Saved in:
Bibliographic Details
Main Authors: Yang, Sen, Qin, Kaihua, Yaish, Aviv, Zhang, Fan
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2504.13398
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866909775319531520
author Yang, Sen
Qin, Kaihua
Yaish, Aviv
Zhang, Fan
author_facet Yang, Sen
Qin, Kaihua
Yaish, Aviv
Zhang, Fan
contents Most blockchains cannot hide the binary code of programs (i.e., smart contracts) running on them. To conceal proprietary business logic and to potentially deter attacks, many smart contracts are closed-source and employ layers of obfuscation. However, we demonstrate that such obfuscation can obscure critical vulnerabilities rather than enhance security, a phenomenon we term insecurity through obscurity. To systematically analyze these risks on a large scale, we present SKANF, a novel EVM bytecode analysis tool tailored for closed-source and obfuscated contracts. SKANF combines control-flow deobfuscation, symbolic execution, and concolic execution based on historical transactions to identify and exploit asset management vulnerabilities. Our evaluation on real-world Maximal Extractable Value (MEV) bots reveals that SKANF detects vulnerabilities in 1,030 contracts and successfully generates exploits for 394 of them, with potential losses of \$10.6M. Additionally, we uncover 104 real-world MEV bot attacks that collectively resulted in \$2.76M in losses.
format Preprint
id arxiv_https___arxiv_org_abs_2504_13398
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle Insecurity Through Obscurity: Veiled Vulnerabilities in Closed-Source Contracts
Yang, Sen
Qin, Kaihua
Yaish, Aviv
Zhang, Fan
Cryptography and Security
Most blockchains cannot hide the binary code of programs (i.e., smart contracts) running on them. To conceal proprietary business logic and to potentially deter attacks, many smart contracts are closed-source and employ layers of obfuscation. However, we demonstrate that such obfuscation can obscure critical vulnerabilities rather than enhance security, a phenomenon we term insecurity through obscurity. To systematically analyze these risks on a large scale, we present SKANF, a novel EVM bytecode analysis tool tailored for closed-source and obfuscated contracts. SKANF combines control-flow deobfuscation, symbolic execution, and concolic execution based on historical transactions to identify and exploit asset management vulnerabilities. Our evaluation on real-world Maximal Extractable Value (MEV) bots reveals that SKANF detects vulnerabilities in 1,030 contracts and successfully generates exploits for 394 of them, with potential losses of \$10.6M. Additionally, we uncover 104 real-world MEV bot attacks that collectively resulted in \$2.76M in losses.
title Insecurity Through Obscurity: Veiled Vulnerabilities in Closed-Source Contracts
topic Cryptography and Security
url https://arxiv.org/abs/2504.13398