TW
Tripwire
Find contracts. Test them. Review real vulns.

Analysis Run

019b3836-5a92-73e3-a11c-73f804a6c705

complete
Chain ID
1
Address
Block Number
Created
Fri, Dec 19, 2025 8:04 PM
Review Summary

What survived the funnel

Open this run to answer one question: is this real attacker-relevant behavior with real impact, or just normal contract plumbing?

Confirmed
0
Validated
0
Source
Bytecode only
Review Backing
Not yet
Best current signal
Untrusted CALL target/value reachable
crit 0 high 0 direct contract
Review Checklist
1. Read the findings table first. Ignore raw jobs until the result looks real.
2. Confirm attacker control, not just the existence of a sink.
3. Confirm money or privilege impact.
4. Keep it if the behavior is real. Kill it if this is normal proxy, admin, or upgrade plumbing.

Processing Jobs

Status & attempts
ID Type Status Attempts Heartbeat
8931 artifact.fetch complete 1 / 3 4 months ago
8932 tool.cast_disasm complete 1 / 3 4 months ago
51932 analysis.bundle complete 1 / 3 2 weeks ago
51933 capability.graph complete 1 / 3 2 weeks ago
51934 detector.run complete 1 / 3 2 weeks ago
51935 validation.fork complete 1 / 3 2 weeks ago

Artifact

Runtime bytecode: available
Creation TX:
Deployer:
Proxy: no
Implementation:
Verified Source: no

Slither

tool.slither

No slither job recorded yet.

Codex

report.consolidate

No codex job recorded yet.

Opcode Heuristics

tool.cast_disasm
Delegatecall
0
Selfdestruct
0
CREATE2
0
CALL-family (heavy)
2
EXT*/BALANCE
0
Total opcodes
358
Flags
No heuristic flags raised.
View cast disassembly output
00000000: PUSH1 0x60
00000002: PUSH1 0x40
00000004: MSTORE
00000005: CALLDATASIZE
00000006: ISZERO
00000007: PUSH2 0x005e
0000000a: JUMPI
0000000b: PUSH1 0x00
0000000d: CALLDATALOAD
0000000e: PUSH29 0x0100000000000000000000000000000000000000000000000000000000
0000002c: SWAP1
0000002d: DIV
0000002e: DUP1
0000002f: PUSH4 0x0f59f83a
00000034: EQ
00000035: PUSH2 0x0091
00000038: JUMPI
00000039: DUP1
0000003a: PUSH4 0x285b2e01
0000003f: EQ
00000040: PUSH2 0x00b6
00000043: JUMPI
00000044: DUP1
00000045: PUSH4 0x644dce20
0000004a: EQ
0000004b: PUSH2 0x00db
0000004e: JUMPI
0000004f: DUP1
00000050: PUSH4 0x9cdf1872
00000055: EQ
00000056: PUSH2 0x0100
00000059: JUMPI
0000005a: PUSH2 0x005e
0000005d: JUMP
0000005e: JUMPDEST
0000005f: PUSH2 0x0079
00000062: JUMPDEST
00000063: PUSH1 0x00
00000065: PUSH2 0x006c
00000068: PUSH2 0x0125
0000006b: JUMP
0000006c: JUMPDEST
0000006d: POP
0000006e: PUSH1 0x01
00000070: SWAP1
00000071: POP
00000072: PUSH2 0x0076
00000075: JUMP
00000076: JUMPDEST
00000077: SWAP1
00000078: JUMP
00000079: JUMPDEST
0000007a: PUSH1 0x40
0000007c: MLOAD
0000007d: DUP1
0000007e: DUP3
0000007f: ISZERO
00000080: ISZERO
00000081: DUP2
00000082: MSTORE
00000083: PUSH1 0x20
00000085: ADD
00000086: SWAP2
00000087: POP
00000088: POP
00000089: PUSH1 0x40
0000008b: MLOAD
0000008c: DUP1
0000008d: SWAP2
0000008e: SUB
0000008f: SWAP1
00000090: RETURN
00000091: JUMPDEST
00000092: PUSH2 0x009e
00000095: PUSH1 0x04
00000097: DUP1
00000098: POP
00000099: POP
0000009a: PUSH2 0x0172
0000009d: JUMP
0000009e: JUMPDEST
0000009f: PUSH1 0x40
000000a1: MLOAD
000000a2: DUP1
000000a3: DUP3
000000a4: ISZERO
000000a5: ISZERO
000000a6: DUP2
000000a7: MSTORE
000000a8: PUSH1 0x20
000000aa: ADD
000000ab: SWAP2
000000ac: POP
000000ad: POP
000000ae: PUSH1 0x40
000000b0: MLOAD
000000b1: DUP1
000000b2: SWAP2
000000b3: SUB
000000b4: SWAP1
000000b5: RETURN
000000b6: JUMPDEST
000000b7: PUSH2 0x00c3
000000ba: PUSH1 0x04
000000bc: DUP1
000000bd: POP
000000be: POP
000000bf: PUSH2 0x0125
000000c2: JUMP
000000c3: JUMPDEST
000000c4: PUSH1 0x40
000000c6: MLOAD
000000c7: DUP1
000000c8: DUP3
000000c9: ISZERO
000000ca: ISZERO
000000cb: DUP2
000000cc: MSTORE
000000cd: PUSH1 0x20
000000cf: ADD
000000d0: SWAP2
000000d1: POP
000000d2: POP
000000d3: PUSH1 0x40
000000d5: MLOAD
000000d6: DUP1
000000d7: SWAP2
000000d8: SUB
000000d9: SWAP1
000000da: RETURN
000000db: JUMPDEST
000000dc: PUSH2 0x00e8
000000df: PUSH1 0x04
000000e1: DUP1
000000e2: POP
000000e3: POP
000000e4: PUSH2 0x01bb
000000e7: JUMP
000000e8: JUMPDEST
000000e9: PUSH1 0x40
000000eb: MLOAD
000000ec: DUP1
000000ed: DUP3
000000ee: ISZERO
000000ef: ISZERO
000000f0: DUP2
000000f1: MSTORE
000000f2: PUSH1 0x20
000000f4: ADD
000000f5: SWAP2
000000f6: POP
000000f7: POP
000000f8: PUSH1 0x40
000000fa: MLOAD
000000fb: DUP1
000000fc: SWAP2
000000fd: SUB
000000fe: SWAP1
000000ff: RETURN
00000100: JUMPDEST
00000101: PUSH2 0x010d
00000104: PUSH1 0x04
00000106: DUP1
00000107: POP
00000108: POP
00000109: PUSH2 0x0218
0000010c: JUMP
0000010d: JUMPDEST
0000010e: PUSH1 0x40
00000110: MLOAD
00000111: DUP1
00000112: DUP3
00000113: ISZERO
00000114: ISZERO
00000115: DUP2
00000116: MSTORE
00000117: PUSH1 0x20
00000119: ADD
0000011a: SWAP2
0000011b: POP
0000011c: POP
0000011d: PUSH1 0x40
0000011f: MLOAD
00000120: DUP1
00000121: SWAP2
00000122: SUB
00000123: SWAP1
00000124: RETURN
00000125: JUMPDEST
00000126: PUSH1 0x00
00000128: PUSH20 0xdc78e37377eb0493cb41bd1900a541626fdc2f02
0000013d: PUSH1 0x00
0000013f: PUSH1 0x00
00000141: PUSH2 0x0100
00000144: EXP
00000145: DUP2
00000146: SLOAD
00000147: DUP2
00000148: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000015d: MUL
0000015e: NOT
0000015f: AND
00000160: SWAP1
00000161: DUP4
00000162: MUL
00000163: OR
00000164: SWAP1
00000165: SSTORE
00000166: POP
00000167: PUSH1 0x01
00000169: SWAP1
0000016a: POP
0000016b: PUSH2 0x016f
0000016e: JUMP
0000016f: JUMPDEST
00000170: SWAP1
00000171: JUMP
00000172: JUMPDEST
00000173: PUSH1 0x00
00000175: PUSH1 0x00
00000177: PUSH20 0x4eecf99d543b278106ac0c0e8ffe616f2137f10a
0000018c: SWAP1
0000018d: POP
0000018e: DUP1
0000018f: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000001a4: AND
000001a5: PUSH3 0x0493e0
000001a9: PUSH2 0x03e8
000001ac: POP
000001ad: POP
000001ae: POP
000001af: PUSH1 0x01
000001b1: SWAP2
000001b2: POP
000001b3: PUSH2 0x01b7
000001b6: JUMP
000001b7: JUMPDEST
000001b8: POP
000001b9: SWAP1
000001ba: JUMP
000001bb: JUMPDEST
000001bc: PUSH1 0x00
000001be: PUSH1 0x00
000001c0: PUSH20 0x4eecf99d543b278106ac0c0e8ffe616f2137f10a
000001d5: SWAP1
000001d6: POP
000001d7: DUP1
000001d8: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000001ed: AND
000001ee: PUSH1 0x00
000001f0: PUSH2 0x07d0
000001f3: PUSH1 0x40
000001f5: MLOAD
000001f6: DUP1
000001f7: SWAP1
000001f8: POP
000001f9: PUSH1 0x00
000001fb: PUSH1 0x40
000001fd: MLOAD
000001fe: DUP1
000001ff: DUP4
00000200: SUB
00000201: DUP2
00000202: DUP6
00000203: DUP9
00000204: DUP9
00000205: CALL
00000206: SWAP4
00000207: POP
00000208: POP
00000209: POP
0000020a: POP
0000020b: POP
0000020c: PUSH1 0x01
0000020e: SWAP2
0000020f: POP
00000210: PUSH2 0x0214
00000213: JUMP
00000214: JUMPDEST
00000215: POP
00000216: SWAP1
00000217: JUMP
00000218: JUMPDEST
00000219: PUSH1 0x00
0000021b: PUSH1 0x00
0000021d: PUSH20 0x4eecf99d543b278106ac0c0e8ffe616f2137f10a
00000232: SWAP1
00000233: POP
00000234: DUP1
00000235: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000024a: AND
0000024b: PUSH3 0x0493e0
0000024f: PUSH1 0x00
00000251: PUSH1 0x40
00000253: MLOAD
00000254: DUP1
00000255: DUP1
00000256: PUSH32 0x7769746864726177282900000000000000000000000000000000000000000000
00000277: DUP2
00000278: MSTORE
00000279: PUSH1 0x20
0000027b: ADD
0000027c: POP
0000027d: PUSH1 0x0a
0000027f: ADD
00000280: SWAP1
00000281: POP
00000282: PUSH1 0x40
00000284: MLOAD
00000285: DUP1
00000286: SWAP2
00000287: SUB
00000288: SWAP1
00000289: KECCAK256
0000028a: PUSH29 0x0100000000000000000000000000000000000000000000000000000000
000002a8: SWAP1
000002a9: DIV
000002aa: SWAP2
000002ab: SWAP1
000002ac: PUSH1 0x40
000002ae: MLOAD
000002af: DUP4
000002b0: PUSH29 0x0100000000000000000000000000000000000000000000000000000000
000002ce: MUL
000002cf: DUP2
000002d0: MSTORE
000002d1: PUSH1 0x04
000002d3: ADD
000002d4: DUP1
000002d5: SWAP1
000002d6: POP
000002d7: PUSH1 0x00
000002d9: PUSH1 0x40
000002db: MLOAD
000002dc: DUP1
000002dd: DUP4
000002de: SUB
000002df: DUP2
000002e0: DUP6
000002e1: DUP10
000002e2: DUP9
000002e3: CALL
000002e4: SWAP5
000002e5: POP
000002e6: POP
000002e7: POP
000002e8: POP
000002e9: POP
000002ea: POP
000002eb: PUSH1 0x01
000002ed: SWAP2
000002ee: POP
000002ef: PUSH2 0x02f3
000002f2: JUMP
000002f3: JUMPDEST
000002f4: POP
000002f5: SWAP1
000002f6: JUMP
View stderr
Warning: This is a nightly build of Foundry. It is recommended to use the latest stable version. To mute this warning set `FOUNDRY_DISABLE_NIGHTLY_WARNING` in your environment.

Findings

validated = confirmed for call sinks; sink observed for others
Severity Category Tool Title Confidence Validated Confirmed Details
high other detector Untrusted CALL target/value reachable 60 no no
view
trace_id: 0x16d47bf2fe02f0458d136da92f2c5e921574241bf763ab9637b3e486ef68e27a
call_targets: 0x25fcd125a5f7ae72a339466ebcc1b6f72d072bb6
target_varies: no
classification: constant_target
validation_json
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x16d47bf2fe02f0458d136da92f2c5e921574241bf763ab9637b3e486ef68e27a",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x25fcd125a5f7ae72a339466ebcc1b6f72d072bb6"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x0f59f83a",
            "selector": "0x0f59f83a",
            "calldata_variants": [
                "0x0f59f83a",
                "0x0f59f83a0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x285b2e01",
            "selector": "0x285b2e01",
            "calldata_variants": [
                "0x285b2e01",
                "0x285b2e010000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x644dce20",
            "selector": "0x644dce20",
            "calldata_variants": [
                "0x644dce20",
                "0x644dce200000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x9cdf1872",
            "selector": "0x9cdf1872",
            "calldata_variants": [
                "0x9cdf1872",
                "0x9cdf18720000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json
{
    "examples": [
        {
            "pc": 517,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "constant_zero",
            "target_expression_category": "computed"
        },
        {
            "pc": 739,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "call_count": 2,
    "guards_detected": [],
    "untrusted_call_count": 2
}
high other detector ETH value transfer possible 55 no no
view
trace_id: 0x16d47bf2fe02f0458d136da92f2c5e921574241bf763ab9637b3e486ef68e27a
call_targets: 0x25fcd125a5f7ae72a339466ebcc1b6f72d072bb6
target_varies: no
classification: constant_target
validation_json
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x16d47bf2fe02f0458d136da92f2c5e921574241bf763ab9637b3e486ef68e27a",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x25fcd125a5f7ae72a339466ebcc1b6f72d072bb6"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x0f59f83a",
            "selector": "0x0f59f83a",
            "calldata_variants": [
                "0x0f59f83a",
                "0x0f59f83a0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x285b2e01",
            "selector": "0x285b2e01",
            "calldata_variants": [
                "0x285b2e01",
                "0x285b2e010000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x644dce20",
            "selector": "0x644dce20",
            "calldata_variants": [
                "0x644dce20",
                "0x644dce200000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x9cdf1872",
            "selector": "0x9cdf1872",
            "calldata_variants": [
                "0x9cdf1872",
                "0x9cdf18720000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json
{
    "examples": [
        {
            "pc": 739,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "eth_value_calls": 1,
    "guards_detected": []
}