Today, billions are secured by smart contracts, but multi-million-dollar hacks are still too frequent. At this Open Port, ChainSecurity will share their 5+ years of experience in the field, dive deep into the world of smart contract auditing and uncover the hidden risks associated with decentralized finance (DeFi) applications running on the Ethereum blockchain. This focused workshop is designed for students and aspiring professionals who are interested in learning how to protect our financial future.
The workshop will begin with a brief introduction to Solidity, the most popular programming language for smart contracts, and the critical role of auditors in the rapidly evolving DeFi landscape. We will then present a selection of real-world examples of vulnerable smart contracts that have led to significant financial losses or hacks.In the hands-on portion of the workshop, participants will work in teams to identify and analyze vulnerabilities within a set of purposely flawed smart contracts. Each team will be tasked with finding hidden security flaws and suggesting mitigation strategies to protect against potential attacks. To guide the teams, we will provide a step-by-step framework, together with access to the best tools for conducting a thorough smart contract audit.The workshop will conclude with a discussion on the latest security research and trends in the smart contract auditing field. By the end of this session, participants will not only gain a comprehensive understanding of the challenges and opportunities in the world of smart contract auditing, but also be well-prepared to independently uncover vulnerabilities, where top bounty hunters can earn 7-digit rewards, and to excel as professional blockchain security engineers in the industry.