Security is a critical topic in Web3, and many security issues are happening daily. Victims might lose all of their assets because of the attack.
We could buidl some projects for this, introduce essential security tips to new Web3 users, demonstrate typical attacks in Web3 and help users to protect their assets.
Luckily, we have a security agency partner like SlowMist. We can collaborate to work on this. We can buidl the product, and they provide professional security content.
In this topic, we can collect some good security posts, website, and products, brainstorm and design for this product. Then convert it into proposal and start buidling this project.
I think we can buidl a website to show the common phishing attacks and make it looks like a tutorial. After finishing all courses, will get a POAP or SBT as the certificate.
It will show the attack details and what the attack looks like (MetaMask signature), and how to prevent this from happening.
We can add more tutorials and notify the users if we get some new attack cases, this can be done by SlowMist.
It can be a phishing demo website.
In the first step, the user visits the website and free mint a few NFTs for security tests.
The second step, “hack” users’ NFT by using eth_sign, personal_sign signTypedData, etc. And let user feels how their NFT stole.
After NFTs have been stolen, the third step asks a few questions for the users and free mint an NFT for commemoration.
We might call this MyFirstHack? Try to show someone how the phishing attack happened.
For example, teach people to create a phishing link and “hack” their own NFT. Let them experience how the attack happened.
same address + similar ens
I lost more than 1 eth in security issues. It’s very helpful
MobyMask in one of em and is on the way !
Including the common security tools and signature type
就是很简单的，别用小狐狸钱包，用 rabby 就可以了。如果一定要用小狐狸，加个 stelo 插件，都能好很多。别靠自己，靠专业工具