- How to become Smart Contract Auditor and Bounty Hunter by Officer CIA
- Auditor's Roadmap by RazzorSec
- MistTrack
- Phalcon BlockSec
- Bitquery Explorer
- Tx eth samczsun
- Tenderly
- Cruise Supremacy
- Cross-chain transaction tracker
- Front-running explorer
- Cryptocurrency OSINT
- Tool for Storage visualization of Proxy contracts & to check storage collision
- Uniswap TWAP Oracle Price Manipulation Simulator
- Metamorphic contracts detector
- Vscode on Etherscan
- EVM traces with Python
- Tool to detect Out of Gas/Denial of Service
- List of Defi Hacks with Proof of Concept
- Tool to extract ABI from Unverified contracts
- Tool to get historical data from EVM chains
- Immunefi Web3 Security library
- Ethers.js playground
- ETH-Toolbox: Useful tools for Ethereum devs
- EVM codes Interactive Playground
- Audit findings database search
- Echidna Fuzzer
- Trade volume metrics across all chains
- Tool to check audited code diff on-chain
- Oracle risk rating system
- Tool to diff contracts using simhashes
- Tool to match hashes of known contracts
- ABI decompiler
- Database and tool to detect and report scams
- Rug Checker tools
- User friendly Metadock extension by BlockSec
- Tool for checking cross-function and cross-contract reentrancy
- Tool to guess type of ABI encoded data
- Running slither and other tools on cloud
- samczsun's tool to get function signature from abi.encoded data
- Tool to analyze past issues on Sherlock and Code4Arena
On-Chain Monitoring tools for attacks (Refer Pessimistic-blog)
- Fire
- Pocket Universe
- Stelo
- Interlock
- Wallet guard
- Meshed Labs
- Blowfish
- Hexagate
- Rabby.io- Alternative to metamask
- Ethtective
- Breadcrumbs
- Hal
- Dune Analytics
- Nansen.ai
- Bloxy.info
- Tx2uml
- EVM Trace
- 3D VR blockchain visualization
- Unrekt.net
- Revoke.cash
- Tutela
- Why Echidna is the best smart contract fuzzer
- Breaking solidity compiler with Fuzzing
- More on fuzzing using Echidna
- ToB setting up fuzzing for clients
- ToB livestream on fuzzing using Echidna
- Hybrid Fuzzing
- Oyente
- Mythril
- Osiris
- Maian
- TeEther
- Sereum
- ContractFuzzer
- ILF
- Slither
- Vandal
- Madmax
- Ethir
- Smartcheck
- SaferSC
- RecChecker
- KEVM
- Eth-Isabelle
- SmartPulse
- Semgrep
- C4udit
Smart contract Security Techniques and Best practices (Refer DefiVulnLabs )
- Mastering Ethereum - Smart Contract Security
- Ethereum Smart Contract Best Practices
- Awesome-Smart-Contract-Security
- (Not So) Smart Contracts
- Smart contract best practices by ToB
- Smart Contract Attack Vectors
- Secureum Security Pitfalls 101
- Secureum Security Pitfalls 201
- How to Secure Your Smart Contracts: 6 Solidity Vulnerabilities and how to avoid them (Part 1)(Part 2)
- Top 10 DeFi Security Best Practices
- All Ethereum EIPs
- Missing support for EIP-2930 on BSC- Beware Multisigs!
- Handling "missing return" ERC20 tokens
- All types of Reentrant attacks
- Smart Contract Weakness Classification Registry (SWC Registry)
- Ethereum Post Merge Security and known attack vectors
- Best practice for Upgradeable smart contracts
- Guide to Governance attacks
- How to avoid Governance attacks
- A white hat mindset- From the perspective of a smart contract auditor
- Commit and Reveal scheme to mitigate Front-run attacks
- Price Oracle Best practices
- Solving the issue with slippage in EIP-4626
- NFT Security collection (link works only in telegram)
- Proxy contracts security guide
- Awesome Oracle manipulation
- Common Zero-Knowledge Proof Vulnerabilities
- 100 point checklist before sending your smart contract for audits
- Solcurity security checklist for audits
- Smart contract Audit Checklist
- All Audit reports of Security companies
- Smart Contract Security Verification Standard (SCSVS)
- Ethereum Yellow paper course
- Awesome Openzeppelin
- The Auditor book- Sherlock and Code4arena findings
- Stanford Cryptography course
- Mastering Solidity Assembly (YUL)
- Tool for Private RPC
- Hopr protocol
- Using Zmok along with MullVad VPN