The Ethereum Protocol Security (EPS) Research Team is excited to share the announcement of the inaugural Ethereum Protocol Attackathon, hosted by Immunefi. This month-long event seeks to improve the security of the Ethereum protocol via a comprehensive crowdsourced security audit challenge. Our ambition is to surpass 2 million USD in the reward pool, with an initial contribution of 500,000 USD seeded by the EF.
Support Ethereum Security
We encourage the entire Ethereum community—including projects and individual developers—to take part in this significant event. Contributions to the reward pool will enhance the security of the Ethereum ecosystem, creating a safer space for both users and developers.
The sponsorship program will conclude on August 1, 2024, after which the reward pool will be finalized, and additional details regarding the Attackathon will be revealed. Community members can engage in the sponsorship program here.
Join our efforts to fortify the Ethereum Protocol, helping us make this the largest Attackathon we’ve had to date.
What is an Attackathon?
The Attackathon is a time-limited audit challenge aimed at strengthening the security of the Ethereum protocol. It will kick off with an educational phase in which participants will receive training on the protocol’s code through live technical sessions and educational material from the Attackathon Academy. This stage ensures participants are thoroughly prepared to recognize and analyze potential vulnerabilities.
Throughout the Attackathon, security researchers will actively seek out vulnerabilities in the protocol’s code. They are required to adhere to specific rules set for the competition, with rewards only going to impactful and compliant reports. This phase emphasizes real-time problem-solving and the application of knowledge acquired in the earlier phase.
Post-Attackathon, Immunefi will assess and compile the results into an official report that will outline the vulnerabilities identified and acknowledge the leading researchers, highlighting their contributions and expertise.
This event aspires to be the most extensive crowdsourced security audit, bolstering the security of the entire Ethereum protocol codebase.
Why Partner with Immunefi?
Immunefi is well-known for its expertise in web3 security, maintaining a robust community of security researchers. They have safeguarded considerable user funds across diverse projects and demonstrate a solid track record in identifying and addressing security vulnerabilities.
Immunefi’s Attackathons prioritize education and community participation. Participants enjoy a structured environment that includes real-time explanations of Ethereum and security, supplemented by educational resources from the Attackathon Academy. This collaboration seeks to enhance the community’s comprehension of Ethereum’s code and technology while contributing to its security.
Upcoming Security Challenges
The EF’s Protocol Security Research Team is dedicated to continuous security enhancements. We plan to host similar security challenges for the Ethereum protocol at each hard fork event that involves codebase changes. These initiatives will occur on various platforms, offering diverse opportunities for the community to participate in securing the Ethereum protocol.