Skip to content
View SrishtiCode's full-sized avatar
🎯
Focusing
🎯
Focusing
3 followers · 13 following

Block or report SrishtiCode

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
SrishtiCode/README.md

Srishti Rathi

Web3 Security Researcher · Smart Contract Auditor · Solana Rust Developer

Experience

Independent Web3 Security Researcher · July 2025 – Present

  • Manual and automated auditing of DeFi protocols and ERC standards
  • Exploit development — reentrancy, access control, storage collision, delegatecall abuse
  • Flash loan attack simulations and economic attack modeling
  • CTF Completed (all levels) — Ethernaut, Damn Vulnerable DeFi
  • Built evmdecode — EVM transaction decoder, simulator, disassembler, and MEV analyzer in Rust using alloy-rs; detects Uniswap V2/V3 swaps, sandwich attacks, and arbitrage with confidence scoring
  • Developing Solana programs in Rust using Anchor framework — token vaults, PDA-based access control, cross-program invocations (CPI)

Skills

Solana Development Anchor framework · Program Derived Addresses (PDAs) · Cross-Program Invocation (CPI) · SPL tokens · Account validation · Rent & account sizing

Rust Development Multi-crate workspaces · async/await with tokio · alloy-rs · Solana SDK · CLI tooling with clap · RPC client design

Contract Security Reentrancy · Access control flaws · Delegatecall abuse · Storage collisions · Oracle manipulation · Flash loan attacks

EVM Internals Opcodes & bytecode · ABI encoding · Storage layout · Gas optimization · Proxy patterns · MEV & mempool

Tooling Foundry · Hardhat · Slither · Echidna · Mythril · Tenderly · Cargo · Anchor CLI

On-Chain Intelligence Blockchain forensics · Fund tracing · MEV analysis · Mempool monitoring · Wallet clustering

Projects

evmdecode — github.com/SrishtiCode/evmdecode EVM transaction decoder & MEV analyzer built in Rust. Decodes ABI calldata, simulates transactions, disassembles bytecode (844-instruction EVM parser), detects Uniswap swaps/sandwiches/arbitrage. Stack: alloy-rs · tokio · clap · reqwest.

SPL Token Staking Program — github.com/SrishtiCode/SPL-Token-Staking-Program An on-chain staking contract where users deposit SPL tokens and earn yield over time. Includes lock-up periods, reward calculation, and early withdrawal penalties. Stack: Rust · Anchor 0.31.1 · Solana · SPL Token · PDAs · CPI · TypeScript

Languages

Solidity · Rust · Python · JavaScript · Bash · Assembly (EVM / x86)

Recognition

  • TryHackMe — Top 1% globally, Jr. Penetration Tester
  • Smart India Hackathon — Winner
  • Cisco — Junior Cybersecurity Analyst
  • Bug Bounty — Active researcher on Immunefi & Code4rena

Pinned Loading

  1. evmdecode evmdecode Public

    Rust-based EVM transaction decoder and analyzer with simulation, gas breakdown, and MEV insights.

    Rust

  2. ByteStore ByteStore Public

    A persistent, file-backed key-value database built in Rust.

    Rust

  3. async-proxy async-proxy Public

    Async reverse proxy in Rust — Tokio + Hyper, per-IP token bucket rate limiting, X-Forwarded-For rewriting, HTTPS CONNECT tunnel, structured tracing logs

    Rust

  4. my-audit-reports my-audit-reports Public

    Smart contract security audit reports written for practice.

  5. Ethernaut-Solutions Ethernaut-Solutions Public

    Solutions to Ethernaut wargame with deep vulnerability analysis and exploit implementations.

    Solidity

  6. DamnVulnDefiSolutions DamnVulnDefiSolutions Public

    Advanced DeFi exploit solutions covering flash loans, governance attacks, and protocol vulnerabilities.

    Solidity