A comprehensive framework for testing smart contract security patches against real-world exploits. This project provides:
- A reproducible dataset of smart contract exploits for SmartBugs-Curated dataset
- An automated tool for evaluating security patches
See our paper Do Automated Fixes Truly Mitigate Smart Contract Exploits?. The paper's results and tool reproduction details are located here.
.
├── smartbugs-curated/ # Exploit dataset and test framework
│ └── 0.4.x/ # Solidity 0.4.x contracts and exploits
│ ├── contracts/ # Vulnerable contracts and exploits
│ └── test/ # Automated exploit tests
│
└── evaluator/ # Patch evaluation tool
└── src/ # Source code for patch testing
Our dataset is based on the DASP taxonomy and covers the following vulnerabilities:
Vulnerability | Total Contracts | Working Exploits | Coverage % |
---|---|---|---|
Reentrancy | 31 | 26 | 83.9% |
Access Control | 18 | 16 | 88.9% |
Arithmetic | 15 | 13 | 86.7% |
Unchecked Low Level Calls | 52 | 20 | 38.5% |
Denial Of Service | 6 | 4 | 66.7% |
Bad Randomness | 8 | 4 | 50.0% |
Front Running | 4 | 3 | 75.0% |
Time Manipulation | 5 | 3 | 60.0% |
Short Addresses | 1 | 0 | 0.0% |
Others | 3 | 2 | 66.7% |
Total | 143 | 91 | 63.6% |
The following table summarizes why certain contracts in our dataset could not be exploited:
Challenge Type | Number of Contracts |
---|---|
Not Exploitable | 30 |
Missing Methods | 9 |
Mislabeled Solidity Version | 7 |
Exceeded Time Limit | 3 |
Incompatible Solidity Version | 1 |
Honeypot Contracts | 1 |
Hash Cracking Required | 1 |
For a detailed breakdown of non-exploitable contracts and their specific reasons, see not-exploitable.md.
Navigate to the exploit dataset:
cd smartbugs-curated/0.4.x
npm ci
npx hardhat test
Navigate to the evaluator tool:
cd evaluator
python -m venv .venv
source .venv/bin/activate
pip install -e ".[dev]"
Test a patch:
python src/main.py \
--format solidity \
--patch ./your-patch.sol \
--contract-file ./target-contract.sol \
--main-contract ContractName
Contributions are welcome! Please check our contribution guidelines before submitting:
- Follow the existing project structure
- Include tests for new exploits
- Document any new features or changes
- Dataset contains one duplicate contract (
0x627fa62ccbb1c1b04ffaecd72a53e37fc0e17839.sol
) listed under both reentrancy and unchecked_low_level categories - All exploits are provided for educational and testing purposes only
- SmartBugs - For the smart contract vulnerability dataset