Julián Zamt & Santiago Moreno – EatTheBlocks Pro – Smart Contract Security 101

Description

Julián Zamt & Santiago Moreno – EatTheBlocks Pro – Smart Contract Security 101 download , Julián Zamt & Santiago Moreno – EatTheBlocks Pro – Smart Contract Security 101 review, Julián Zamt & Santiago Moreno – EatTheBlocks Pro – Smart Contract Security 101 free

Julián Zamt & Santiago Moreno – EatTheBlocks Pro – Smart Contract Security 101

Smart Contract Security 101
Learn how to develop safe Solidity smart contracts

Security Course 101

The objective of this course is to understand how to develop a smart contract in the safest way possible. For this, we need to keep in mind not only what we want to create in the contract, but how to generate security-focused code.

To achieve this purpose, since the contracts in a large percentage represent real money, we need to be updated as developers on the most known vulnerabilities and know how old hacks worked so as not to repeat those same errors.

This course not only focuses on the most known vulnerabilities currently but is also good practices, explanation of patterns and problems of these, for example, conflicts when using upgradeable contracts or how to obtain random numbers within a deterministic blockchain.

All this knowledge will be useful not only to develop smart contracts but also to audit them. Therefore, it is a core knowledge of smart contracts.
What will you learn in this course?

In this course you will learn:

• Understanding security in a Blockchain Application.
• How does an attack on a Smart Contract work?
• Known attacks and how to fix them (Reentrancy, Overflow, Replay Attack, DoS, weak randomness, and much more).
• Best practices and security patterns.
• Understand how three famous hacks happened.
• How to test your contract
• How to know the coverage of your test?

We will use:

• Hardhat
• Solidity
• OpenZeppelin
• Javascript
• Ethers.js
• Chainlink library
• Chai.js
• Coverage

Pre-requisites:

• Web Development (Javascript, NodeJS)
• Blockchain Development (Ethereum, Solidity, Hardhat)

Your Instructor

Julián Zamt & Santiago Moreno

Course Curriculum

1. Welcome
1.1. Introduction (3:24)
1.2. Understanding Security Importance (4:28)
1.3. Prerequisites
1.4. Support & Resources
1.5. Quiz
2. Access Control
2.1. AgreedPrice (1:34)
2.2. AgreedPrice Tests (4:44)
2.3. Require Statement Solution (4:06)
2.4. Custom Modifier Solution (5:28)
2.5. Community Vetted Code (2:35)
2.6. Ownable Solution (3:09)
2.7. Quiz
3. Unencrypted Data
3.1. Unencrypted Data Introduction (0:51)
3.2. Vault Contract (2:35)
3.3. Storage Layout (2:07)
3.4. Peeking in the storage (4:12)
3.5. Conclusions (0:52)
3.6. Quiz
4. Overflow
4.1. Overflow Introduction (3:50)
4.2. SimpleToken (Victim) (2:07)
4.3. Exploit (5:35)
4.4. Overflow Soltuions (5:07)
4.5. Conclusions (1:33)
4.6. Quiz
5. Contracts Interactions
5.1. Contracts Interactions Introduction (1:46)
5.2. Call(), send(), transfer() (2:33)
5.3. SavingsAccount & Investor contracts (2:11)
5.4. Interactions Tests (6:40)
5.5. Quiz
6. Reentrancy
6.1. Introdiction (2:06)
6.2. SavingAccounts V2 & InvestorV2 (2:18)
6.3. Reentrancy Attack (5:39)
6.4. Reentrancy Solutions (4:40)
6.5. Quiz
7. Tx.origin
7.1. Introduction (2:20)
7.2. SmallWallet & Attacker (2:19)
7.3. Exploit (3:31)
7.4. Solution (1:28)
7.5. Quiz
8. Denial Of Service
8.1. Introduction (1:38)
8.2. Auction Contract (2:38)
8.3. Attack (5:34)
8.4. Solution – Auction V2 (6:06)
8.5. Quiz
9. Upgradeability
9.1. Introduction (1:58)
9.2. How Delegatecall Works (3:49)
9.3. Storage Collisions (7:58)
9.4. Custom Solution And Related Vulnerabilities (4:53)
9.5. Quiz
10. Weak Randomness
10.1. Introduction (1:44)
10.2. Lottery Contract (2:53)
10.3. The Path Of A Transaction (2:17)
10.4. Miner Attack (5:16)
10.5. Replicated Logic Attack (3:11)
10.6. Chainlink VRF (5:50)
10.7. Quiz
11. Replay Attacks
11.1. Introduction (1:48)
11.2. Signing a message off-chain with a wallet (1:33)
11.3. MultiSigWallet Contract (2:12)
11.4. Replay Attack on MultiSig (3:06)
11.5. Replay Attack Fix (2:52)
11.6. Quiz
12. Real Life Hacks
12.1. Introduction (0:50)
12.2. The DAO (5:22)
12.3. The King Of Ether (2:41)
12.4. Parity Multi Sig Wallet (5:49)
13. Conclusion
13.1. Conclusion (1:27)

Frequently Asked Questions:

1. Innovative Business Model:
   • Embrace the reality of a genuine business! Our approach involves forming a group buy, where we collectively share the costs among members. Using these funds, we purchase sought-after courses from sale pages and make them accessible to individuals facing financial constraints. Despite potential reservations from the authors, our customers appreciate the affordability and accessibility we provide.
2. The Legal Landscape: Yes and No:
   • The legality of our operations falls into a gray area. While we lack explicit approval from the course authors for resale, there’s a technicality at play. When procuring the course, the author didn’t specify any restrictions on resale. This legal nuance presents both an opportunity for us and a boon for those seeking budget-friendly access.
3. Quality Assurance: Unveiling the Real Deal:
   • Delving into the heart of the matter – quality. Acquiring the course directly from the sale page ensures that all documents and materials are identical to those obtained through conventional means. However, our differentiator lies in going beyond personal study; we take an extra step by reselling. It’s important to note that we are not the official course providers, meaning certain premium services aren’t included in our package:
     • No coaching calls or scheduled sessions with the author.
     • No access to the author’s private Facebook group or web portal.
     • No entry to the author’s exclusive membership forum.
     • No direct email support from the author or their team.

   We operate independently, aiming to bridge the affordability gap without the additional services offered by official course channels. Your understanding of our unique approach is greatly appreciated.

Refund is acceptable:

• Firstly, item is not as explained
• Secondly, Item do not work the way it should.
• Thirdly, and most importantly, support extension can not be used.

Thank you for choosing us! We’re so happy that you feel comfortable enough with us to forward your business here.