Secureum Book
  • 🛡️Secureum Bootcamp
    • 🛡️Secureum Bootcamp
    • 🙌Participate
    • 📜History
  • 📚LEARN
    • Introduction
      • 🔷1. Ethereum Basics
        • 1.1 Ethereum: Concept, Infrastructure & Purpose
        • 1.2 Properties of the Ethereum Infrastructure
        • 1.3 Ethereum vs. Bitcoin
        • 1.4 Ethereum Core Components
        • 1.5 Gas Metering: Solving the Halting Problem
        • 1.6 web2 vs. web3: The Paradigm Shift
        • 1.7 Decentralization
        • 1.8 Cryptography, Digital Signature & Keys
        • 1.9 Ethereum State & Account Types
        • 1.10 Transactions: Properties & Components
        • 1.11 Contract Creation
        • 1.12 Transactions, Messages & Blockchain
        • 1.13 EVM (Ethereum Virtual Machine) in Depth
        • 1.14 Transaction Reverts & Data
        • 1.15 Block Explorer
        • 1.16 Mainnet & Testnets
        • 1.17 ERCs & EIPs
        • 1.18 Legal Aspects in web3: Pseudonymity & DAOs
        • 1.19 Security in web3
        • 1.20 web2 Timescales vs. web3 Timescales
        • 1.21 Test-in-Prod. SSLDC vs. Audits
        • Summary: 101 Keypoints
      • 🌀2. Solidity
        • 2.1 Solidity: Influence, Features & Layout
        • 2.2 SPDX & Pragmas
        • 2.3 Imports
        • 2.4 Comments & NatSpec
        • 2.5 Smart Contracts
        • 2.6 State Variables: Definition, Visibility & Mutability
        • 2.7 Data Location
        • 2.8 Functions
        • 2.9 Events
        • 2.10 Solidity Typing
        • 2.11 Solidity Variables
        • 2.12 Address Type
        • 2.13 Conversions
        • 2.14 Keywords & Shorthand Operators
        • 2.15 Solidity Units
        • 2.16 Block & Transaction Properties
        • 2.17 ABI Encoding & Decoding
        • 2.18 Error Handling
        • 2.19 Mathematical & Cryptographic Functions
        • 2.20 Control Structures
        • 2.21 Style & Conventions
        • 2.22 Inheritance
        • 2.23 EVM Storage
        • 2.24 EVM Memory
        • 2.25 Inline Assembly
        • 2.26 Solidity Version Changes
        • 2.27 Security Checks
        • 2.28 OpenZeppelin Libraries
        • 2.29 DAppSys Libraries
        • 2.30 Important Protocols
        • Summary: 201 Keypoints
      • 🔏3. Security Pitfalls & Best Practices
        • 3.1 Solidity Versions
        • 3.2 Access Control
        • 3.3 Modifiers
        • 3.4 Constructor
        • 3.5 Delegatecall
        • 3.6 Reentrancy
        • 3.7 Private Data
        • 3.8 PRNG & Time
        • 3.9 Math & Logic
        • 3.10 Transaction Order Dependence
        • 3.11 ecrecover
        • 3.12 Unexpected Returns
        • 3.13 Ether Accounting
        • 3.14 Transaction Checks
        • 3.15 Delete Mappings
        • 3.16 State Modification
        • 3.17 Shadowing & Pre-declaration
        • 3.18 Gas & Costs
        • 3.19 Events
        • 3.20 Unary Expressions
        • 3.21 Addresses
        • 3.22 Assertions
        • 3.23 Keywords
        • 3.24 Visibility
        • 3.25 Inheritance
        • 3.26 Reference Parameters
        • 3.27 Arbitrary Jumps
        • 3.28 Hash Collisions & Byte Level Issues
        • 3.29 Unicode RTLO
        • 3.30 Variables
        • 3.31 Pointers
        • 3.32 Out-of-range Enum
        • 3.33 Dead Code & Redundant Statements
        • 3.34 Compiler Bugs
        • 3.35 Proxy Pitfalls
        • 3.36 Token Pitfalls
        • 3.37 Special Token Pitfalls
        • 3.38 Guarded Launch Pitfalls
        • 3.39 System Pitfalls
        • 3.40 Access Control Pitfalls
        • 3.41 Testing, Unused & Redundand Code
        • 3.42 Handling Ether
        • 3.43 Application Logic Pitfalls
        • 3.44 Saltzer & Schroeder's Design Principles
        • Summary: 201 Keypoints
      • 🗜️4. Audit Techniques & Tools
        • 4.1 Audit
        • 4.2 Analysis Techniques
        • 4.3 Specification, Documentation & Testing
        • 4.4 False Positives & Negatives
        • 4.5 Security Tools
        • 4.6 Audit Process
        • Summary: 101 Keypoints
      • ☝️5. Audit Findings
        • 5.1 Criticals
        • 5.2 Highs
        • 5.3 Mediums
        • 5.4 Lows
        • 5.5 Informationals
        • Summary: 201 Keypoints
  • 🌱CARE
    • CARE
      • CARE Reports
  • 🚩CTFs
    • A-MAZE-X CTFs
      • Secureum A-MAZE-X
      • Secureum A-MAZE-X Stanford
      • Secureum A-MAZE-X Maison de la Chimie Paris
Powered by GitBook
On this page
  1. Secureum Bootcamp

Participate

PreviousSecureum BootcampNextHistory

Last updated 1 year ago

To join the Secureum Bootcamp, please join the and head to the #participate channel.

Participation process is as follows:

  1. LEARN: Participants may learn from the , the and the section.

    It is encouraged to look at the pinned messages in channels under Bootcamp Epoch 0 for both the content and their quizzes/answers.

    A compilation of Epoch 0 content is available at . It is also strongly encouraged to learn from external content.

  2. RACE — Readiness Assessment for CARE Endeavor: Smart contract security challenges (e.g. quizzes) will be planned for last Thursday of ~every month and timely details will be announced in the discord channel accordingly.

    Participation in RACEs requires a one-time registering at the . Registrations will be opened (a few days) before every RACE. First-time registrants will receive an email (a few days after registering) with a RACE Unique Number (RUN), which is the same access code required to participate in all future RACEs.

    Check the messages in the #participate channel for current dates. All registered participants (with RUNs) are welcome to take part in any of the future RACEs with the same RUN access code. Please do not register a second time if you already have a RUN code.

    1. CARE — Comprehensive Audit Readiness Evaluation: Smart contract security reviews of real-world, security-minded protocols will be held whenever protocols collaborate with Secureum. 16 participants will be invited to participate in a CARE. Their selection will be based on performance in the recent RACE(s). Exact details depend on scheduled protocols/timelines.

    2. CARE-X — CARE Extra: Smart contract security initiatives customised with collaborating partners will be held similar to CARE. While Secureum works with collaborating protocol partners on CARE, it will work with other Ethereum security ecosystem partners to collaborate in different ways on CARE-X. CARE-Xs may have their own specific RACE-Xs and selection criteria.

Participation is completely asynchronous and open/free to everyone 👍

In need for a more detailed explanation? Check out 's !

RACE Scoring:

  1. If a question has a single option as the correct answer, then choosing anything other/more than that gives 0 points.

    For e.g., If a question has correct answer as B, and BC were entered, will the participant get 1/2 marks? No, they will get 0 and so will choosing anything other/more than B. This is presumably to prevent rewarding supersets of answers i.e. one can lazily choose ABCD as options.

  2. If a question has more than one option, say n options as the correct answer, then the platform allows only choosing up to n options and the partial points rewarded = #chosen-correct-options/n.

    For e.g., if a question has correct answers as AB, and the person chose ABD, will they get 2/3 marks? No, this is not allowed because only 2 options are allowed to be chosen.

    If a question has correct answers as BC, and B was entered, will they get 1/2 marks? Yes.

🛡️
🙌
Secureum Discord
Secureum Substack
Secureum Youtube Channel
LEARN
0xTaylor's Secureum Mind Map
Registration form
patrickd
Bootcamp when-how-where