aeondave/foundry-cast
offensive-tools/exploits/foundry-cast/SKILL.md
Auth/lab ref: command-line utility for interacting with Ethereum-compatible chains.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill foundry-castInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 8, 2026, 3:45 AM155.4s1 file scanned
SKILL.md
- name:
- foundry-cast
- description:
- Auth/lab ref: command-line utility for interacting with Ethereum-compatible chains.
- compatibility:
- Linux, macOS, Windows; Foundry installed; RPC access required.
- author:
- AeonDave
- version:
- 1.0
Foundry cast
CLI Swiss Army knife for Ethereum and EVM chains.
When to use cast
Use cast when you need to:
- perform read-only calls against contracts
- inspect balances, storage slots, code, receipts, or block data
- encode or decode ABI data quickly from the shell
- send a controlled transaction in an authorized lab
Quick Start
# Balance lookup
cast balance 0x0000000000000000000000000000000000000000 --rpc-url https://rpc.example
# Read-only contract call
cast call 0xContract "owner()(address)" --rpc-url https://rpc.example
# Inspect storage slot 0
cast storage 0xContract 0 --rpc-url https://rpc.example
High-Value Workflows
ABI helpers
cast calldata "transfer(address,uint256)" 0x1111111111111111111111111111111111111111 1000000000000000000
cast abi-decode "(uint256,address)" 0x0000000000000000000000000000000000000000000000000000000000000042
Chain and code inspection
cast block-number --rpc-url https://rpc.example
cast code 0xContract --rpc-url https://rpc.example
cast receipt 0xTxHash --rpc-url https://rpc.example
cast rpc eth_chainId --rpc-url https://rpc.example
Controlled state-changing transaction
cast send 0xContract "setValue(uint256)" 1 --rpc-url https://rpc.example --private-key 0xYOURKEY
Practical Notes
- Prefer
callfirst; it answers a surprising amount before you risk a transaction. storageis excellent for proxy, slot, and state-layout triage.- Pair with
solcfor compilation context andslitherormythrilfor deeper security review.
Caveats
- RPC and chain selection matter; wrong endpoint means wrong truth.
sendsigns and broadcasts a transaction, so treat it as a deliberate action.- ABI decoding is only as good as the signature or tuple you provide.
Resources
No bundled scripts/, references/, or assets/.
Use the current Foundry cast reference for subcommand-specific flags and aliases.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026