Replace public testnets with Virtual TestNets synced with mainnet state. Get started!

Stay in the Loop With Security Audit Alerts

Join the Security Audit Alerts channel on Telegram to receive notifications as soon as proxy contracts on Immunefi change their implementation addresses. This update signals it's time for a new audit, keeping you in the loop. Then, open the contracts on Virtual TestNets and start auditing.

Stay in the Loop With Tenderly Security Audit Alerts

In this post

Instead of manually checking for new bounty contracts that require an audit, start receiving automatic notifications directly into your inbox. Join our Security Audit Alerts channel and get updated as soon as new contracts on Immunefi are up for an audit.

What are Security Audit Alerts? 

Security Audit Alerts is Tenderly’s public Telegram channel for security auditors and engineers. The channel facilitates the discovery of proxy contracts deployed on the Immunefi bounty platform that require a new audit. Connected to Tenderly Alerts, the channel receives real-time notifications whenever proxy contracts change their implementation addresses, signaling it’s time for a new audit. 

🔔
Never miss a proxy contract that’s up for an audit – join the Security Audit Alerts channel now: https://t.me/tdly_audit_alerts

How do Security Audit Alerts help you stay in the loop? 

The Security Audit Alerts channel helps you track down contracts that require an audit without manually checking the Immunefi platform. Instead, you can:

  1. Join the publicly open Security Audit Alerts channel on Telegram.
  2. Receive real-time alerts for proxy contracts on Immunefi that exhibit state changes with an address variable. This change signals that the proxy contract code has changed, requiring a new audit for potential vulnerabilities.
  3. Get a link to an automatically spawned Virtual TestNet with the relevant proxy contracts already deployed.

What to do after receiving an alert?

Once you receive a Security Audit Alert, open the link to a Virtual TestNet with the deployed contracts. Then, fork the Virtual TestNet into your project and dive into your audit, speeding up the entire process

🔗
Want to give it a try right away? Fork this Virtual TestNet and start auditing: https://dashboard.tenderly.co/explorer/vnet/aa4e26bb-2108-4a3d-ae52-8b2c4f46da82/transactions

Virtual TestNets are flexible development environments with a built-in unlimited faucet, virtual explorer, and debugging tools. Listing all executed transactions from the deployed contracts, Virtual TestNets provide you with total observability of their execution, including asset transfers, balance changes, and emitted events.

A Virtual TestNet with a proxy contract from Immunefi
A Virtual TestNet with a proxy contract from Immunefi

You can use Virtual TestNets to run Foundry Forge tests against mainnet data and inspect potential errors in a human-readable format. You can even test custom edge cases by overriding the state of your environments. 

Then, build PoC transactions showcasing potential vulnerabilities on a Virtual TestNet. Whether through the Tenderly Dashboard or using Foundry scripts, transaction execution on Virtual TestNets is instant. Finally, submit the public Virtual TestNet RPC to Imunnefi as part of your application for bug bounties. 

Stay up to date with Security Audit Alerts

Don’t waste time manually checking bug bounty platforms when you can receive automatic updates. Join the Security Audit Alerts channel and get notifications as soon as proxy contracts are up for a new audit. 

Then, inspect contract code more efficiently with Virtual Testnets and build powerful PoC to apply for bug bounties.

Join the channel here 👉  https://t.me/tdly_audit_alerts