The Ultimate Security Researcher Roadmap with Solidity

An updated (by 2024) roadmap to help you become a successful Web3 security researcher with Solidity

1. Read the Mastering Ethereum book.
2. Complete all of the courses on Cyfrin Updraft.
3. Watch the Hack Solidity playlist by Smart Contract Programmer.
4. Watch Owen Thurm on YouTube - (Web3 Security 101 playlist and then Advanced Web3 Security Course Part 1 & Part 2).
5. Exercise most common smart contract vulnerabilities using Foundry with the DeFiVulnLabs repository.
6. Do shadow audits on these past contests - BeedleFi, Asymmetry, Curves, Revolution Protocol and also you can participate in First Flights.
7. Learn bugs while reading reports from previous audits in Solodit.

Now you should be ready and well-prepared to participate in live contests on audit platforms like Code4rena, Sherlock, CodeHawks, Cantina, HatsFinance and Immunefi. Before participating in a public contest, be sure to read the documentation of the audit platform that organizes it!