Skip to content

mirmohmmadluqman/security-pg

Repository files navigation

Security Playground

Security Playground Logo

An interactive, browser-based platform for learning Ethereum smart contract security through hands-on exploitation and fixing of real vulnerabilities.

License Next.js TypeScript

Let's make Web3 secure! Join Discord

Overview

Security Playground teaches developers about common smart contract vulnerabilities in a safe, sandboxed environment. Learn by exploiting vulnerable contracts, understanding attack vectors, and implementing fixes.

Features

  • Browser-based Monaco Editor with Solidity syntax highlighting
  • In-browser EVM for compiling and deploying contracts
  • 8 interactive security modules covering real-world vulnerabilities
  • Step-by-step learning path from exploitation to remediation
  • Dark/Light mode support

Security Modules

  • Reentrancy Attacks
  • Access Control Misconfigurations
  • Integer Overflow/Underflow
  • Unchecked External Calls
  • TX-Origin Authentication
  • Denial of Service (DoS)
  • Storage Collisions
  • Front-Running

Getting Started

Prerequisites

  • Node.js 18+
  • npm or yarn

Installation

git clone https://github.com/mirmohmadluqman/security-pg.git
cd security-pg
npm install
npm run dev

Open http://localhost:3000 in your browser.

How to Use

  1. Select a security vulnerability module
  2. Study the vulnerable smart contract code
  3. Run the exploit to see the vulnerability in action
  4. Fix the code to patch the vulnerability
  5. Verify your fix by running the exploit again

Tech Stack

  • Next.js 15.3.5
  • TypeScript
  • Tailwind CSS
  • Monaco Editor
  • solc-js
  • shadcn/ui

License

GPL-3.0 License - see LICENSE file for details.

Developer

Mir Mohmmad Luqman

Full-stack blockchain developer passionate about smart contract security and Web3 education.

Disclaimer

This tool is for educational purposes only. The vulnerable contracts shown are intentionally insecure and should never be deployed to production environments.

About

Security Playground

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors