SushiSwap RouteProcessor2 exploit repro + supporting data useful for whitehats.
AGPL-3.0 License
SushiSwap RouteProcessor2 exploit reproduction + supporting data useful for whitehat rescue.
Found in src/CounterExploit.sol. Exploits pool re-entrancy to arbitrarily transfer approved tokens.
The Tenderly debugger is useful in understanding the exploit path.
# Get dependencies
forge update
# Run tests
forge test --fork-url MAINNET_RPC --fork-block-number 17007460
With the RouteProcessor2
contract deployed across 14 chains, users are susceptible to allowance drainage across many networks. ./data contains code and allowance mappings used to generate and whitehat balances.
Note: