Mail: vara10110@gmail.com
Twitter/X: https://x.com/S3v3ru5_
# Blockchain Security Experience
1. Independent Security Researcher (July 2024 - present)
- Security Researcher([SR](https://cantina.xyz/u/S3v3ru5)) at SpearBit
- Independent Audits
- Contests ([Sherlock](https://audits.sherlock.xyz/watson/S3v3ru5), [CodeHawks](https://profiles.cyfrin.io/u/s3v3ru5))
3. Blockchain Security Engineer, Trail of Bits (Jun 2022 - Jun 2024)
- Performed Security Reviews of
- Ethereum Smart contracts
- Algorand Smart contracts written in TEAL/PYTEAL.
- Solana smart contracts (Rust)
- Offchain components written in Rust. Offchain components include Compilers, VM, and some parts of blockchain node.
- Bench time
- Worked on development of Tealer, a static analyzer for Algorand Smart Contracts. (Jun 2022 to Nov 2023). [Tealer](https://github.com/crytic/tealer)
- Worked on development of Solana lints. Solana lints are rust lints which check for vulnerable patterns in solana programs using the rust linting API. (Dec 2023 to Jun 2024). [solana-lints](https://github.com/crytic/solana-lints).
- Added the issues in the Algorand not-so-smart-contracts in [building-secure-contracts](https://github.com/crytic/building-secure-contracts/tree/master/not-so-smart-contracts/algorand).
- Added Improper Instruction Issue in Solana [not-so-smart-contracts](https://github.com/crytic/building-secure-contracts/tree/master/not-so-smart-contracts/solana/improper_instruction_introspection)
4. Auditor, Ottersec. (Mar 2022 to Apr 2022, ~1 month)
- Worked with Robert([NotDeGhost](https://x.com/notdeghost)) on two Solana audits.
5. Winternship, Trail of Bits. (Dec 2021 - Jan 2022, 6 weeks)
- Worked on Tealer, a static analyzer for Algorand smart contracts.
6. CTF Player, played with team Invaders and zer0pts (Jan 2019 - Oct 2021)
- Focused on cryptography. Know basics of other areas (pwn, reversing and web hacking).
- Have global rank of #228 and rank #12 country wise in [Cryptohack](https://cryptohack.org/user/S3v3ru5/)
- CTF Writeups: https://s3v3ru5.github.io/
# Audits (Public)
| Name | Protocol | Stack | Report | Organization |
| ------------- | ------------------------------ | -------------------- | ------ | ------------- |
| Catalog | Cross-chain peer-to-peer swaps | EVM, Solidity | [🔗](https://github.com/catalogfi/audits/blob/main/TrailOfBits.pdf) | Trail of Bits |
| Squads V4 | MultiSig | Solana, Anchor, Rust | [🔗](https://github.com/trailofbits/publications/blob/master/reviews/2023-10-squadsv4-securityreview.pdf) | Trail of Bits |
| Folks Finance | Lending | Algorand, PyTeal | [🔗](https://github.com/trailofbits/publications/blob/master/reviews/2022-11-folksfinance-securityreview.pdf) | Trail of Bits |
# Contests
Username: S3v3ru5
Sherlock: https://audits.sherlock.xyz/watson/S3v3ru5
| Name | Protocol | Position | Stack | Platform Leaderboard |
| ---------------- | ----------------- | -------- | ----------------------------- | --------- |
| Zaros | Perpetual Markets | 4th | EVM, Solidity | [CodeHawks](https://codehawks.cyfrin.io/c/2024-07-zaros/results?t=leaderboard<=contest&sc=reward&sj=reward&page=1) |
| Winnable Raffles | Raffles | :third_place_medal: | EVM, Solidity, Chainlink CCIP | [Sherlock](https://audits.sherlock.xyz/contests/516/leaderboard) |
| Sentiment V2 | Lending | 25th | EVM, Solidity | [Sherlock](https://audits.sherlock.xyz/contests/349/leaderboard) |
| WooFi Swap Solana | AMM | :second_place_medal: | Solana, Rust, Anchor | [Sherlock](https://audits.sherlock.xyz/contests/535/leaderboard) |
| Orderly Solana Vault | Cross-chain Vault (Solana <-> EVM) | :third_place_medal: | Solana, Anchor, EVM, Solidity, LayerZero V2 | [Sherlock](https://audits.sherlock.xyz/contests/524/leaderboard) |
# Tool familiarity
| Tool | Context |
| -------- | -------- |
| Slither | Used(sparingly) in Etherum audits |
| Echidna | Used in only one audit to write fuzz tests |
| Tealer | Tool developer, used on folks finance audits |
| solana-lints | Tool developer |
| Clippy | Familiar |
## Tealer
[Tealer](https://github.com/crytic/tealer)
- Was the main developer of the tool.
- Implemented detectors, printers and support for analyzing group transactions.
- Added the github wiki for the tool.
## Solana-lints
[solana-lints](https://github.com/crytic/solana-lints)
- Added documentation and updated the old lints to work on new solana programs.
- Worked on improving them to reduce false positivies and to make more relevant/usable
- Added [`sysvar_get`](https://github.com/crytic/solana-lints/tree/master/lints/sysvar_get) lint
Sign in with Wallet
Connect another wallet