- Mastering Ethereum Book
- Cryptography
- Ethereum Blocks
- Learning Solidity
- PoS
- PoW
- Tokens
- Cryptonomics
- Common Attack Vectors
- Checking access control
- Access control issues on critical functions
- Account Existence Check for low level calls
- Account Existence Check
- Common attacks with contract/EOA addresses
- Arithmetic under/overflow
- Assert Attack
- Assert require revert
- Assert Violation
- Bad Interface DOS
- Bad pragma and compiler
- Block Timestamp Manipulation
- Bypassing contract check
- Code With No Effects
- Code size check vulnerability
- Constructors with Care
- Default Visibilities
- Delegatecall
- Delegatecall
- Denial of Service (DoS)
- DoS with block gas limit
- Entropy Illusion
- External contract referencing
- Flash Loan Attack
- Floating Point and Precision
- Function selector abuse
- Function selector abuse
- Smart contract gas griefing
- Hash collision parameters
- Hash Collisions With Multiple Variable Length Arguments
- Imprecise arithmetic
- Improper Array Deletion
- Incorrect array deletion
- Incorrect interface
- Insufficient Gas Griefing
- Loop through long arrays
- Message call with hardcoded gas amount
- Not enough gas for ether transfer
- Precision Loss in Calculations
- Oracle Manipulation
- Public Burn Function
- Read-only reentrancy
- Race Conditions/Front Running
- Reentrancy Attacks
- Reentrancy
- Requirement Violation
- Right-To-Left-Override control character (U+202E)
- Shadowing State Variables
- Short Address / Parameter attack
- Signature Malleability
- Signature Replay
- Transaction Order Dependence
- Tx.Origin Authentication
- Unchecked CALL Return Values
- Unexpected ether
- Uninitialized Storage Pointers
- Unsafe Ownership Transfer
- EIP's
- PoW
- Questions for self evaluation
- Frequently asked questions
- UsefulResources