Latest posts
October 17, 2023
INSIDER! Impersonating others on GitHub
Do you know it is easy to impersonate other users on GitHub if you have write access to any repository? I will show you an example, and how…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
August 22, 2023
ETHWarsaw 2022 - Security Panel
Join us in revisiting the first edition of ETHWarsaw, where Damian Rusinek, as a representative of Composable Security, alongside esteemed…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
June 27, 2023
The Role of Access Control in Solidity Smart Contracts
Once upon a time, in the mythical land of Soliditium, a courageous knight named Sir Codelot embarked on a grand mission. The Role of Access…
Paweł Kuryłowicz
Managing Partner & Smart Contract Security Auditor
September 19, 2023
Secure integration with LayerZero
A few weeks ago we reviewed a project that was integrating with LayerZero Omnichain Tokens. We were not able to find an all-in-one security…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
August 08, 2023
Uniswap v4 - threat modeling for secure integration
Learn what to watch out for and what to take care of when integrating with Uniswap v4. Vision behind Uniswap V4 and team approach The…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
June 13, 2023
ETHWarsaw MeetUp - Bridge Sins Presentation
We highly recommend viewing Damian Rusinek's presentation from the ETHWarsaw meetup. Security sins of web3 bridges In an era where our world…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
September 05, 2023
White hack policy
We've all seen more than one situation where a black hat "turned out" to be a "white hat" and when someone meant well, it turned out badly…
Paweł Kuryłowicz
Managing Partner & Smart Contract Security Auditor
July 11, 2023
Account Abstraction - a tale on the evolution of wallets
Trust, convenience, and security are just a few values from Sir Codelot's knightly ethos. Let's find out what they turned into. The history…
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
May 30, 2023
Understanding the Tornado Cash Governance Attack
In the rapidly evolving world of decentralized finance (DeFi), the recent attack on Tornado Cash’s Governance community stands as a stark…
Paweł Kuryłowicz
Managing Partner & Smart Contract Security Auditor