Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
Crypto Flexs
Home»HACKING NEWS»Brahma: Console v2 Audit Summary
HACKING NEWS

Brahma: Console v2 Audit Summary

By Crypto FlexsApril 17, 20242 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Brahma: Console v2 Audit Summary
Share
Facebook Twitter LinkedIn Pinterest Email

brahma console A storage and DeFi execution environment built as follows: safe Used as a custody rail, it enables granular access control through transaction policies and roles, as well as automated execution.

Brahma leveraged the Ackee Blockchain to perform a security review of commit 3578883 of the Brahma protocol with total time donations. 8 engineering days in the period between September 25th and October 5, 2023.

methodology

We began our review using a static analysis tool called Woke. We then took a closer look at the logic of the contract. Used Woke testing framework for testing and fuzzing.

We prepared a fuzz test covering the entire project, which yielded H1 and M1 problems.

During the review process, we paid special attention to the following:

  • All kinds of signature validation and testing
  • Check for possible registry manipulation
  • Check for possible replay attacks
  • Ensures that guards are not bypassed or lead to DoS
  • Ensure access controls are neither too relaxed nor too strict
  • Detect possible reentrancy in your code
  • I’m looking for common problems like data validation.

range

The audit was performed on commit 3578883 and scoped:

  • AddressProvider.sol
  • AddressProviderService.sol
  • constant.sol
  • ExecutorPlugin.sol
  • PolicyValidator.sol
  • SafeDeployer.sol
  • SafeEnabler.sol
  • SafeModerator.sol
  • SafeModeratorOverridable.sol
  • TransactionValidator.sol
  • ExecutorRegistry.sol
  • PolicyRegistry.sol
  • WalletRegistry.sol
  • SafeHelper.sol
  • TypeHashHelper.sol

For revision 1.1, a review was performed on the specified commit (4589ec4) and the scope was only results.

result

Here we have our result.

critical severity

No critical severity issues were found.

Severity High

H1: Console Permanent Denial of Service

medium severity

M1: _isGuardBeingRemoved check malfunction

low severity

L1: You can enable Console Guard without a policy.

warning severity

W1: Approved addresses cannot be revoked.

W2: CallType in different order than safety task

W3: The registry address cannot be changed.

Information Severity

I1: old document

conclusion

Here are the results of our review: 7 findingsup to information to High Seriousness. The most serious thing discovered through fuzz testing was the possibility of denial of service (H1). Otherwise, the codebase is good quality and well designed.

Currently, H1 and M1 issues have been resolved by the Brahma team.

We recommended to Brahma:

  • Update documentation according to the new codebase.
  • Addresses all other reported issues.

Ackee blockchain is full steer You can find the audit report with a more detailed description of all findings and recommendations. here.

We were happy to give our thanks. steer We look forward to working with them again.

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Genzio podcast | Vault12 encryption inheritance and asset management | Toronto

June 2, 2025

Director Trezor: What is the best hardware wallet in 2025?

May 31, 2025

US sanctions technology companies are related to millions of dollars of encryption fraud.

May 31, 2025
Add A Comment

Comments are closed.

Recent Posts

Stellar (XLM) Soroban Audit Bank Smart Contract Security Improvement

June 2, 2025

Flux.1 KONTEXT: Edit Image Editing as a Multimodal Model

June 2, 2025

Genzio podcast | Vault12 encryption inheritance and asset management | Toronto

June 2, 2025

TRON (TRX) sets a new record for monthly transmission in May.

June 2, 2025

Robin to be presented at the Global Exchange Meeting in June 2025

June 2, 2025

Dogecoin deep 16%a week, but $ 0.25 rally can be loaded. how?

June 2, 2025

The BNB chain improves the new AI BOT Initiative and AI integration.

June 2, 2025

Solana Price prediction: ETF Hype vs. Risk of unlocked -Is it a drop of $ 130 on the horizon?

June 2, 2025

The CZ suggests a dark full dex to suppress the operation.

June 2, 2025

Analysts said that XRP could fall to $ 1.70.

June 2, 2025

PRIMEXBT expands its global reach with FSCA regulatory password asset service.

June 2, 2025

Crypto Flexs is a Professional Cryptocurrency News Platform. Here we will provide you only interesting content, which you will like very much. We’re dedicated to providing you the best of Cryptocurrency. We hope you enjoy our Cryptocurrency News as much as we enjoy offering them to you.

Contact Us : Partner(@)Cryptoflexs.com

Top Insights

Stellar (XLM) Soroban Audit Bank Smart Contract Security Improvement

June 2, 2025

Flux.1 KONTEXT: Edit Image Editing as a Multimodal Model

June 2, 2025

Genzio podcast | Vault12 encryption inheritance and asset management | Toronto

June 2, 2025
Most Popular

Coinbase believes that tokenization and DeFi will be key themes in 2025 amidst cryptocurrency-friendly policies.

December 23, 2024

Tornado Cash founder jailed, DeFi’s EU struggle: Redefining finances

May 20, 2024

Research Firm Says Wall Street Doesn’t Understand Ethereum, Spot ETFs See Outflows

July 29, 2024
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms and Conditions
© 2025 Crypto Flexs

Type above and press Enter to search. Press Esc to cancel.