I'm an independent security researcher, primarily working as a Lead Security Researcher at Spearbit and Cantina. Previously, I was part of the team at Renascence Labs and a Lead Auditor at Trust Security.
For private audits or security consulting, please reach out to me on Twitter @milotruck.
- Profiles:
- Completed 50 audits in 2024
- Ranked #1 on Code4rena for 2023
A complete list of all audits can be found here.
| Protocol | Category | Reports |
|---|---|---|
| Optimism | L2 | [1], [2], [3], [4], [5], [6] |
| Blast | L2 | [1] |
| Celo | L2 | [1], [2] |
| Morpho | Lending | [1], [2] |
| Euler | Lending | [1] |
| Collar | Lending | [1] |
| Karak | Restaking | [1] |
| Infrared | Liquid Staking | [1], [2] |
| Dinero | Liquid Staking | [1], [2], [3], [4], [5], [6], [7] |
| Sushiswap | DEX | [1], [2] |
| Sorella | DEX | [1] |
| Rhinestone | Account Abstraction | [1], [2] |
| Superform | Yield | [1] |
| Level Money | Stablecoin | [1], [2] |
A complete list of all contests can be found here.
| Contest | Category | Ranking | Report |
|---|---|---|---|
| LUKSO | ERC-20, ERC-721, Account Abstraction | 🥇1st | 📄 |
| Lens Protocol V2 | Social Network | 🥇1st | 📄 |
| Arbitrum Security Council Elections | Governance, Voting | 🥇1st | 📄 |
| StakeWise V3 | Liquid ETH Staking | 🥇1st | 📄 |
| Biconomy | Account Abstraction | 🥇1st | 📄 |
| Chainlink Staking v0.2 | Staking | 🥇1st | |
| YOLO Games | GameFi | 🥇1st | |
| Morpho Blue | Lending | 🥈2nd | 📄 |
| Wildcat | Lending | 🥈2nd | 📄 |
| Optimism Fault Proofs | OP Stack, Fault Proofs | 🥉3rd | |
| PoolTogether V5 | Yield Farming | 🥉3rd |
Immunefi
- Beluga Protocol: Permanent freezing of tokens by vote manipulation - Critical
- Arcade.xyz: Forcing users into loans by manipulating EIP-1271 signatures - High
- GYSR: Theft of funds through precision loss - Informational
Others