Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

M3dython/M3dython

BranchesTags
Open more actions menu

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
15 Commits
README.md
README.md
 
 

Repository files navigation

Hi there, I'm M3dython 👋

M3dython Profile

Security Researcher | Smart Contract Auditor

🌐 m3dython.com

I don't just hunt bugs; I secure Protocol Solvency. Specializing in advanced business logic exploits and economic attack vectors.

👨‍💻 About Me

I'm M3dython, a specialized Blockchain Security Researcher focused on DeFi protocol architecture. I actively compete in top-tier audit contests like Sherlock, where I've earned recognition for identifying High/Critical vulnerabilities in complex financial logic.

My mission is to help projects scale securely. I bridge the gap between raw code and business logic to prevent treasury-draining exploits.

  • 🔭 Focus: Advanced smart contract security patterns & auditing.
  • 🌱 Learning: Solidity Fuzzing (Foundry/Echidna) and Formal Verification.
  • 🛡️ Services: Available for private audits and consultation.
  • Fun fact: I find uncovering subtle logical flaws in Web3 protocols incredibly rewarding.

📊 Sherlock Stats

High Findings Medium Findings Total Earnings All Time Rank

Payouts Top 10 Top 25 Top 50

📬 Connect & Socials

Website Twitter LinkedIn Email

🛠️ Languages & Tools

🏆 Audit Track Record

Primary Platform: Sherlock Profile

Contest Findings Earnings Rank
Privacy Cash (Nov '25) - 9.52 USDC #49
Saffron Fixed Income Vaults (Oct '25) - 13.77 USDC #50
3Jane (Oct '25) - 77.00 USDC #18
Yield Basis (Aug '25) 1 69.47 USDC #10
DeBank (Jul '25) - 465.45 USDC #7
DODO Cross-Chain DEX (Jun '25) 1 75.65 USDC #39
LEND (May '25) 5 41.26 USDC #52
Burve (Apr '25) 3 2,509.74 USDC #8
PinLink RWA (Mar '25) - 19.47 USDC #39
Yieldoor (Feb '25) 2 48.21 USDC #15

🔍 Detailed Findings Breakdown

📂 Click to expand specific vulnerability details

Yield Basis (Aug '25)

  • Finding: Admin will brick gauge controller configuration for the protocol.

DODO Cross-Chain DEX (Jun '25)

  • Finding: Any External Actor will Steal Approved ZRC20 Tokens from GatewayTransferNative Contract.

LEND Protocol (May '25)

  • Finding 1: CrossChainRouter uses incorrect collateral/token data during cross-chain liquidations, disrupting repayment logic.
  • Finding 2: _checkLiquidationValid logic flaw allows unfair liquidations or prevents valid ones.
  • Finding 3: Interest logic in borrowWithInterest understates cross-chain debt, risking insolvency.
  • Finding 4: CoreRouter prone to fund depletion due to miscalculated redemption payouts.
  • Finding 5: Liquidators may under-liquidate positions due to maxClose using incomplete accrued balances.

Burve Protocol (Apr '25)

  • Finding 1: Zero Tax Exploitation mechanism found in Withdrawal Function.
  • Finding 2: Internal vs External vault share mismatch potentially traps user funds.
  • Finding 3: Critical: ERC4626 inflation attack vector identified on underlying vault.

Yieldoor (Feb '25)

  • Finding 1: Uninitialized feeRecipient diverts protocol fees to zero address (revenue loss).
  • Finding 2: Calculation error impacts leveraged position holders.

🎓 Educational & Open Source

  • Damn Vulnerable DeFi Solutions: My personal write-ups and solutions for the DVD wargame. View Repository

© 2025 M3dython. Open for audits and collaboration.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Morty Proxy This is a proxified and sanitized view of the page, visit original site.