Contribution Guide
How to start contributing?
- Create an account here
- Search for the topic you want to contribute
- Edit and improve if an article already exists, or create it if it doesn't.
Best practices
Dates
Preferred way of writing dates is the ISO-8601 standard.
YYYY-MM-DD
Past exploits
If creating an article about past exploits page title should be:
Name of the exploit YYYY-MM-DD
References
Its best to include references in every article, make use of the cite feature on the toolbar above to highlight paragraphs and sentences.
Extensions
You can embed tweets nicely in the wiki, more information available here:Widget:Tweet/instructions
FAQ
Can I pick any topic to contribute an article about?
As long as it fits within the Web3 security, you can, even including the more Web2 ones like phishing are incentivised to keep info on within this wiki.
Are there any requirements to contribute?
Nope, just create an account and start editing.
What is the format and syntax for the editors?
Mediawiki doesn't use traditional markdown, the proper syntax for it can be found here: https://www.mediawiki.org/wiki/Help:Formatting
I already posted an article on a topic elsewhere, can I add it into this wiki?
As long as it fits in the domain of Web3 security, yes, remember to include it as a reference and have the contents reflected on the correct topic.
Contribution Ideas
- https://wiki.r.security/wiki/Ethereum_virtual_machine_vulnerabilities
- https://wiki.r.security/wiki/Besu_vulnerabilities_(Java)
- https://wiki.r.security/wiki/Erigon_vulnerabilities_(Go)
- https://wiki.r.security/wiki/Evmone_vulnerabilities_(C%2B%2B)
- https://wiki.r.security/wiki/Geth_vulnerabilities_(Go)
- https://wiki.r.security/wiki/Nethermind_vulnerabilities_(C)
- https://wiki.r.security/wiki/Execution_layer_vulnerabilities
- https://wiki.r.security/wiki/Low_Level_Calls_vulnerabilities
- https://wiki.r.security/wiki/Call_Code_vulnerabilities
- https://wiki.r.security/wiki/Unchecked_call_return_value
- https://wiki.r.security/wiki/Delegate_Call_Code_vulnerabilities
- https://wiki.r.security/wiki/Storage_Collision
- https://wiki.r.security/wiki/Multi_Delegateecall_Pattern_Vulnerabilities
- https://wiki.r.security/wiki/Back-running
- https://wiki.r.security/wiki/Sandwich-Attacks
- https://wiki.r.security/wiki/Front-running
- https://wiki.r.security/wiki/MPC_vulnerabilities
- https://wiki.r.security/wiki/Nondeterministic_circuits_vulnerability
- https://wiki.r.security/wiki/Nondeterministic_Nullifier_vulnerability
- https://wiki.r.security/wiki/Proxy_vulnerabilities
- https://wiki.r.security/wiki/Frontrunning_Initialization
- https://wiki.r.security/wiki/Proxy_Function_Clashing
- https://wiki.r.security/wiki/Proxy_Storage_Collision
- https://wiki.r.security/wiki/Unable_To_Upgrade
- https://wiki.r.security/wiki/Uninitialized_Proxy
- https://wiki.r.security/wiki/Signature_reply
- https://wiki.r.security/wiki/Cross_Chain_Reusing
- https://wiki.r.security/wiki/Cross_Contract_Reusing
- https://wiki.r.security/wiki/Single_Function_Reusing
- https://wiki.r.security/wiki/Smart_Contract_vulnerabilities
- https://wiki.r.security/wiki/Solidity_compiler_vulnerabilities
- https://wiki.r.security/wiki/Try/Catch_reverting
- https://wiki.r.security/wiki/0.8.3_keccack_caching_vulnerability
- https://wiki.r.security/wiki/0.4.X_Memory_Variable_Override
- https://wiki.r.security/wiki/0.8.13_optimizer_can_remove_SSTORE
- https://wiki.r.security/wiki/Under-Constrained_Circuits_vulnerability
- https://wiki.r.security/wiki/Missing_Output_Check_Constraint_vulnerability
- https://wiki.r.security/wiki/Vulnerabilities_without_category
- https://wiki.r.security/wiki/Compromised_Oracle_Vulnerability
- https://wiki.r.security/wiki/Gas_Greifing
- https://wiki.r.security/wiki/Governance_Attacks
- https://wiki.r.security/wiki/Multisig_Vulnerabilities
- https://wiki.r.security/wiki/Storing_Private_Information_in_Smart_Contract
- https://wiki.r.security/wiki/Unprotected_Functions
- https://wiki.r.security/wiki/Unprotected_SELFDESTRUCT
- https://wiki.r.security/wiki/Variable_Default_Value_Vulnerability
- https://wiki.r.security/wiki/Weak_Randomness