blockchainmedium
[Blackbox] Web3_VIP
caplag
Task: Claim a VIP NFT using an admin attestation signature, but the only known signature was already used. Solution: Exploit ECDSA signature malleability — the contract uses raw ecrecover without low-s enforcement and tracks used signatures by raw bytes hash, so a malleable signature (r, n-s, flip(v)) bypasses replay protection.
$ ls tags/ techniques/
storage_slot_readingbytecode_analysisecdsa_signature_malleabilitysignature_replay_bypasseip712_typed_data
🔒
Permission denied (requires tier.pro)
Sign in to access full writeups
Create a free account with GitHub, then upgrade to Pro.
$ssh [email protected]