CAPS LOCK DAVE DAVEALLCAPS
DAVEALLCAPS
/ evm-puzzle-5
Created
February 13, 2023 15:08
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ############ | |
| # Puzzle 5 # | |
| ############ | |
| 00 34 CALLVALUE | |
| 01 80 DUP1 | |
| 02 02 MUL | |
| 03 610100 PUSH2 0100 | |
| 06 14 EQ | |
| 07 600C PUSH1 0C |
DAVEALLCAPS
/ makeSideEntrance.sh
Created
February 9, 2023 20:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ➜ damn-vulnerable-defi-foundry git:(master) ✗ make SideEntrance | |
| forge test --match-test testExploit --match-contract SideEntrance | |
| [⠰] Compiling... | |
| [⠆] Compiling 1 files with 0.8.17 | |
| [⠔] Solc 0.8.17 finished in 868.43ms | |
| Compiler run successful | |
| Running 1 test for test/Levels/side-entrance/SideEntrance.t.sol:SideEntrance | |
| [PASS] testExploit() (gas: 276503) | |
| Logs: |
DAVEALLCAPS
/ SideEntrance.t.sol
Created
February 9, 2023 20:21
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity >=0.8.0; | |
| import {Utilities} from "../../utils/Utilities.sol"; | |
| import "forge-std/Test.sol"; | |
| import {SideEntranceLenderPool} from "../../../src/Contracts/side-entrance/SideEntranceLenderPool.sol"; | |
| import {Address} from "openzeppelin-contracts/utils/Address.sol"; | |
| contract SideAttack { |
DAVEALLCAPS
/ SideEntranceLenderPool.sol
Created
February 9, 2023 19:25
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity 0.8.17; | |
| import {Address} from "openzeppelin-contracts/utils/Address.sol"; | |
| interface IFlashLoanEtherReceiver { | |
| function execute() external payable; | |
| } | |
| /** |
DAVEALLCAPS
/ evm-puzzle-4.sh
Created
February 9, 2023 16:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ➜ evm-puzzles git:(master) ✗ npx hardhat play | |
| ############ | |
| # Puzzle 4 # | |
| ############ | |
| 00 34 CALLVALUE | |
| 01 38 CODESIZE | |
| 02 18 XOR | |
| 03 56 JUMP | |
| 04 FD REVERT |
DAVEALLCAPS
/ evm-puzzle-3
Created
February 8, 2023 19:12
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ➜ evm-puzzles git:(master) ✗ npx hardhat play | |
| ############ | |
| # Puzzle 3 # | |
| ############ | |
| 00 36 CALLDATASIZE | |
| 01 56 JUMP | |
| 02 FD REVERT | |
| 03 FD REVERT | |
| 04 5B JUMPDEST |
DAVEALLCAPS
/ Vault.sol
Created
February 7, 2023 00:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity ^0.8.0; | |
| contract Vault { | |
| bool public locked; | |
| bytes32 private password; | |
| constructor(bytes32 _password) { | |
| locked = true; | |
| password = _password; |
DAVEALLCAPS
/ destruct.sol
Created
February 6, 2023 19:08
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity ^0.8.0; | |
| contract Destruct { | |
| constructor() payable { | |
| } | |
| function destroy(address apocalypse) public { | |
| selfdestruct(payable(apocalypse)); |
DAVEALLCAPS
/ Force.sol
Created
February 6, 2023 18:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity ^0.8.0; | |
| contract Force {/* | |
| MEOW ? | |
| /\_/\ / | |
| ____/ o o \ | |
| /~____ =ø= / | |
| (______)__m_m) |
DAVEALLCAPS
/ truster.challenge.js
Created
February 2, 2023 01:39
Deploy our contract with the pool address and the token address, then call the function.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| it('Execution', async function () { | |
| /** CODE YOUR SOLUTION HERE */ | |
| const TrusterAttacker = await ethers.getContractFactory('TrusterAttacker', player); | |
| attack = await TrusterAttacker.deploy(pool.address,token.address); | |
| await attack.connect(player).fakeLoan() | |
| }); |
NewerOlder