Production ready

Blockchain
Engineering

DeFi Infrastructure & Smart Contract Security

From ERC-20 design to upgradeable proxy architecture. Building decentralized systems with security-first engineering.

Explorer AEDSC Smart Contract Security GitHub

dApps déployées

Smart Contracts

Pages Whitepaper

AEDSC est un stablecoin ERC-20 adossé au Dirham des Émirats Arabes Unis (AED), déployé sur Arbitrum L2. Architecture proxy upgradeable (OpenZeppelin), mint contrôlé par gouvernance, transparence des réserves on-chain.

ERC-20 Arbitrum L2 Upgradeable Proxy Chainlink Oracle

User

Frontend React + Wagmi

Wallet MetaMask / EIP-1193

Proxy Contract OpenZeppelin Proxy

Implementation Logic v1

aedsc.xyz

Analyse interactive des vulnérabilités smart contract les plus critiques. Toggle entre le code vulnérable et la version sécurisée.

                    
                    Vulnerable.sol
                    VULNERABLE
                  
// External call before state update
function withdraw() public {
    uint bal = balances[msg.sender];
    (bool ok, ) = msg.sender.call
        {value: bal}("");
    require(ok);
    balances[msg.sender] = 0; // Too late!
}

                    
                    Secure.sol
                    SECURE
                  
// Checks-Effects-Interactions
function withdraw() public
    nonReentrant {
    uint bal = balances[msg.sender];
    require(bal > 0);
    balances[msg.sender] = 0; // Before!
    (bool ok, ) = msg.sender.call
        {value: bal}("");
    require(ok);
}

L'attaquant rappelle withdraw() via receive() avant que le solde soit mis à 0. Le fix : mettre à jour l'état avant l'appel externe + ReentrancyGuard.

                    
                    Vulnerable.sol
                    VULNERABLE
                  
// No access control on critical function
function mint(
    address to, uint amount
) public {
    _mint(to, amount);
    // Anyone can mint!
}

                    
                    Secure.sol
                    SECURE
                  
// Role-based access control
function mint(
    address to, uint amount
) public onlyRole(MINTER_ROLE) {
    require(amount <= maxMint);
    _mint(to, amount);
    emit Minted(to, amount);
}

Sans modifier onlyOwner ou onlyRole, n'importe qui peut appeler les fonctions critiques. Le fix : OpenZeppelin AccessControl avec roles granulaires.

                    
                    Vulnerable.sol
                    VULNERABLE
                  
// Unprotected initializer
function initialize(
    string name, string symbol
) public {
    _name = name;
    _symbol = symbol;
    owner = msg.sender;
    // Can be called again!
}

                    
                    Secure.sol
                    SECURE
                  
// Protected with initializer modifier
function initialize(
    string name, string symbol
) public initializer {
    __ERC20_init(name, symbol);
    __Ownable_init(msg.sender);
    __UUPSUpgradeable_init();
}

Sans le modifier initializer, un attaquant peut re-initialiser le contrat et devenir owner. Le fix : OpenZeppelin Initializable qui empêche les appels multiples.

Audit & Smart Contract Research

AEDSC 100%

Reserve (40%)

Réserve en AED pour garantir le peg 1:1. Auditable on-chain via proof-of-reserves.

Circulation (30%)

Tokens en circulation active. Mint/burn contrôlé pour maintenir le peg.

Governance (15%)

Tokens de gouvernance DAO. Vote sur les paramètres du protocole et les upgrades.

Treasury (15%)

Trésorerie du protocole. Financement du développement et des audits de sécurité.

Wallet Layer

EIP-1193 MetaMask WalletConnect

Frontend

React Wagmi Web3Modal Viem

Backend / RPC

Node.js Ethers.js Alchemy RPC

Smart Contracts

Solidity Hardhat OpenZeppelin

Layer 2

Arbitrum Optimistic Rollups

Layer 1

Ethereum EVM

Concepts maîtrisés

Tokenomics

Governance & DAO

Smart Contract Security

Gas Optimization

L2 Scaling

DeFi Mechanics

On-chain / Off-chain Logic

Oracle Integration

Upgradeable Contracts

Flash Loan Mechanics

MEV Protection

ERC Standards

♦

AEDSC

Stablecoin Architecture

ERC-20 sur Arbitrum. Proxy upgradeable, mint contrôlé par gouvernance, oracle Chainlink, transparence des réserves on-chain. Whitepaper 22 pages.

SolidityArbitrumOpenZeppelinChainlink

aedsc.xyz →

★

Haunt3D

Crypto Dashboard

Dashboard multi-chain immersif : suivi portefeuille, NFT gallery, DeFi position tracker, analytics temps réel avec graphiques interactifs.

ReactWagmiEthers.jsCoinGecko API

haunt3d.fr →

◆

Curs3D

Token Analytics Platform

Plateforme d'analyse on-chain : token scanner, whale tracking, liquidity monitoring, smart contract audit score.

Next.jsViemThe GraphDune Analytics

curs3d.fr →

Blockchain
Engineering

Stablecoin Architecture

Security Deep Dive

Reentrancy Attack

Access Control

Proxy Initialization

AEDSC Token Distribution

Web3 Technology Stack

Concepts maîtrisés

Web3 Projects

AEDSC

Haunt3D

Curs3D

BlockchainEngineering

Stablecoin Architecture

Security Deep Dive

Reentrancy Attack

Access Control

Proxy Initialization

AEDSC Token Distribution

Web3 Technology Stack

Concepts maîtrisés

Web3 Projects

AEDSC

Haunt3D

Curs3D

Blockchain
Engineering