vuln-web3-aa
CommunityIdentify ERC-4337 vulnerabilities in AA code.
Software Engineering#security-audit#smart-contracts#vulnerability-scanning#bug-bounty#replay-attack#account-abstraction#erc-4337
Authorn4igme
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This skill helps security engineers identify vulnerabilities in ERC-4337 implementations, focusing on account abstraction weaknesses such as UserOperation replay, paymaster drain, and smart account flaws.
Core Features & Use Cases
- Detect common Account Abstraction vulnerabilities (UserOperation replay, paymaster abuse, entryPoint exploitation, and smart account weaknesses) by scanning AA code paths and configuration.
- Provide targeted grep patterns and scanning rules to locate risky patterns in bundlers, paymasters, and wallets.
- Use Case: Security audits during bug-bounty workflows or AA deployment reviews to produce structured vulnerability reports appended to vulnerabilities.md.
Quick Start
Scan ERC-4337 components for vulnerabilities and append results to ./assessment/vulnerabilities.md.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: vuln-web3-aa Download link: https://github.com/n4igme/randscript/archive/main.zip#vuln-web3-aa Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.