AVVERIFIER is a tool designed for detecting address verification vulnerabilities in Ethereum smart contracts, utilizing efficient taint analysis for scalability. It also identifies other vulnerabilities like unchecked external calls and inadequate access controls on EVM-compatible chains. The research evaluates around 5 million contracts to assess effectiveness, efficiency, and characteristics of real-world vulnerable contracts. Although effective, AVVERIFIER does face limitations in verifying dynamic parameters and may miss certain complex vulnerabilities. It can be implemented as a real-time detector for newly deployed contracts, broadening its application scope.
Scalability of AVVERIFIER allows for the detection of various vulnerabilities beyond address verification, including unchecked external calls and inadequate access controls across EVM-compatible chains.
AVVERIFIER’s experimental setup included evaluating approximately 5 million contracts, gauging its effectiveness and efficiency in identifying real-world vulnerable smart contracts.
Collection
[
|
...
]