Blockchain Protocol Audit

Cloud Security Audit

Data Loss Prevention

DevSecOps

Incident Response

Internal Network Audit

Managed Bug Bounty

Managed Security Service

On-chain Monitoring

Other

Password Manager

Penetration Testing

Performance Testing

Secrets Manager

Security Monitoring

Security Training

Smart Contract Audit

Vulnerability Assessment

Vulnerability Management

WhiteHub Bug Bounty

Tycoon engaged CyStack to perform a Penetration Test of their applications. The purpose of this project is to identify security weaknesses, determine the impact to Tycoon, document all findings in a clear and repeatable manner, and provide remediation recommendations. The project commenced on 15/06/2021 requiring five (5) security researchers. On 05/08/2021, CyStack performed a retesting that confirmed the effectiveness of the applied mitigations. All issues with direct security impact have been addressed by Tycoon.

Từ ngày 15/06/2021, CyStack đã thực hiện đánh giá bảo mật cho các ứng dụng của Tycoon. Mục đích của dự án này là xác định các điểm yếu về bảo mật, xác định tác động đối với Tycoon, ghi lại tất cả các phát hiện một cách rõ ràng và có thể lặp lại, đồng thời đưa ra các khuyến nghị khắc phục. Ngày 05/08/2021, CyStack đã tiến hành kiểm tra lại để xác nhận Tycoon đã khắc phục toàn bộ các lỗ hổng nghiêm trọng có thể dẫn tới nguy cơ khai thác hoặc phá hoại trực tiếp hệ thống. Tất cả các lỗ hổng bảo mật được phát hiện đều đã được xử lý tuân theo các khuyến nghị từ CyStack.

Application-Level Denial-of-Service (DoS)

Critical Impact and/or Easy Difficulty

High Impact and/or Medium Difficulty

App Crash

Malformed Android Intents

Malformed iOS URL Schemes

Automotive Security Misconfiguration

Infotainment, Radio Head Unit

PII Leakage

OTA Firmware Manipulation

Code Execution (CAN Bus Pivot)

Code Execution (No CAN Bus Pivot)

Unauthorized Access to Services (API / Endpoints)

Source Code Dump

Denial of Service (DoS / Brick)

Default Credentials

RF Hub

Key Fob Cloning

CAN Injection / Interaction

Data Leakage / Pull Encryption Mechanism

Unauthorized Access / Turn On

Roll Jam

Replay

Relay

Injection (Battery Management System)

Injection (Steering Control)

Injection (Pyrotechnical Device Deployment Tool)

Injection (Headlights)

Injection (Sensors)

Injection (Vehicle Anti-theft Systems)

Injection (Powertrain)

Injection (Basic Safety Message)

Injection (Disallowed Messages)

Injection (DoS)

Battery Management System

Firmware Dump

Fraudulent Interface

GNSS / GPS

Spoofing

Immobilizer

Engine Start

Automatic Braking System (ABS)

Unintended Acceleration / Brake

Roadside Unit (RSU)

Sybil Attack

Smart Contract Security

Data Calculation

Integer Division

Integer Overflow And Underflow

Interger Sign

Interger Truncation

Wrong Operator

Data Hidden

State Variable Default Visibility

Hidden Built-in Symbols

Incorrect Inheritance Order

Data Initialization

Unintialized Local/State Variables

Unintialized Storage Variables

Description Output

RightToLeft Override Control Character

Environment Supporting Software

Delete Dynamic Array Elements

Using Continue Statements In do-while-statements

Interaction Contract call

Delegatecall To Untrusted Callee

Re-entrancy

Unhandled Exception

Interaction Ether Flow

Unprotected Ether Withdrawal

Unexpected Ether Balance

Locked Ether

Pre-sent Ether

Interface Parameter

Call/Delegatecall Data/Address Is controlled Externally

Hash Collisions With Multiple Variable Lenght Arguements

Short Address Attack

Signature With Wrong Parameter

Interface Token Interface

Non Standard Token Interface

Logic Assembly Code

Arbitrary Jump With Function Type Variable

Returning Results Using Assembly Code In Constructor

Specify Function Variable As Any Type

Logic DOS

DOS With Failed Call

DOS By Complex Fallback Function

DOS By Gaslimit

DOS By Non-exsistent Address Or Mal Contracts

Logic Fairness

Weak Sources Of Randomness From Chain Attributes

Block Values As A Proxy For Time

Results Of Contract Execution Affected By Miners

Transaction Order Dependence

Logic Storage

Storage Overlap Attack

Logic Bussiness

Bussiness Logic In Code

Performance Gas

Gas Griefing

Byte

Invariants In Loop

Invariants State Variable Are Not Declared Constant

Declared External For Unused Public Functions

Security Authority Control

Write To Arbitrary Storage Location

Replay Attack

Suicide Contract

Use tx.origin For Authentication

Use tx.origin For Authorization

Wasteful Contract

Wrong Constructor Name

Security Privacy

Lack Of Proper Signature Verification

Signature Malleability

Non-public Variable Are Accessed By Public/External Functions

Public Data

Standard Maintainability

Implicit Visibility

Nonstandard Naming

Too Many Digits

Unlimited/Outdated Compiler Versions

Use Deprecated Built-in Symbols

Standard Programming

Code With No Effect

Message Call With Hardcoded Gas Amount

Presence Of Unused Variables

View/Constant Function Changes Contract States

Improper Use Of Require, Assert and Revert

Non-EVM Blockchain Solana

Missing Signer Checks

Missing Ownership Checks

Missing rent exemption checks

Signed invocation of unverified programs

Solana account confusions

Redeployment with cross-instance confusion

Missing freeze authority checks

Insufficient SPL-Token account verification

Over/under payment of loans

Anti-pattern instruction calls

Account data matching

Type cosplay

Account initialization

Arbitrary CPI

Duplicate mutable accounts

PDA sharing

Closing accounts

Bump seed canonicalization

Non-EVM Blockchain NEAR

Unhandled promise's result

Lack of #[private] macro in callback functions

Lack of check for self-transfer

Use of incorrect json type

Changes to collections are not saved

Lack of check approval id during NFT transfer

Lack of owner check during NFT transfer

Panic in callback may lock the contract

Lack of two-factor authentication

NEP-141 transfer doesn't panic on unregistered receiver accounts

Lack of check for prepaid gas in ft_transfer_call

Improper #[private] use in non-callback function

Missing check for the storage fee before trying to unregister the storage

Non-EVM Blockchain RUST

Unsafe Rust code 

Outdated dependencies

Outdated Rust Compiler Version

Blockchain Protocol Security

Network Layer P2P

Eclipse Attack

Eavesdropping Attack

Denial of Service Attack

BGP Hijack Attack

Alien Attack

Timejacking

Network Layer RPC

The Ethereum Black Valentine's Day Vulnerability

HTTP Input Attack

Cross-Domain Phishing Attack

Ledger Layer Consensus

Tycoon

Tycoon

Overview

Assessment Checklist

Organization

Deliverables

You are looking for a similar cybersecurity solution?

Protect your system,

protect the future of your business

CyStack and Cookies