<meta property=\"og:description\" content=\"This advanced Smart Contract Security Course aims to provide developers and auditors with the information and skills required to identify and mitigate vulnerabilities in web3 solutions: - Explore top common bugs in Defi, GameFi, Bridge,... smart contracts in EVM based blockchains. - Explain what\/why\/how question when carry out a security audit. - Common vulnerabilities in other popular smart contract languages (e.g Move contract in Aptos\/Sui)\" \/>\n<meta property=\"og:url\" content=\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/\" \/>\n<meta property=\"og:site_name\" content=\"HITBSecConf2024 - Bangkok\" \/>\n<meta property=\"article:modified_time\" content=\"2024-07-27T09:11:39+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1-1024x561.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"561\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/\",\"url\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/\",\"name\":\"Smashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok\",\"isPartOf\":{\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png\",\"datePublished\":\"2024-02-16T05:56:29+00:00\",\"dateModified\":\"2024-07-27T09:11:39+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage\",\"url\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png\",\"contentUrl\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png\",\"width\":2000,\"height\":1096},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Shop\",\"item\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/shop\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Smashing Smart Contracts for Fun and Real Profit\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/#website\",\"url\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/\",\"name\":\"HITBSecConf2024 - Bangkok\",\"description\":\"August 26 - 30 @ InterContinental\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Smashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/","og_locale":"en_US","og_type":"article","og_title":"Smashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok","og_description":"This advanced Smart Contract Security Course aims to provide developers and auditors with the information and skills required to identify and mitigate vulnerabilities in web3 solutions: - Explore top common bugs in Defi, GameFi, Bridge,... smart contracts in EVM based blockchains. - Explain what\/why\/how question when carry out a security audit. - Common vulnerabilities in other popular smart contract languages (e.g Move contract in Aptos\/Sui)","og_url":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/","og_site_name":"HITBSecConf2024 - Bangkok","article_modified_time":"2024-07-27T09:11:39+00:00","og_image":[{"width":1024,"height":561,"url":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1-1024x561.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/","url":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/","name":"Smashing Smart Contracts for Fun and Real Profit - HITBSecConf2024 - Bangkok","isPartOf":{"@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/#website"},"primaryImageOfPage":{"@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage"},"image":{"@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage"},"thumbnailUrl":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png","datePublished":"2024-02-16T05:56:29+00:00","dateModified":"2024-07-27T09:11:39+00:00","breadcrumb":{"@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#primaryimage","url":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png","contentUrl":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-content\/uploads\/sites\/22\/2024\/02\/General-product-pic-1.png","width":2000,"height":1096},{"@type":"BreadcrumbList","@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/product\/smashing-smart-contracts-for-fun-and-real-profit-bkk2024\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/"},{"@type":"ListItem","position":2,"name":"Shop","item":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/shop\/"},{"@type":"ListItem","position":3,"name":"Smashing Smart Contracts for Fun and Real Profit"}]},{"@type":"WebSite","@id":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/#website","url":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/","name":"HITBSecConf2024 - Bangkok","description":"August 26 - 30 @ InterContinental","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/product\/13828"}],"collection":[{"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/types\/product"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/media\/13827"}],"wp:attachment":[{"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/media?parent=13828"}],"wp:term":[{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/product_cat?post=13828"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/conference.hitb.org\/hitbsecconf2024bkk\/wp-json\/wp\/v2\/product_tag?post=13828"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}