โ† All Features
๐Ÿ“š

Hack Database

Every exploit teaches something. The Hack Database catalogs real-world DeFi attacks โ€” root cause analysis, attack vectors, affected protocols, and the patterns that made them vulnerable. This isn't just a reference library. It's the training ground for compound intelligence: each documented exploit improves future detection by giving agents concrete patterns to hunt for across new codebases. Fork hunting, pattern matching, and adversarial reasoning all start here.

Highlights
โœ“Curated exploit analyses with root cause breakdowns
โœ“Attack vector taxonomy: reentrancy, oracle manipulation, access control
โœ“OpenZeppelin security research integration
โœ“Feeds directly into agent scanning heuristics
54Audit Reports
21Protocols
15Auditors
6Research Docs
Exploit Research
๐Ÿ”ฅ
Deflationary Token AMM Exploit โ€” MetaPool Case StudyToken Manipulation
Bounty Range$100K-500K

MetaPool exploited via deflationary token manipulation in AMM pools. Attacker used repeated skim() calls following burn transfers to inflate...

BSCETH1 finding2025-08-06
Token ManipulationRead Research โ†’
๐Ÿฆ
ERC-4626 Override Leading to Free MintAccess Control
Bounty Range$50K-100K

MetaPool mpETH vault allowed free minting when internal _deposit() was overridden without protecting mint() entry point. Inheritance bypass ...

ETH1 finding2025-08-06
Access ControlRead Research โ†’
โ›”
Permit2 DoS via Nonce DesynchronizationDenial of Service
Bounty Range$10K-25K

Across Protocol vulnerability where attackers could invalidate nonces on Permit2, causing DoS for legitimate users via nonce tracking desync...

ETH1 finding2025-08-06
Denial of ServiceRead Research โ†’
๐Ÿฆ€
Rust Unsafe Behavior Across Compiler TargetsCompilation Bug
Bounty Range$100K+

Solana programs vulnerable to target-dependent undefined behavior. x86_64 assumptions fail on BPF/SBF targets due to memory alignment and op...

Solana1 finding2025-01-16
Compilation BugRead Research โ†’
โš–๏ธ
Balancer V2 Exploit Deep DiveFlash Loan + Reentrancy
Bounty Range$200K-500K

Comprehensive analysis of Balancer V2 exploit involving flash loan manipulation, protocol accounting errors, and reentrancy through external...

ETH3 findings2025-01-12
Flash Loan + ReentrancyRead Research โ†’
๐Ÿ“ˆ
ERC-4626 Exchange Rate ManipulationExchange Rate Manipulation
Bounty Range$50K-200K

ERC-4626 vaults vulnerable to share price manipulation via direct asset donations. Attacker inflates exchange rate, benefiting existing hold...

ETH1 finding2025-01-12
Exchange Rate ManipulationRead Research โ†’
Audit Report Library54 reports
54 reports
External20 reports
OpenZeppelinExternal
Date2025-11

OpenZeppelin RLP Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2025-10

OpenZeppelin v5.5 Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2025-07

OpenZeppelin v5.4 Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2025-04

OpenZeppelin v5.3 Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2024-12

OpenZeppelin v5.2 Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2024-10

OpenZeppelin v5.1 Audit

LibraryExternal
PDF ReportDownload โ†—
PintoExternal
Date2024

Pinto Protocol Audit

DeFiExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2023-10

OpenZeppelin v5.0 Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2023-05

OpenZeppelin v4.9 Audit

LibraryExternal
PDF ReportDownload โ†—
ALEXExternal
Date2023-04

ALEX Bridge Audit

BridgeExternal
PDF ReportDownload โ†—
FirmExternal
Date2023

Firm / Nomoi Audit

DeFiExternal
PDF ReportDownload โ†—
Ref FinanceExternal
Date2023

Ref Finance Security Audit

DEXExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2022-10

OpenZeppelin Checkpoints Audit

LibraryExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2022-10

OpenZeppelin ERC-4626 Audit

LibraryExternal
PDF ReportDownload โ†—
ALEXExternal
Date2022-04

ALEX Launchpad v1.1 & AutoALEX Audit

DeFiExternal
PDF ReportDownload โ†—
ALEXExternal
Date2022-02

ALEX DAO Audit

GovernanceExternal
PDF ReportDownload โ†—
ALEXExternal
Date2022-01

ALEX Launchpad & Vault Audit

DeFiExternal
PDF ReportDownload โ†—
AlchemixExternal
Date2022

Alchemix v2 Audit

DeFiExternal
PDF ReportDownload โ†—
ALEXExternal
Date2021-11

ALEX Pool Equation Audit

DeFiExternal
PDF ReportDownload โ†—
OpenZeppelinExternal
Date2018-10

OpenZeppelin Contracts Audit (2018)

LibraryExternal
PDF ReportDownload โ†—
WhiteClaws8 reports
Oak NetworkWhiteClaws
Date2025

Oak Network Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
XYZWhiteClaws
Date2025

XYZ Protocol Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
CC ProtocolWhiteClaws
Date2025

CC Protocol Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
Plume NetworkWhiteClaws
Date2025

Plume Network Security Audit

L1/L2WhiteClaws
PDF ReportDownload โ†—
Plaza FinanceWhiteClaws
Date2025

Plaza Finance Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
HoennWhiteClaws
Date2025

Hoenn Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
HeliosWhiteClaws
Date2025

Helios Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
HalogenWhiteClaws
Date2025

Halogen Security Audit

DeFiWhiteClaws
PDF ReportDownload โ†—
Trail of Bits6 reports
ScrollTrail of Bits
Date2025-04

Scroll Euclid Phase 1 Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
ScrollTrail of Bits
Date2025-04

Scroll Euclid Phase 2 Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
ScrollTrail of Bits
Date2024-04

Scroll 4844 Blob Security Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
ScrollTrail of Bits
Date2023-08

Scroll L2geth Initial Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
ScrollTrail of Bits
Date2023-08

Scroll L2geth Security Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
ScrollTrail of Bits
Date2023-07

Scroll zkTrie Security Review

L1/L2Trail of Bits
PDF ReportDownload โ†—
Clarity Alliance4 reports
ZestClarity Alliance
Date2024-11

Zest ClarityAlliance Audit

DeFiClarity Alliance
PDF ReportDownload โ†—
ZestClarity Alliance
Date2024

Zest Protocol v2 Audit

DeFiClarity Alliance
PDF ReportDownload โ†—
ZestClarity Alliance
Date2024

Zest Protocol v2 Upgrade Audit

DeFiClarity Alliance
PDF ReportDownload โ†—
ZestClarity Alliance
Date2024

Zest Protocol v2 Upgrade V2 Audit

DeFiClarity Alliance
PDF ReportDownload โ†—
Zellic4 reports
XionZellic
Date2024

Xion Passkeys Zellic Audit

InfrastructureZellic
PDF ReportDownload โ†—
ScrollZellic
Date2023-09

Scroll Zellic Audit (Sep 2023)

L1/L2Zellic
PDF ReportDownload โ†—
ScrollZellic
Date2023-05

Scroll Zellic Audit (May 2023)

L1/L2Zellic
PDF ReportDownload โ†—
Scroll / LidoZellic
Date2023

Scroll Lido Gateway Audit

BridgeZellic
PDF ReportDownload โ†—
CoinFabrik2 reports
ZestCoinFabrik
Date2023-11

Zest CoinFabrik Audit

DeFiCoinFabrik
PDF ReportDownload โ†—
ALEXCoinFabrik
Date2022-12

ALEX Bridge Audit (CoinFabrik)

BridgeCoinFabrik
PDF ReportDownload โ†—
Ambisafe2 reports
VariousAmbisafe
Date2023-11

Ambisafe Security Audit (Nov)

DeFiAmbisafe
PDF ReportDownload โ†—
VariousAmbisafe
Date2023-07

Ambisafe Security Audit (Jul)

DeFiAmbisafe
PDF ReportDownload โ†—
OpenZeppelin1 report
OpenZeppelinOpenZeppelin
Date2025

OIF Broadcaster Audit

InfrastructureOpenZeppelin
PDF ReportDownload โ†—
yAudit1 report
Inverse FinanceyAudit
Date2024

sDOLA yAudit

DeFiyAudit
PDF ReportDownload โ†—
Sherlock1 report
VariousSherlock
Date2024

Sherlock Junior Contest Report

CompetitionSherlock
PDF ReportDownload โ†—
Cyfrin1 report
VariousCyfrin
Date2023-11

Cyfrin Security Audit

DeFiCyfrin
PDF ReportDownload โ†—
CertiK1 report
VariousCertiK
Date2023-05

CertiK Security Audit

DeFiCertiK
PDF ReportDownload โ†—
Hacken1 report
VariousHacken
Date2023-05

Hacken Security Audit

DeFiHacken
PDF ReportDownload โ†—
Immunefi Internal1 report
ImmunefiImmunefi Internal
Date2023-02

Immunefi Vaults System Audit

InfrastructureImmunefi Internal
PDF ReportDownload โ†—
Least Authority1 report
ALEXLeast Authority
Date2022

ALEX Least Authority Audit

DeFiLeast Authority
PDF ReportDownload โ†—
Browse All Research โ†’