Skip to content
View chinmay-farkya's full-sized avatar

Block or report chinmay-farkya

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
chinmay-farkya/README.md

Hello, I'm Chinmay - Associate Security Researcher at Spearbit

A proficient smart contract security researcher dedicated to enhancing the security of web3. Ranked 54th overall on Sherlock. With a specific focus on Solidity, I aim to identify and resolve vulnerabilities, contributing to a safer blockchain ecosystem. Adept in collaborative environments and competitive settings as evidenced by achievements in various audit competitions.

I have audited Lending, Governance mechanisms, Perpetual DEXes, AMMs, Liquidity Management Vaults, Reward Gauges, veTokenomics implementations, DAO management protocol, Orderbook perp markets and I am familiar with Uniswap v3 integrations.

Professional Experience

Over the last 1.5 year, participated in contests on Sherlock, C4 and Cantina securing top 3 and top 5 positions in multiple contests across various domains including lending and borrowing, perpetuals, and more. This consistent success demonstrates a broad and deep understanding of different blockchain technologies and auditing skills. I have pretty good knowledge of the Defi landscape.

I have done a few solo audits as well. In march 2024, I got accepted into Block 6 of yacademy DAO auditing fellowship.

I am well versed with the internal working of EVM and bytecode formation.

Technical Skills

  • Languages: Solidity
  • Tools & Platforms: Foundry, EVM
  • Specialized Skills: Breaking down EVM bytecode, can read assembly code(Yul),

πŸ… Achievements in Audit Contests

Here is my Sherlock profile : https://audits.sherlock.xyz/watson/Chinmay

Here is my Code4rena profile : https://code4rena.com/@Chinmay

Major Highlights :

  1. Placed 2nd in Ajna Finance on sherlock - https://audits.sherlock.xyz/contests/75/leaderboard
  2. Placed 3rd in 100x finance on sherlock - https://audits.sherlock.xyz/contests/153/leaderboard
  3. Placed 5th in GMX update on sherlock - https://audits.sherlock.xyz/contests/74/leaderboard
  4. Placed 5th in MagicSea Staking on sherlock - https://audits.sherlock.xyz/contests/437/leaderboard
  5. Found 3 Highs out of 4 and 2 Medium findings in Ethereum Credit Guild contest on C4 : https://code4rena.com/@Chinmay
  6. Found 2 Highs and 5 Medium findings in zerolend contest on Cantina : https://cantina.xyz/leaderboard/a83eaf73-9cbc-495f-8607-e55d4fdaf407

Audits at Spearbit

Full portfolio available here => https://cantina.xyz/u/chinmay

πŸ“š Featured Audit Findings (Solo)

All results : Audits

Private Audits

  1. Juicebox V4
  2. Raisin Labs P2P Fundraising Protocol
  3. Poodl Dividend Paying Token
  4. ProphetRouter
  5. ProphetStaking

Personal Projects and Contributions

A personal blog where I put up tips for developers/ auditors engaged with certain Defi code components (like EIP712, TWAP etc.) : https://medium.com/@chinmayf

Participated in multiple contests and ranked in the top 5, showcasing a strong understanding and skill set in smart contract security.

Publishing educational tweets (https://twitter.com/dev_chinmayf) and github repositories (like this one : https://github.com/chinmay-farkya/solidity-notes and this one : https://github.com/chinmay-farkya/EVM-notes)

Special Interests and Goals

  • Reading DeFi research papers
  • learning about the OP stack and low level blockchain node infra
  • Options and cross-chain yield protocols
  • Economic security of protocols

Goals :

  • publishing checklists for major defi systems and protocols' integration best practices
  • writing many more security focused articles
  • Master Fuzzing / Formal Verification of smart contracts
  • Explore alternate languages and ecosystems (Cairo, Vyper and Move)

Education

  • Bachelors of Technology in Computer Science and Engineering at MITS (Madhav Institute of Technology and Science)

πŸ“« How to Reach Me

You can connect with me at:

Pinned Loading

  1. solidity-notes solidity-notes Public

    572 79

  2. EVM-notes EVM-notes Public

    107 18

  3. Audits Audits Public

    This repository represents my portfolio of smart contract security audits and audit contest findings

    50 4

  4. report-and-poc-templates report-and-poc-templates Public

    31 4