I'm an independent security researcher. I build automation that hunts for smart contract bugs, then I run it against live DeFi protocols and write down what actually happened. This site is the open version of that work, numbers, costs, dead ends, and all.
The pipeline takes a target protocol, pulls its contracts, runs a layered review across many model passes, then filters thousands of raw signals down to a short list worth a human's time. The dashboard on this site walks the whole funnel, from raw findings to the few that clear a submission gate. None of it is theory. Every campaign on the board ran against a real, in-scope program.
Plenty of it didn't work. Stable, heavily audited features kept producing duplicates of bugs that paid researchers had already reported. The win came from pointing the same method at beta features with no CVE history, where being early actually matters. That kind of lesson is the reason I keep the failures in the reports instead of polishing them out.
Everything below is free to read. Start with the command center for the live picture, then drop into any campaign for the raw tables.
The site shows the shape of the work. The deeper material takes time to assemble, so I sell it as a pack. If you hunt bounties or audit for a living, it saves you the weeks I already spent building and tuning this.
One payment, current dataset, no subscription. Here's what lands in your inbox.
Good fit if you want quality research data to save time rather than rebuild the rig yourself. Tell me what you're hunting and I'll point you at the slice that helps.
Request the pack See the free reports firstEmail is best. Send a line about what you're working on and I'll reply with specifics. The address below is a placeholder until the domain is live.
research@scanthechain.com