Question 1

How to fuzz test smart contracts with Echidna?

Accepted Answer

The repository provides hands-on training in the Program Analysis section, including exercises that guide you through writing properties and running Echidna to detect vulnerabilities in your contracts, typically taking about two hours to complete.

Question 2

What are common vulnerabilities in Solana programs?

Accepted Answer

Check the Not So Smart Contracts section for Solana, which includes real-world examples and recommendations for issues like reentrancy or logic errors specific to the platform, helping you avoid similar pitfalls.

Question 3

Building Secure Smart Contracts vs OpenZeppelin for security?

Accepted Answer

This resource focuses on educational guidelines and tool training for security best practices, whereas OpenZeppelin offers pre-audited, reusable contract libraries. Use this for learning and audits, and OpenZeppelin for implementation shortcuts.

Question 4

How to trace EVM transactions for debugging?

Accepted Answer

Refer to the Learn EVM section on Transaction Tracing, which includes helper scripts and guidance for generating and analyzing traces to identify issues in smart contract execution on Ethereum and EVM-compatible chains.

Question 5

Best practices for Cairo smart contracts on StarkNet?

Accepted Answer

The Not So Smart Contracts section covers Cairo with examples of vulnerabilities and fixes, providing targeted advice for securing contracts on StarkNet based on real cases documented in the repository.

Question 6

Is this suitable for absolute beginners in blockchain?

Accepted Answer

While it starts with high-level guidelines, the technical depth on EVM and tool usage assumes some prior smart contract development knowledge, making it better for intermediate developers looking to specialize in security.

(Not So) Smart Cosmos, examples of common Cosmos app vulnerabilities

What is (Not So) Smart Cosmos, examples of common Cosmos app vulnerabilities?

Overview

Use Cases

Best For

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions