Introduction

Welcome to the Blockchain Weakness Classification (BWC) and Bug Bounty Utilities repository. This project is designed to be a comprehensive resource for security researchers, developers, and anyone interested in the security of blockchain and decentralized applications.

The core of this repository is the Blockchain Weakness Classification (BWC), a hierarchical framework that categorizes vulnerabilities and weaknesses found in the blockchain ecosystem. The BWC covers a wide range of risks, from off-chain infrastructure to low-level smart contract code, providing a structured way to understand and address security issues.

In addition to the BWC, this repository provides a collection of resources and utilities to aid in bug bounty hunting and security analysis. These include:

• Hunting Notes: A collection of notes, tips, and frequently used addresses for various DApps and chains, designed to streamline the bug hunting process.
• Incidents: A database of real-world smart contract vulnerability incidents, classified using the BWC framework. This serves as a valuable learning resource for understanding how vulnerabilities are exploited in practice.
• Service Level Agreement: A template for a smart contract audit service level agreement, providing a starting point for auditors and clients to define the scope and terms of an audit.
• X-Tweets: A collection of tweet templates and examples for disseminating information about security incidents and vulnerabilities.

This repository is intended to be a living project, and contributions are welcome. Whether you're looking to learn about blockchain security, find your next bug bounty, or improve your security analysis workflow, we hope you find the resources in this repository to be valuable.