Ethernaut CTF - Token (Level 5)

Get the free 30-day AI Mastery series 💌: https://insights.gradientlabs.co/ Work with me 💪: https://offerings.gradientlabs.co/ Next up! Level 5 - Token In this CTF series, we’re going to learn more about the practical side of smart contract auditing and security. If you’re interested in more/similar content, checkout my channel or website below. My digital dumping ground - dylandavis.net Additional Resources Ethernaut CTF - https://ethernaut.openzeppelin.com/ How integers are stored in memory - https://youtu.be/AHP1Yo_FVew What is an integer overflow attack (best blog) - https://www.comparitech.com/blog/information-security/integer-overflow-attack/ Binary addition and overflows (computerphile) - https://youtu.be/WN8i5cwjkSE Arithmetic Overflow and Underflow (Solidity example code) - https://solidity-by-example.org/hacks/overflow/ Smart Contract Programmer (video walkthrough of above example) - https://youtu.be/zqHb-ipbmIo Web3 Blockchain Developer (token answer) - https://youtu.be/IOM1Ty8RwL0?list=PLBy3Qkuapv_7R1ZI_Cs2NOFn7ZTaNWY6G Web2 Buffer Overflow (LiveOverFlow) - https://youtu.be/oS2O75H57qU OpenZeppelin Safemath (docs) - https://docs.openzeppelin.com/contracts/4.x/utilities#math OpenZeppelin Safemath (code) - https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/math/SafeMath.sol Timeline 00:00 - Intro to challenge 01:00 - Odometers related to integers 03:16 - Integer basics, storage, and flaws 08:27 - Integer overflow and underflow attacks 09:40 - Challenge (code review) 13:22 - Challenge (the attack) 17:30 - The fix (Safemath) 20:39 - Outro