https://github.com/beauwilliams/solidity-reentrancy-attack-example

Learn how to exploit a reentrancy attack to steal ether. Then see how the exploit is mitigated with the check effects interaction pattern.
https://github.com/beauwilliams/solidity-reentrancy-attack-example

ethereum exploit security solidity solidity-contracts solidity-language

Last synced: 5 months ago
JSON representation

Learn how to exploit a reentrancy attack to steal ether. Then see how the exploit is mitigated with the check effects interaction pattern.

• Host: GitHub
• URL: https://github.com/beauwilliams/solidity-reentrancy-attack-example
• Owner: beauwilliams
• Created: 2022-10-19T20:54:15.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2022-10-21T04:18:30.000Z (over 3 years ago)
• Last Synced: 2025-03-16T00:17:21.545Z (over 1 year ago)
• Topics: ethereum, exploit, security, solidity, solidity-contracts, solidity-language
• Language: TypeScript
• Homepage:
• Size: 320 KB
• Stars: 0
• Watchers: 2
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
#  Solidity-Reentrancy-Attack-Example

## OVERVIEW

This repo shows a reentrancy attack in action, as well as a fix to mitigate the attack. With tests to show the process of how it all works.



## GET STARTED

This project uses a [task runner called just, for convenience](https://github.com/casey/just)

```

Available recipes:

    default

    install *PACKAGES

    update

    compile

    compile-watch

    deploy-localhost

    deploy-testnet

    verify-testnet

    test

    test-watch

    lint

    start

    format

    audit

    print-audit

    print-gas-usage

    print-deployments

    clean

```

### Running tests and audits

- Run the unit tests with `just test`

- Statically analyse code for vulnerabilities with `just audit`

### Starting a new project from this template

- Clean the workspace (to start a new project, removing example code and scripts) using `just clean`

- Create your solidity code in `/contracts`, tests in `/test` and deploy/verify scripts in `/scripts`

## Available Tasks

See `./tasks/index.ts` to view available tasks and enable them.

Some might require a little configuration

## FAQ

### Error compiling contracts on freshly cloned repo

`Error HH12: Trying to use a non-local installation of Hardhat, which is not supported.

Please install Hardhat locally using npm or Yarn, and try again.`

Run `npm i` to fix this error which will install hardhat

### Performance optimizations

For faster runs of your tests and scripts, consider skipping ts-node's type checking by setting the environment variable TS_NODE_TRANSPILE_ONLY to 1 in hardhat's environment. For more details see the documentation.

### Husky

ERROR ON COMMIT -> `husky > pre-commit hook failed (add --no-verify to bypass)`

RESOLUTION -> Remove errors from your smart contracts, found running `npm run lint`, or commit using --no-amend flag to temporarily bypass.

### Error running audit task

Ensure [Slither](https://github.com/crytic/slither) is installed and in your $PATH

## DEMO

![demo](https://i.ibb.co/tY00DR0/Screen-Shot-2022-07-13-at-1-57-15-pm.png)

## TODO

- [ ] Fix prettier plugin sol hint not working nvim (Remove prettier plugin from sol hint.son to fix)