Patrick Collins

@patrickalphac

78 Following

770 Followers

Patrick Collins pfp

Patrick Collins

I’ll have to show you some of the cool testing we did.

1 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

We like the fox

0 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

Whoops, thanks https://github.com/patrickalphac/wise-signer-snap

0 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

To find this, the AI searches the web, and figures out by your calldata, chain, and address that the user is probably trying to call `supply` for themselves. Knowing this is the user's intent, the AI can pretty easily figure out what the calldata should be doing.

1 reply

0 recast

6 reactions

Patrick Collins pfp

Patrick Collins

What's EXTRA crazy about the example in the video, is how obscure it is. The transaction we call is `supply` on the aave protocol. But the simulated hacked website stuffs some bad calldata in there. The `onBehalfOf` address is swapped with the ByBit attacker!

1 reply

1 recast

6 reactions

Patrick Collins pfp

Patrick Collins

I was able to do a lot of MVPs where this tool flags the bad transactions, but most threat intel products do not, like: - address poisoning - nested calldata stuffing - sending money to known hackers - etc The key is that AI is able to tell what your "intent" is.

2 replies

0 recast

6 reactions

Patrick Collins pfp

Patrick Collins

I think most threat intel products can get a major upgrade with AI now (looking at you @blockaid_ , feel free to hit me up with product ideas/feedback). The project is currently in beta, but you can find all the code here.

2 replies

0 recast

8 reactions

Patrick Collins pfp

Patrick Collins

I made a 🦊 wallet plugin that: 1. Decodes your calldata 2. Uses that decoded data as input to an AI 3. Which then searches the web to see if the transaction has anything "fishy" about it. Here is an example where you'd be sending money to the ByBit hackers, but it catches it!

9 replies

13 recasts

52 reactions

Patrick Collins pfp

Patrick Collins

They recently updated and it’s muuuuuuch better now

0 reply

0 recast

0 reaction

Patrick Collins pfp

Patrick Collins

Thank you!! Every little bit matters

0 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

0 reply

0 recast

2 reactions

Patrick Collins pfp

Patrick Collins

I am obnoxiously bullish crypto.

1 reply

1 recast

13 reactions

Patrick Collins pfp

Patrick Collins

The @KeystoneWallet fixed it!! ...But did anyone else? https://www.youtube.com/shorts/LXj-qpjhRdE

2 replies

0 recast

9 reactions

Patrick Collins pfp

Patrick Collins

No…. They rugged us all

0 reply

0 recast

2 reactions

Patrick Collins pfp

Patrick Collins

I'll be going LIVE Thursday at 10 AM EST with Charles Guillemet, the CTO of @ledgerofficial. We'll be chatting about: - Hardware wallet open-sourcedness - Signature Intent Clarity - Hack History & Wallet Security And much more. We'll be streaming to YouTube and X. You don't want to miss it! https://www.youtube.com/live/X1QJgxYVQWU

0 reply

1 recast

8 reactions

Patrick Collins pfp

Patrick Collins

I got it. It was amazing. I paid for it. And now it's shit.

1 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

Claude Code felt like a catfish

3 replies

0 recast

8 reactions

polymutex pfp

Large PRs from @patrickalphac for Walletbeat 👀 - Adding Clave wallet - Evaluating dapp connectivity for hardware wallets - Evaluating signing intent clarity (both software and hardware wallets): does the wallet make it easy to understand what you are signing? Very grateful that this little project has his support!

2 replies

2 recasts

7 reactions

Patrick Collins pfp

Patrick Collins

I haven’t looked through the bytecode myself yet. I sort of want to see if solx via-ir has the same issue, and if not, compare the two.

0 reply

0 recast

1 reaction

Patrick Collins pfp

Patrick Collins

Also please subscribe to me on YouTube. https://www.youtube.com/watch?v=95An3N45lLY

0 reply

0 recast

4 reactions