Watching your channel long enough to understand some of it.

I understand right about nothing, but yeah very cool lol

This was a very well made video explaining the issue. I think some of the prerequisite information is missing though, but since I have that info this video was very easy to understand for me. However, to be honest, any contract that has assembly embedded into it should immediately raise red flags, so damage is minimized... and I would be much more interested into the different historical vulns that were found in plain old solidity contracts (Like smart contract re-entrance bugs etc.) and things like the parity multi-sig contract bug. It's cool to learn about certain CTFs, but I find learning about actual vulns that were abused in the wild on blockchains are great because no one can hide the history of the exploit, the stack trace is literally set in stone in the blockchain forever, you can see the money getting stolen, and how the EVM came to that conclusion. Whereas a company who was hacked will of course cover up any trace of them being in the wrong. A few blockchain based vulns I think you'd reeeeally like to look into (I can help if you have questions): 1. the blockchain.info bitcoin wallet bug that caused users to generate the same private keys as other users. (there are multiple instances of this happening, and each bug is different) 2. "The DAO" contract bug that caused the hard fork of ETH and ETC when ETC people said "we don't believe you should reimburse the investors" 3. Parity multi-sig bug. 4. Bitcoin "out-of-thin-air" bug where miners could generate as many bitcoins as they wanted. (CVE-2018-17144) (Great hackernoon article by Jimmy Song) I have started sharing your smart contract videos with my blockchain dev friends and they really like your style of explanation. Keep up the good work.

brain.exe has stopped working

Ah finally, I've been waiting for this one. Thanks.

this is my new favourite channel. glad I found you!

You should really do more evm explainers. I learn so much from these videos.

Another excellent video, Bolchoseth. Your explanations are extremely helpful.

thank you, now i understand not to make fun of my assembly language instructor in college

I'm curious if there is anyone else watching this that honestly has very little idea what's going on? I find these videos really interesting and educational, but I know that a lot of it goes over my head because I simply don't know much when it comes to this sort of stuff. Can anyone else relate?

Are you planning to continue your I:ONIK hub router thing research? I really liked that.

Take a look on EthereumJ, it allow you look into contracts variables storage. Very cool! But for old contracts you need full sync!

this is great

Before watching this video, I thought Ethereum worked the same way as Bitcoin.

Awesome for understanding the difference between runtime and dependent code Except I don't understand where is the CREATE or CREATE2? The value returned by RETURN(start_offset, end_offeset) seems like an input for them

So what measures should smart contracts in general, deploy or adhere to in order to push back at this attack technique/vector. Always amazing stuff dude-- I love it.

Hi how to check the tron smart contract has backdoor or not? Also please tell once the contract is deployed a developer can modify or add backdoor on the contract?

Ah nice, another part

How long it took you to be this good or acquire this amount of knowledge and skill

Amazing like every Video your channel is really a nice gift to mankind. One of the best and most informative chans in KZbin. Its nice how compact and compressed your Videos are... No bullshit, just pure Knowledge and Information. Did you also some ICS and SCADA-Stuff ? Have you already knowledge in this field ? Seems to be interesting and a important skill for the Future. And maybe a cool Topic to make a video-series from, even when much stuff goes deep into producer-specific hardware for example Siemens S7 or Beckhoff-Stuff maybe also total customized controlsystems. It was stuxnet, what me impressed so much on this. It is so fascinating, interesting and also a little bit scary ;) Greetings Hotwire

I have RE knowledge and I have mixed feelings, by the way you explained the challenge seems easy to solve, but I know first hand that it's not. BTW that debugger is awesome.

Appreciate the detailed breakdown! Could you help me with something unrelated: I have a SafePal wallet with USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How should I go about transferring them to Binance?

Wow this is surprisingly simple... Makes me wonder how this stuff ends up in code in the first place. You'd think somebody would look at that during a code review and go "HMMMMMMM"

Nice video 👌👌

A video about Ghidra can be interesting !!

can someone explain what is the 61 and 60 is for and how to calculate the c7? itried to recreate it but it keeps failing, since the length from the contract that i test, is not 12a, thank you

1:50 where did the e go? :o

All scriptkiddies need to watch this and then see if they still feel like “hackers”. 😆

it's for ETH or ETH and ETC??

This video uploaded 1 hour ago , but i see the Christmas icon for edit cookie extension . is that another video ?

Great, more videos about blockchain please:)

So basically, EVM runs a user provided hex string as opcode ? : /

Well i need to learn assembly asap ..

But why would you ever put assembly with a jump in your "good" constructor anyway?

6 dizlikes from etherium smart contract team?

awesome men really awesome and its a fileless u give me idea imagine same bachdoor direct by dtmf (not for noobs) dont want to detaails bu t i think u really understand

Oh God! These many days??

Any thoughts on doing an android app reverse engineering playlist/video??

Hast du schon mal darüber nachgedacht dein Wissen strukturiert in paar Udemy Kurse zu packen? Damit würde sich sicherlich mehr Income generieren lassen und man könnte sich viel strukturierter und Schritt für Schritt Wissen von dir aneignen. Und die 13 Euro die da meistens gezahlt werden pro Kurs sind mehr als fair und würde sich jeder leisten, der wirklich Interesse hat.

And that children is why inline assembly or other kinds of direct memory access is evil 😈 Just give me my safe automatic memory managed language back D:

what is a copy protected QR code?

I've been following Ethereum for a long time and still can't see it as a safe platform.. being a Turing complete scripting language on a blockchain is an amazing idea but the fact that you can't update your code means it needs to be bullet proof from the get-go... and we know that bullet-proof code does not exist (or at least takes an insane amount of time and validation/testing to be created). I know there are new programming paradigms for Ethereum codes that split code into different smart contracts but that, to my knowledge, still depends on at least part of that code being immutable and, therefore, bullet-proof. On top of that the Ethereum Foundation's 'move fast and break shit' attitude (in contrast with Bitcoin's slow and conservative approach) adds fuel to that fire... even if your code is safu, the new updates might break it and insert vulnerabilities into your smart contract. Until there is a way for a smart-contract platform to some how allow for distributed computing AND immediate code refactoring by the creator I don't see how it can really deliver it's potential without insanely high losses from hacks...

Why did u ask the creator if the solidity code was fake? Couldnt u just compile it yourself and compare the bytecodes?

Hi, Iam a new subscriber, can you help me. I want to withdraw my tokens/coins from a smart contract. It say _tokens (uint256) what should i write there? I have around 90000 tokens not sure exact how much i have

Quite interesting… What is a Smart Contract again?

cool

Bist du deutsch?

WTF? That is too simple. Btw: Why can you do assembler in ETH in the first place?

Back door? Unleash the Mr. Potato Head comments! 😁

Just Monica

Wow. So who thought it was a good idea to let people write machine instructions directly into smart contracts? Probably the same people who thought intermingling data and executable code in the same memory with no protections thought that was a good way to deploy smart contracts. :/

Könntest du auch Mal deutsche Videos machen?

Oh man, this is Rick and Morty stuff... Geez

SOOOOOOOOOOOOOO SIMMMPPLLLEEEEE..........................................................................

I don't even know what a smart contract is lol

so tricky

Can i get a Heart? You are my Motivation :

The lesson here kids... Buy bitcoin

Hello and Welcome back to Episode 34 of ‘Why Is This In My Recommendation Feed?’

0x41414141 in myBrain()

This is not comment

test

Last