Skip to content
View Remato's full-sized avatar
πŸ”
Smart contract security research
πŸ”
Smart contract security research
49 followers · 48 following

Achievements

Achievement: Pull Sharkx3Achievement: QuickdrawAchievement: Pair ExtraordinaireAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull Sharkx3Achievement: QuickdrawAchievement: Pair ExtraordinaireAchievement: Arctic Code Vault Contributor

Highlights

  • Pro

Block or report Remato

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Remato/README.md

Smart Contract Security Researcher | Senior Fullstack Developer

HackerOne LinkedIn Twitter

Smart contract security researcher focused on EVM ecosystems, with 5+ years of fullstack engineering behind me.
My edge: I understand the full web3 stack β€” frontend, backend, smart contracts, and the integrations between them β€” where a lot of real-world vulnerabilities actually live.

πŸ” Security Research

I audit Solidity smart contracts, reproduce historical DeFi exploits as Foundry PoCs, and participate in public audit contests.

Focus areas:

  • Reentrancy, access control, and oracle manipulation
  • Signature replay and EIP-712 edge cases
  • MEV and front-running attack vectors
  • Web2 ↔ Web3 integration vulnerabilities (my differentiator)

Active on:

  • HackerOne
  • Code4rena Β· Cantina Β· Code Hawks (audit contests)

πŸ› οΈ Tech Stack

Security & Smart Contracts
Solidity Foundry EVM Ethers.js

Fullstack (day job)
TypeScript React React Native Next.js Node.js Express

Infra
AWS Docker PostgreSQL MongoDB Redis

πŸ“ Writeups & PoCs

(Coming soon β€” currently publishing CTF solutions and exploit reproductions.)

  • ctf-writeups β€” Ethernaut, Damn Vulnerable DeFi, and other CTF solutions
  • hack-analyses β€” Foundry PoCs reproducing historical DeFi exploits

πŸ“« Reach out

Open to: smart contract audits, bug bounty collaborations, and web3 security research engagements.
Day job: Senior Fullstack Developer β€” not looking to change that, but happy to chat about independent security work.

Pinned Loading

  1. ctf-writeups ctf-writeups Public

    Writeups for smart contract CTFs β€” Ethernaut, Damn Vulnerable DeFi, and more.

  2. hack-analyses hack-analyses Public

    Foundry PoCs reproducing historical DeFi exploits β€” step-by-step breakdowns with runnable tests.

  3. smart-contracts smart-contracts Public

    Solidity

  4. sui-bootcamp sui-bootcamp Public

    Move

  5. crypto-trader-app crypto-trader-app Public

    Crypto Investment app with real time charts

    TypeScript

  6. investment-platform investment-platform Public

    πŸ’° A Investment platform and Crypto wallet created with React Native, Typescript, Zustand and React Chart Kit

    TypeScript 4 2