Web3 Security

Smart contract auditing, blockchain client auditing, and on-chain exploit investigation by DARKNAVY

Security Capabilities

Contract Auditor

DFS-based multi-agent Solidity audit with adversarial validation

Client Auditor

7-stage orchestrated audit for blockchain node codebases (Go, Rust, C/C++)

Go / Rust / C++

Exploit Investigator

Multi-agent pipeline for on-chain attack analysis with Analyst-Validator debate loop

Exploit Analysis Reports

YieldCore RWAVault Unauthorized Withdraw via Missing ERC4626 Allowance Check

2026-04-28Ethereum398,655.47 USDCMissing ERC4626 Allowance Check

yvWETH Approval Arbitrary Command Drain

2026-04-28Ethereum1 MAccess Control

Executor Missing Access Control USDC/USDT Drain

2026-04-27Ethereum~$408,318 (224,865 USDC + 183,453 USDT)Missing Access Control

Singularity_Fi dynBaseUSDCv3 Oracle Share Inflation

2026-04-25Base, USDCFlash Loan

GiddyVaultV3 Signature Replay

2026-04-23Ethereum~16.74 BTC (gauge shares)Signature Replay

KelpDAO rsETH LayerZero Packet Drain

2026-04-18Ethereum290 MUnknown

BurnAddress / MONA Deferred LP Burn

2026-04-14BSC60,950.308123921915843825 USDTUnknown

Hyperbridge ISMP Forged Proof DOT Mint

2026-04-13Ethereum108.2 ETH (~237K USD)Forged Proof Access Control

SubQuery Settings Access Control Staking Drain

2026-04-12Base218.3M SQT (~131K USD)Access Control

Denaria Finance Virtual AMM Manipulation

2026-04-05Linea165,618 USDCAMM State Manipulation