# Smart Contract Auditor Portfolio [Dacian](https://x.com/DevDacian) is the Audit Team Leader at [cyfrin.io](https://www.cyfrin.io/) whose published [Deep Dive](https://dacian.me/series/vulnerability-deep-dives) security research is routinely shared on Twitter & in high-profile blockchain security newsletters such as BlockThreat \[[1](https://newsletter.blockthreat.io/i/121265449/research), [2](https://newsletter.blockthreat.io/i/114008864/research), [3](https://newsletter.blockthreat.io/i/117918271/vulnerabilities), [4](https://newsletter.blockthreat.io/i/121240155/media), [5](https://newsletter.blockthreat.io/i/121265449/research), [6](https://newsletter.blockthreat.io/i/124903609/research), [7](https://newsletter.blockthreat.io/i/136226787/research), [8](https://newsletter.blockthreat.io/i/138881272/research), [9](https://newsletter.blockthreat.io/i/143896210/research), [10](https://newsletter.blockthreat.io/i/145362797/research), [11](https://newsletter.blockthreat.io/i/149644748/research), [12](https://newsletter.blockthreat.io/i/156072664/research), [13](https://newsletter.blockthreat.io/p/blockthreat-week-12-2025?open=false#%C2%A7research), [14](https://newsletter.blockthreat.io/i/168229385/research), [15](https://newsletter.blockthreat.io/i/168229385/tools)\]. Some of Dacian's most notable security research publications include: * [Vulnerabilities In Permissioned Capital Market Protocols](https://www.cyfrin.io/blog/vulnerabilities-in-permissioned-capital-market-smart-contract-protocols) * [DeFi Liquidation Vulnerabilities](https://dacian.me/defi-liquidation-vulnerabilities) * [Solidity Inline Assembly Vulnerabilities](https://dacian.me/solidity-inline-assembly-vulnerabilities) * [Find Highs Using Certora Formal Verification](https://dacian.me/find-highs-before-external-auditors-using-certora-formal-verification) * [Find Highs Using Invariant Fuzz Testing](https://dacian.me/find-highs-before-external-auditors-using-invariant-fuzz-testing) * [DAO Governance Vulnerabilities](https://dacian.me/dao-governance-defi-attacks) * [Concentrated Liquidity Manager Vulnerabilities](https://dacian.me/concentrated-liquidity-manager-vulnerabilities) * [Lending & Borrowing Vulnerabilities](https://dacian.me/lending-borrowing-defi-attacks) * [DeFi Slippage Vulnerabilities](https://dacian.me/defi-slippage-attacks) * [Precision Loss Errors](https://dacian.me/precision-loss-errors) * [Chainlink Oracle Security Considerations](https://medium.com/cyfrin/chainlink-oracle-defi-attacks-93b6cb6541bf) Dacian has presented on smart contract security at: * [ElectiSec Block 7 Guest Speaker - Auditing Heuristics, Business, Branding & Marketing](https://www.youtube.com/watch?v=AiNneURcxDw) * [Fuzz Fest 2024 - Finding Highs Using Invariant Fuzz Testing & Formal Verification](https://www.youtube.com/watch?v=Cqmu-mhSLt8) * DeFi Security Summit 2024 - Workshop on Finding Highs Using Invariant Fuzz Testing (not recorded) * [Fuzzing & Heuristics Interview With Patrick](https://www.youtube.com/watch?v=IZTvXfC14Ig) * [OpenSense - How To Effectively Learn Smart Contract Auditing](https://www.youtube.com/watch?v=5a2sEGWi7c4) Dacian has led successful private audits for protocols such as [Wormhole](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-01-10-cyfrin-wormhole-thermae-v2.1.pdf), [Swell](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-02-23-cyfrin-swell-barracuda-v2.0.pdf), [Solidly](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-01-24-cyfrin-solidlyV3-v2.0.pdf), [Beefy](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-04-06-cyfrin-beefy-finance-v2.0.pdf), [Ondo](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-04-18-cyfrin-ondo-finance-v2.0.pdf), Linea \[[1](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2024-05-24-cyfrin-linea-v2.0.pdf), [2](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2025-01-06-cyfrin-linea-v2.2.pdf)\], [DeXe](https://github.com/Cyfrin/cyfrin-audit-reports/blob/main/reports/2023-11-10-cyfrin-dexe-v2.0.pdf) and for TradFi platforms such as [Kaio](https://www.kaio.xyz/) and [Securitize](https://securitize.io/). Dacian has earned a [$28,000 USD bug bounty](https://dacian.me/28k-bounty-admin-brick-forced-revert) for discovering a vulnerability in a live smart contract that combined missing access control & unchecked state transition vulnerabilities to permanently brick the contract admin, future token inflation & staking rewards. Dacian can identify a wide range of smart contract vulnerabilities; some of Dacian's publicly available findings include: * [Trader can make themselves impossible to liquidate using multiple active markets to trigger liquidation revert due to corruption of ordering in `TradingAccount::activeMarketsIds`](https://solodit.xyz/issues/impossible-to-liquidate-accounts-with-multiple-active-markets-as-liquidationbranchliquidateaccounts-reverts-due-to-corruption-of-ordering-in-tradingaccountactivemarketsids-cyfrin-none-cyfrinzaros-markdown) * [Attacker can perform a risk-free trade to mint free USDz tokens by opening then quickly closing positions for markets using negative `makerFee`](https://solodit.xyz/issues/attacker-can-perform-a-risk-free-trade-to-mint-free-usdz-tokens-by-opening-then-quickly-closing-positions-for-markets-using-negative-makerfee-cyfrin-none-cyfrinzaros-markdown) * [`GlobalConfiguration::removeCollateralFromLiquidationPriority` corrupts the collateral priority order resulting in incorrect order of collateral liquidation](https://solodit.xyz/issues/globalconfigurationremovecollateralfromliquidationpriority-corrupts-the-collateral-priority-order-resulting-in-incorrect-order-of-collateral-liquidation-cyfrin-none-cyfrinzaros-markdown) * [Trader can't reduce open position size when under initial margin requirement but over maintenance margin requirement](https://solodit.xyz/issues/trader-cant-reduce-open-position-size-when-under-initial-margin-requirement-but-over-maintenance-margin-requirement-cyfrin-none-cyfrinzaros-markdown) * [Attack can drain protocol tokens by sandwich attacking two onlyOwner functions to force redeployment of liquidity into an unfavorable range](https://solodit.xyz/issues/attacker-can-drain-protocol-tokens-by-sandwich-attacking-owner-call-to-setpositionwidth-and-unpause-to-force-redeployment-of-beefys-liquidity-into-an-unfavorable-range-cyfrin-none-cyfrin-beefy-finance-markdown) * [Polygon chain reorgs will change mystery box tiers which can be gamed by validators](https://solodit.xyz/issues/polygon-chain-reorgs-will-change-mystery-box-tiers-which-can-be-gamed-by-validators-cyfrin-none-cyfrin-mode-earnm-markdown) * [Attacker can combine flashloan with delegated voting to decide a proposal bypassing all flashloan protections](https://solodit.xyz/issues/attacker-can-combine-flashloan-with-delegated-voting-to-decide-a-proposal-and-withdraw-their-tokens-while-the-proposal-is-still-in-locked-state-cyfrin-none-cyfrin-dexe-markdown) * [Attacker can destroy user voting power by setting `ERC721Power::totalPower` and all existing NFTs `currentPower` to 0](https://solodit.xyz/issues/attacker-can-destroy-user-voting-power-by-setting-erc721powertotalpower-and-all-existing-nfts-currentpower-to-0-cyfrin-none-cyfrin-dexe-markdown) * [Attacker can at anytime dramatically lower `ERC721Power::totalPower` voting power close to 0](https://solodit.xyz/issues/attacker-can-at-anytime-dramatically-lower-erc721powertotalpower-close-to-0-cyfrin-none-cyfrin-dexe-markdown) * [Attacker can use delegation to bypass voting restriction to vote on proposals they are restricted from voting on](https://solodit.xyz/issues/attacker-can-use-delegation-to-bypass-voting-restriction-to-vote-on-proposals-they-are-restricted-from-voting-on-cyfrin-none-cyfrin-dexe-markdown) * [Static `GovUserKeeper::_nftInfo.totalPowerInTokens` used in quorum denominator can incorrectly make it impossible to reach quorum](https://solodit.xyz/issues/static-govuserkeeper_nftinfototalpowerintokens-used-in-quorum-denominator-can-incorrectly-make-it-impossible-to-reach-quorum-cyfrin-none-cyfrin-dexe-markdown) * [Attacker can bypass token sale `maxAllocationPerUser` restriction to buy out the entire tier](https://solodit.xyz/issues/attacker-can-bypass-token-sale-maxallocationperuser-restriction-to-buy-out-the-entire-tier-cyfrin-none-cyfrin-dexe-markdown) * [Delegators incorrectly receive less rewards for longer proposals with multiple delegations](https://solodit.xyz/issues/delegators-incorrectly-receive-less-rewards-for-longer-proposals-with-multiple-delegations-cyfrin-none-cyfrin-dexe-markdown) * [`DistributionProposal` 'for' voter rewards diluted by 'against' voters and missing rewards permanently stuck in `DistributionProposal` contract](https://solodit.xyz/issues/delegators-incorrectly-receive-less-rewards-for-longer-proposals-with-multiple-delegations-cyfrin-none-cyfrin-dexe-markdown) * [Signature replay against different reward pool for same organizer/contest as signature digest missing implementation parameter](https://github.com/Cyfrin/2023-08-sparkn/issues/306) * [Attacker can mint free tokens by exploiting rounding down to zero precision loss](https://github.com/code-423n4/2023-06-lybra-findings/issues/344) * [Borrow rate calculation can DoS all major functionality](https://code4rena.com/reports/2023-05-venus#m-15-borrow-rate-calculation-can-cause-vtokenaccrueinterest-to-revert-dosing-all-major-functionality) * [Lender can take borrower's collateral before first payment is due](https://github.com/sherlock-audit/2023-03-teller-judging/issues/92) * [Borrower can't repay but can be liquidated as token whitelist can prevent existing positions from repaying](https://github.com/sherlock-audit/2023-04-blueberry-judging/issues/4) * [Trading fees should round up in favor of the protocol to prevent value from constantly leaking to traders](https://github.com/sherlock-audit/2023-06-dinari-judging/issues/7) [Dacian](https://x.com/DevDacian) can be contacted via DM's.