After creating the uint public balance variable - we would have to update the claimReward + getBalance functions too right?

​ claimReward() after Ether is forcefully sent, so address(this).balance >= balance, user will receive more Ether than balance when calling claimReward(). this does not hurt the winner, so you as a smart contract coder can choose to reward the winner with balance or address(this).balance

is the best

Actually you can take all of the 7 ether, using a special function called create2. Here is how it works create2 is used to deploy a contract at the same address (even contracts that were previously deleted) 1. deploy Attack contract using create2 2. selfdestruct to force send Ether. this will delete Attack contract 3. use create2 to redeploy the Attack contract 4. Attack is the winner and can claim the 7 ethers

Smart Contract Programmer 😯 !!! Wow, that sounds like hacking!!! Will you cover create2 later ?

Breaking the game was possible with only 0.1 eth, in fact with every amount different from one because sum would never going to be == 7

@@smartcontractprogrammer how is the attack winner in step 4 ?

@@smartcontractprogrammer Another way would be to send 4 Ether when calling attack, which makes the Game ther to 6. Then quickly deposit the 1 Ether to the game like a normal player. to become the winner :)

yes

Game requires each deposit to be exactly 1 ETH. Under normal circumstance, 7th depositor will win. However this rule can be broken by forcefully sending more than 1 ETH and immediately win the game

The attacker's 5 eth was sent forcefully via selfdestruct, not via the deposit function as intended; therefore, it did not go through the if condition that would set the winner. I believe if the game is not active enough, you could forcefully send 4 ether and then immediately send the remaining 1 ether to win the game on your demand. The caveat there would be that there is a probability some other player deposited just after your attack has finished. (someone else also suggested this in the comments) To be more reliable, you could write an attack with 2 contracts for that: say there is N ether remaining to win the game, and you have contract X with 1 ether and Y with N-1 ether. You write an attack function in X such that it calls an external function in your Y contract which will cause Y to selfdestruct and send its N-1 to the target, and right after that the next line in X attack will be to deposit 1 ether to the target, thereby winning the game. The game could also defend against this by only allowing EOA's to play, and disallow contracts (i.e. requiring that msg. sender == tx. origin)

​@@ErhanTezcan Thank you for taking the time to reply. This makes much more sense now. For some reason I was thinking the eth that was forcefully sent was done through the deposit function instead of selfdestruct

selfdestruct(address(0))

@@smartcontractprogrammer hey thanx man appreciate it 👍

only increase by sending ETH

There are alot of ways to rug pull. Self destruct can be a part of it.

if there is a function to withdraw ETH, otherwise it's stuck

People cannot directly send Ether because the contract doesn't have a payable fallback function. That is why selfdestruct is used to forcefully send ETH and break the contract

@@smartcontractprogrammer thks!

Warning can be fixed if you put this up at the first line // SPDX-License-Identifier: MIT What error are you getting?