I’m a Web3 security researcher and aspiring smart contract auditor with a passion for making DeFi safer and turning complex exploits into interactive, story-driven learning experiences.
I channel my favorite heroes and characters to tackle vulnerabilities:
- Iron Man’s precision ⚡ – meticulous audits & security analysis
- Naruto’s grit 🌀 – persistence in solving complex exploits
- Link’s problem-solving 🗡️ – creative approaches to hack reproduction & defense
I focus on:
Ethereum & Smart Contracts:
Solidity, Foundry, Hardhat, Remix, Truffle, Brownie, Ganache, Web3.js, Ethers.js, OpenZeppelin, Tenderly, DappTools, Etherlime, Scaffold-ETH, Alchemy SDK, Infura, Hardhat-deploySecurity & Exploits:
Reentrancy, MEV & Sandwich Attacks, Front-running, Bridge Heists, Flash Loan Attacks, Integer Overflow/Underflow, Access Control Vulnerabilities, Timestamp Dependence, Unchecked External Calls, Delegatecall Exploits, Phishing & Social Engineering, Honeypot Detection, Slippage Manipulation, Frontrunner Bots, Sandwich Bots, Contract Upgrade Vulnerabilities, Solidity Security Patterns, Slither, Mythril, Echidna, Manticore, Oyente, ConFuzzius, Securify, SmartCheck, Remix Security Plugins, Contract Fuzzing, TX Pool MonitoringEducation & Storytelling:
Gamified case studies, MCU & Anime inspired scenarios, CTF challenges (Code4rena, Sherlock, sol-bug-bench), Mock audits, Interactive tutorials, Story-driven exploit walkthroughs, Reproducible DeFi hacks, Learning modules for MEV, Reentrancy Loops, Sandwich Attacks, Cross-chain bridge exploits, Security learning repositories, Hackathons & community challengesDevelopment & Testing:
JavaScript, TypeScript, Python, Rust, Node.js, React, Next.js, Astro, TailwindCSS, Hardhat Testing Framework, Mocha, Chai, Waffle, Ethers.js Testing, Forge Tests, Property-based Testing (Echidna/Foundry), Docker, Git, GitHub Actions, Continuous Integration & DeploymentBlockchain Infrastructure & Tools:
Infura, Alchemy, QuickNode, Chainlink Oracles, Subgraph (The Graph), Tenderly Debugger, Ganache CLI, Flashbots RPC, Hardhat Forking, Multisig Wallets, MetaMask, WalletConnect, RainbowKitCollaboration & Documentation:
Markdown, GitHub Wiki, Notion, Excalidraw, PlantText, Figma (for visual storytelling), VS Code, Obsidian, Mermaid Diagrams.
I aim to bridge education and real-world Web3 security by:
- Reproducing and dissecting DeFi hacks with full code walkthroughs
- Designing gamified challenges & CTFs for security learners
- Sharing tools, mock audits, and tutorials to strengthen the ecosystem
All of this is done under my personal brand TheSandF, where pop culture meets blockchain security.
- Case Studies: MCU, Anime & Gaming inspired stories breaking down exploits
- Educational Content: Mock audits, tutorials, and reproducible CTFs
- Audit Beta Program: Early access on TheSandF.xyz – hands-on challenges & learning
I transform DeFi exploits into epic stories, helping developers learn, engage, and improve security skills - MCU-style storytelling meets smart contract research!
