Blog

Security breakdowns, tool reviews, journey updates, and everything I'm learning along the way.

March 24, 2026·2 min read·Critical

Ethernaut Level 2: One Character Typo, Millions Lost

How a constructor naming bug in Solidity let anyone claim ownership of a contract. A walkthrough of Ethernaut's Fallout challenge.

ethernautsoliditysmart-contracts+2

March 23, 2026·3 min read·Medium

What AI Audit Tools Catch vs What They Miss in Smart Contracts

Based on the EVMbench benchmark and my own experiments running Slither on Ethernaut solutions, here is what AI audit tools catch and what they miss.

smart-contractsAIslither+1

March 23, 2026·3 min read·High

Ethernaut Level 1: How a receive() Function Hands Over Contract Ownership

A step-by-step walkthrough of the Ethernaut Fallback challenge. The contract looks secure through contribute(), but a weaker path in receive() lets anyone take control.

ethernautsoliditysmart-contracts+1