Description
Smart Contract Security 201 – EatTheBlocks Pro, Arturo Beccar-Varela – Smart Contract Security 201 – EatTheBlocks Pro, Smart Contract Security 201 – EatTheBlocks Pro download, Arturo Beccar-Varela – Smart Contract Security 201 – EatTheBlocks Pro review, Smart Contract Security 201 – EatTheBlocks Pro free torent
Arturo Beccar-Varela – Smart Contract Security 201 – EatTheBlocks Pro
Smart Contract Security 201
Learn skills needed to audit smart contract code
Security Course 201
This is the second course in our Smart Contract Security curriculum.
One of the most pressing problems for smart contract deployment is security and as such it is paramount we understand how to develop a smart contract in the safest way possible. But going one step further, this is not enough. We need to be able to audit our own smart contract code using various automated tools and also manual revisions.
Since the large percentage of the contracts represent real money, we, as developers need to be on top of everything and should always be up-to-date on the most known vulnerabilities and know how old hacks worked so as not to repeat those same errors within our own smart contracts.
There are both pros and cons to using the automated analysis tools and/or auditing the code manually for any vulnerabilities. It is good practice to also optimize for gas so users don’t end up paying too much when interacting with our smart contracts.
Lastly, the course goes through the various stages of a professional audit and what it entails and by the end of it will make you an expert on how to apply the same knowledge in evaluating your own smart contract code.
In this course, you will learn:
Introduction to Audits
Understanding security in a Blockchain Application
How does an attack on a Smart Contract work?
Best practices and security patterns
Manual Audits and using tests to audit the code
Automated Analysis Tools vs Manual revisions
Gas Optimization and tools to measure gas costs
Review of Public Audits
Stages of a Professional Audit
We will use:
Hardhat
Solidity
Slither
Prerequisites:
Solidity Basics:
Solidity Types
Function Declarations
Modifiers
How Inheritance works
Blockchain Basics:
Gas fees, Gas limits
EOA vs Contracts
Transactions vs Calls
Hardhat Basics:
How to deploy and interact with a smart contract
Basic Testing
Hardhat Configuration
Your Instructor
Arturo Beccar-Varela
Hi my name is Arturo and I work as a Blockchain Dev / Auditor at Coinfabrik.
I use my background in financial risk management, math, physics and computer science to help our clients and partners build stable and state of the art web3 solutions.
Course Curriculum
1. Course Introduction
1.1 Welcome to Security 201 (0:16)
1.2. Course Overview (0:58)
1.3. Prerequisites Security 201
1.5. Support & Resources
2. Introduction to Audits
2.1. What is an audit (2:42)
2.2. Review of Overflow & Underflow (6:41)
2.3. Review of Reentrancy (6:30)
2.4. Review of Denial of Service (4:36)
2.5. Appendix of common vulnerabilities not present in the previous course (6:53)
2.6. References
2.7. Q&A
3. Manual Audit
3.1. Summary of an audit (7:59)
3.2. Exercise – Manual Audit of Staking contract (0:19)
3.3. Solution – Manual Audit of Staking contract (3:23)
3.4. Classification of vulnerabilities (3:18)
3.5. Exercise – Using tests to audit code (0:22)
3.6. Solution – Using tests to audit code (9:28)
3.7. References
3.8. Q&A
4. Automated Analysis Tools
4.1. Automated tools vs manual revisions (3:26)
4.2. Test coverage (3:33)
4.3. Visualization (1:19)
4.4. Static Analysis with slither (2:20)
4.5. Slither example (6:40)
4.6. References
4.7. Q&A
5. Gas Optimization
5.1. Identifying common errors (2:52)
5.2. Further recommendations for gas optimization (7:53)
5.3. Tools to measure gas costs (3:51)
5.4. Exercise (0:12)
5.5. Solution (6:14)
5.6. References
5.7. Q&A
6. Review of Public Audits
6.1. Review of Public Audits (9:49)
6.2. References
6.3. Q&A
7. Stages of a Professional Audit
7.1. Before the audit (1:45)
7.2. Just before the audit (0:48)
7.3. During the audit (0:39)
7.4. Intended audience (1:00)
7.5. Closing the audit (1:17)
7.6. Delivery of the report (6:13)
7.7. Revision (2:02)
7.8. References
7.9. Q&A
8. Final Project
8.1. Final Project Presentation (0:56)
8.2. Material for final project
