Riddhi Shree

Designation:

Freelancer

Talk Title:

Web3.0 - Smart Contracts Could Be Leaky

Abstract:

What is Web3.0? The best way to find the answer was by getting my hands dirty. This talk is about sharing experiences with you about things that worked and that did not work as expected, when I wrote my first Smart Contract and deployed it to a decentralized server. How I leaked the sensitive flag{}, and, what was the fix I applied to prevent leaking sensitive information?

Bio:

Riddhi Shree, is an information security enthusiast, currently working as technical lead for the product security team at Qualcomm. She has professional experience in software testing, Web app pen testing, and Android and iOS app pen testing. Other than information security, she also has experience in Web and mobile app development. She has created a cloud-based vulnerable Android app, called VyAPI, that demonstrates OWASP Mobile's top 10 vulnerabilities. In the past, she was leading community activities for open security communities like the null Bangalore chapter and Winja. Having an interest in capture-the-flag events, she has organized and led a team of passionate volunteers for several Winja CTF events, both, online and offline. She has given talks and training at various security conferences, including BSides (Delhi), c0c0n (Kochi), Nullcon (Goa), ISC2 (Bangalore), HITB (Abu Dhabi), Wicked6, and Texas Cyber Summit.

Want to connect with Riddhi Shree?