Fuzz & Invariant Tests | The secret to finding CRITICAL vulnerabilities faster
HTML-код
- Опубликовано: 10 сен 2024
- What are Fuzz tests?
What are invariant tests?
What are they for?
The fuzz/invariant test suite is one we at Cyfrin use to find high-severity issues quickly before we jump into the manual review!
This is the new FLOOR for security in Web3. Please understand your invariants and write fuzz tests for them!
✍️ Article: / fuzz-invariant-tests-t...
👌 Using the Handler Method: mirror.xyz/hor...
📚 Invariant vs Fuzz: ethereum.stack...
🛠️ Foundry Invariant: book.getfoundr...
🦔 Echidna: github.com/cry...
⛨ Looking for a smart contract audit?
Hit us up!
www.cyfrin.io/
✅✅ Donate ✅✅
I use donated funds to spend money on making fun & informational videos.
ETH/Polygon/Avalanche/EVM Chains Wallet address:
0x9680201d9c93d65a3603d2088d125e955c73BD65
Or, optionally:
- patrickalphac.eth (ETH Only)
😸😸Follow Patrick!😸😸
Cyfrin: www.cyfrin.io/
RUclips: www.youtube.co...
Twitter: / patrickalphac
Medium: / patrickalphac
TikTok: / patrickalphac
Twitch Stream Uploads & Shorts: / @patrickalphac-alt
All thoughts and opinions are my own.
Loving your vids and medium articles... your passion and teaching methodology are unmatched.. ;o)
Glad they are helpful!
i wish i could be real life friends with Patrick xD
Same bro he is kind of 10+ years older than me but humor makes it irrelevant 😂
brilliant, we need this series!
Love from twitter, not many programmers with this amount of energy!
👏💪💪
I have attended a web3 security summit and also read a couple of fuzzing/invariant blogs but it always stayed kind of blurry in my head. But watching your 9 min video just made it everything clear. Thank you Patrick!
glad to hear it!!
Top quality content. I'll be implementing this during the weekend
30 seconds into the video and cant stop laughing. Wonderful. Love you Patrick.
Glad to hear it :)
"Ripped Jesus is a solid second" I had to play that back twice.
Probs my favorite part of the vid lol
The summary of the video using just one formula:
E + H + S = P
(Energy + Hilariousness + Simplicity = Patrick)
Wow I like this formula
Omg that flash loan bit 😂🤣
**agressively mixxing saliva** yOuR cOnTrAcT!!
Marvelously explained!.. Will be waiting for the formal verification video
Ser! Make a detailed course on Foundry please 🙏
🫡
Patrick I love your videos, I want to be like you! How you manage social presence while learning so much things, I am mono laser focus kind of guy I don't understand how you can manage this? I dont even take day off when sunday there is so much to do and learn lol 😂
I feel you! Just keep learning.
Something that helps me learn is to make this content though, so after a week I dedicate a day to rolling up everything I learned into a video. And I do this every other week.
@@PatrickAlphaC wow really great i will apply this
great as always
🫡🫡🫡
Hey Patrick, wen video for advanced fuzz strategies?
Badly wanna up the web3 sec game and write some pro invariants/ fuzz tests,,, LFG!!!
For now, check out the article by horse facts in the description!
Yup, that was the first article i truly practiced fuzzing with and got my hands dirty.
Also the one by Alex Roan written for setting up and deducing invariants for Beanstalk, really appreciate the effort, actually made me think how fuzzing should work in real world, felt like I was reading Ethereum as a Dark Forest once again.
💪
Patrick, great channel! Halfway through your Solidity course and really enjoying the in depth knowledge. It is incredible and I am so lucky to have found it. I was wondering...
Are there any programming DeFi courses out there that teach trading programmably? Moreso than Berkeley's DeFi course, rather a course that teaches leveraged trading, swapping, etc.
Thanks so much.
Not that I've seen... it's been on my todo list but I haven't had time to make it :(
@@PatrickAlphaC appreciate the reply, your channel has been inspirational. Thanks again.
"ripped jesus" lmao
82
👌👌👌
Still looking for a role Pat 😉
I can't understand anything from this video :(
damn.. where did you get stuck?
Patrick, I’ve been trying to learn smart contract auditing for 6 months and I feel I can’t learn it.
I’ve been reporting a lot of bug bounties and 0 success. I did some levels of Ethernaut but was only it. I feel I won’t be able to learn it.
Do you have any tip for me to really learn about it? It’s been a very hard journey…
Working on some content for you fren. Might be a couple months.
For now, just keep improving. Build some projects, and learn how to be a fuzz testing master
@@PatrickAlphaC Thanks Patrick! I’ll be waiting for it
Are you using Foundry as your go to now?
pretty much
Что за фокусы ты показываешь?))
happyCat.gif