Learn web3 / smart-contract Hacking in 2023 step by step guide

Dr. Gupta
Coinmonks
3 min readFeb 1, 2023

--

If you are a beginner in web3 security space and want to learn from start. Then I have compiled a step by step guide for 2023 version :-

First start with Blockchain Basics, Blockchain is different than traditional web2 so before starting to learn security and hacking of smart contract, give sufficient time to learn about all those basics needed to become Blockchain developer.

Blockchain Basics

Photo by Pierre Borthiry - Peiobty on Unsplash

Ethereum : the world computer and Solidity : the language of web3

Harvard’s CS50 you must look if you are totally new to computer technology and programming.

Reading like a story of solidity-lang documentation will give you better idea and mindset than most of other smart contract hackers out there, so that when in need you can come back and check the reference.

Photo by GuerrillaBuzz Blockchain PR Agency on Unsplash

Learn to Hack or Secure : depends upon you

CTFs : Now its time for some hands-on-practice on below CTFs which will let you dive into the real smart contract hacking world. Use both mind while solving fast and slow; both has its own benefits and outcomes.

Photo by Ian Schneider on Unsplash

Web3 News Updates

Subscribe to these news updates channels and get yourself updated with latest hacks and updates in Blockchain world. It will help you to get ahead in smart contract security field.

Photo by Julio Rionaldo on Unsplash

Tools for hunting

Framework/ programming tools : Practice these tools, everyone has some favorite arsenel, unless you try all, you don’t know which will become your tool for success. Every tool has its own cons and pros , hence if you have practiced with these all tools, you will know during competetion which to be used when.

Automation tools

Manual testing is better but who says automation tool is not good, know below tools and use it in time of need to get ahead of others and to focus on some of the important code reviews while automated tools help you find where to focus more next.

After Finishing all of the above , start with code4rena and then immunefi. practice enough with other audit reports and past attacks simulation.

Web3 bug hunting platform

Follow me on Twitter: https://twitter.com/BgxDoc

--

--

Coinmonks
Coinmonks

Published in Coinmonks

Coinmonks is a non-profit Crypto Educational Publication.

Dr. Gupta
Dr. Gupta

Written by Dr. Gupta

ll Insomniac Doctor loves Terminal || #Security_Researcher #DayTrader || Learn and Earn || #Web3_Doctor || Rookie Smart Contract Dev & Security Researcher ||

Responses (3)