# Greyhat DeFi Astronaut Group A Minimial Viable DAO - Whitepaper v0.1 Zk Wolff - 8/28/2021 ## Intro/TLDR/Mission Incentivise research on crypto security and DeFi hacks as a means of 1) establishing clear and documented understanding of what happened so that 2) the crypto community can better prepare, defend, and avoid such hacks in the future. ### Example 1: Historical DeFi sec event: "THE DAO Hack" TODO Walk though clear example of how GDAG DAO would generate releveant content about this event - audio, interviews, write ups, etc... ### Example 2: A new DeFi hack is in progress TODO - DAO agrees (via some real time consensys mechanism) that event of interest is in progress or has occured. STandard set of 'real time info' bounties go live. DAO members (and maybe general public) can submit info to get bounties. DAO votes on which pices of content get bounties. ## DAO design DAO membership is established by possesion of GDAG Membership(need better word) token (NF Membership Token?) (see Initial Seeding below). Everyone is busy and there are already a lot of DAOs. DAO participation is a non-trivial problem. Minimal Viable DAO approach seeks to reduce complexity, incentivise and encourage participation though simplicity. Guiding principals: 1) DAO operations must be easy to understand 2) DAO participants should be proactively notified if thier participation is needed 3) Transparency of funding usage passive and active participation is encouraged - Not everyone that cares about crypto/defi security will be able to help reverse engineer a defi attack. That is OKAY! ### Funding and Allocation Funding comes in VIA Grants, NFT Sales, Other? Funding Usage: A Minimal Viable DAO framework (TBD) is used to allocate funds. Example: 50% of DAO funds are allocated to generating content around historical event of interest* (see events of interest below) 10% Active Attacks Fund 15% Stashed in DeFI position 25% to DAO operations - Coding, legal, commuinity outreach, NFT design. ### Initial Seeding 1) Airdrop DAO membership NFTs to grants donors of security minded/related projects on Gitcoin. Users will have to initiate the claim as to avoid sending membership NFTs to dead wallets or in active users. and/or: 1) Just establish a new gitcoin grant and anyone that donates more than X, gets the membership NFT 2) Limited run of OG membership NFTs ### Post Initial Seeding 1) NF Membership Tokens can be minted/sold in some creative/clever way. 2) corporate sponsors - Companies that want to support the DAO can purchase these special corporate NFMTs. Notes: - Outsource info/intellegence collection to global workforce - Incentivise content creation. What important info is missing? - GDAG members filter/curate Ideas/random thoughts: 1) <0 day Research - The first minutes/days/hours after an attack are important. Chats, tweets, web pages, and all sorts of other mutable information can quickly dissapear. Funds in this pool are allocated to bounties for documenting and collecting relevant info ASAP. - use upwork for resolving subject questions other possible names: GreenLight DeFi Astronaut Group - greenlight.eth is avaliable Definitions: DeFi hack - There can be a fair bit of ambiguity and grey area when it comes to defining what is and isnt a DeFi hack. What constitutes an event of interest? - DAO decides though simple quadratic voting process. (ha). ## History, Motives, Backstory intotheabyss.fm - early attempt to collect info on crypto attacks and compile it into succinct compelling story. takeaway - It took an exremely long time to research, filter, sort, understand what exactly happened. Even in the case of one of the most widely covered hacks on Ethereum. Could we use a DAO to solve this problem? __ DeFi security can be seen as an information problem. We aim to help by generating sound, relevant, digestable information that can help users and projects to be more secure.