Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
  • TRADE
Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
  • TRADE
Crypto Flexs
Home»HACKING NEWS»Wake ERC-4337 Detector – Ackee Blockchain
HACKING NEWS

Wake ERC-4337 Detector – Ackee Blockchain

By Crypto FlexsMay 15, 20243 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Wake ERC-4337 Detector – Ackee Blockchain
Share
Facebook Twitter LinkedIn Pinterest Email

Ackee is finalizing its ERC-4337 detector to identify prohibited opcode usage and repository access, transforming a very labor-intensive manual review into an automated process that reduces the potential for human error.

Let Wake detect ERC-4337-related vulnerabilities in your code. Want to test your code for free with the Wake ERC-4337 detector? Submit this form!

wake up A Python-based framework for developing and testing Solidity smart contracts. It includes a static analysis engine that detects and reports issues in your Solidity code. Wake was developed and used by Ackee Blockchain Security to perform smart contract audits, helping to discover several with medium, high, and critical levels. weakness.

ERC-4337 Defines a set of restrictions for the user action validation steps that must be followed to protect the user action bundler from denial-of-service attacks. The limitations are detailed below: ERC-7562.

Limitations include:

  • Forbidden opcodes and conditionally prohibited opcodes;
  • Access to contract repositories other than the smart accounts with which they interact is restricted.

Ackee is finalizing an ERC-4337 detector that can detect the ERC-4337 ‘validateUserOp’ function, which serves as the entry point for the validation phase. All functions called thereafter are tested. Use of restricted opcodes is reported as a detection.

Detecting restricted storage access requires a more comprehensive approach. Storage access is only allowed to slot `A` and slot `keccak256(A || x) + offset`. Where `A` is the address of the smart account being interacted with, x is the `bytes32` value, `offset`. is a number up to 128 and ‘||’ indicates a concatenation. While access to slot `A` can only be achieved through assembly (Yul language), the second pattern (with `keccak256`) is common to access Solidity mappings using `A` as the key of the mapping.

Both problems involve evaluating whether certain values ​​(Yul `sload` and `sstore` arguments, mapping keys) are equal to a smart account address. The smart account address is always stored as a member (‘sender’) of the first argument of ‘validateUserOp’. So if a given value depends on the ‘sender’ of another variable defined elsewhere in the code, the problem can be redefined as a check. Dependency paths can include function calls, reassignments to new variables, or type casts.

The Wake ERC-4337 detector uses data dependency graphs, a feature currently in development, to analyze data relationships between different parts of the code. Data dependency graphs are utilized in the ERC-4337 detector to achieve high precision of reported detections.

Wake ERC4337 detector

Thanks to the ERC-4337 detector, it is very easy to detect prohibited opcode usage and storage access. This is very labor intensive to check manually.

Test your code for free with the Wake ERC-4337 detector. Submit this form!

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Summary of the Router Router

July 17, 2025

Encryption Inheritance: Industrial Round Up -January 20125

July 15, 2025

Floki Eyes 120% Rally Valhalla launches $ 10K prizes after explosive weekly growth

July 13, 2025
Add A Comment

Comments are closed.

Recent Posts

MultiBank Group To List $MBG Token On Gate.io And MEXC During Official Token Generation Event

July 18, 2025

Earn $4,777 Daily! PaxMining Leads 2025’s Record-Breaking Bitcoin Mining Boom

July 18, 2025

GSR Leads $100M Private Placement Into Nasdaq-listed MEI Pharma To Launch First Institutional Litecoin Treasury Strategy Alongside Charlie Lee

July 18, 2025

KuCoin Launches XStocks, Delivering A One-Stop Access Point To Top Global Tokenized Equities

July 18, 2025

💵 FREE $18 USDT – Just For Signing Up!

July 18, 2025

How Does AIXA Mining Break Traditional Barriers?

July 18, 2025

How Does AIXA Mining Break Traditional Barriers?

July 18, 2025

The future of EF ecosystem development

July 18, 2025

Satoshi-Aera Bitcoin Whale moves another 40K BTC to Galaxy Digital.

July 18, 2025

Behind The Surge In XRP, DLMining Brings New Opportunities To Mine BTC With Your XRP

July 18, 2025

The strategy has hit the highest market cap since the Rally Bitcoin rally.

July 17, 2025

Crypto Flexs is a Professional Cryptocurrency News Platform. Here we will provide you only interesting content, which you will like very much. We’re dedicated to providing you the best of Cryptocurrency. We hope you enjoy our Cryptocurrency News as much as we enjoy offering them to you.

Contact Us : Partner(@)Cryptoflexs.com

Top Insights

MultiBank Group To List $MBG Token On Gate.io And MEXC During Official Token Generation Event

July 18, 2025

Earn $4,777 Daily! PaxMining Leads 2025’s Record-Breaking Bitcoin Mining Boom

July 18, 2025

GSR Leads $100M Private Placement Into Nasdaq-listed MEI Pharma To Launch First Institutional Litecoin Treasury Strategy Alongside Charlie Lee

July 18, 2025
Most Popular

Ethereum is struggling as investors switch to SOL, BTC. Will 2025 provide relief?

October 13, 2024

Ethereum and Dogecoin traders use Kelexo’s lending solution.

March 4, 2024

Enhancing AAA Web3 Gaming with Immutable (IMX) and MARBLEX Forge Alliance

June 26, 2024
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms and Conditions
© 2025 Crypto Flexs

Type above and press Enter to search. Press Esc to cancel.