Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

apegurus/dao-hack

Name: dao-hack
Author: apegurus

skills/case-studies/dao-hack/SKILL.md

npx skillsauth add apegurus/solidity-argus dao-hack

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

DAO Hack (2016)

Overview

The DAO was a decentralized autonomous organization launched in 2016 on the Ethereum blockchain. It was designed to operate as a venture capital fund for the crypto space. In June 2016, an attacker exploited a reentrancy vulnerability in the DAO's smart contract, draining approximately 3.6 million ETH, worth about $60 million at the time.

Root Cause

The vulnerability was a classic reentrancy bug. The splitDAO function allowed a member to withdraw their ETH and receive "Child DAO" tokens. The contract sent ETH to the user using a low-level .call() before updating the user's balance. This allowed the attacker to recursively call the splitDAO function from their malicious contract's fallback function before the first call finished, effectively draining the contract.

Attack Flow

The attacker created a malicious contract and funded it with DAO tokens.
The attacker called the splitDAO function.
The DAO contract sent ETH to the attacker's contract via a low-level call.
The attacker's fallback function triggered another call to splitDAO.
Steps 3 and 4 repeated recursively until the gas limit was reached or the contract was drained.
The state update (reducing the attacker's balance) only happened after the recursive calls finished, which was too late.

Impact

Loss: ~$60M (3.6M ETH)
Protocol: The DAO
Chain: Ethereum
Date: 2016-06-17

Key Transactions

Attack tx: 0x0eb3f4d006903f621f048358878b2ad9046f00d28e5540fa24644433252170e4

Detection Heuristics

Pattern 1: Low-level .call() used for ETH transfers without a reentrancy guard.
Pattern 2: State variables (like balances) updated after an external call.

Remediation

Fix 1: Use the Checks-Effects-Interactions pattern. Update state before making external calls.
Fix 2: Implement a reentrancy guard (e.g., OpenZeppelin's ReentrancyGuard).

References

rekt.news/dao-rekt/
blog.slock.it/the-history-of-the-dao-628d50257c3d

apegurus/dao-hack

skills/case-studies/dao-hack/SKILL.md

Case study of the 2016 DAO hack: reentrancy exploit draining ~$60M

data-ai

Updated May 13, 2026

$ install --global

skillsauth

npx skillsauth add apegurus/solidity-argus dao-hack

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 13, 2026, 3:19 AM124.7s1 file scanned

SKILL.md

name:: dao-hack
description:: Detects low-level calls that may be vulnerable to reentrancy if state is updated after the call.
category:: reference
source_url:: https://rekt.news/dao-rekt/
source_license:: CC0
imported_at:: 2025-02-20T00:00:00Z
- regex:: \.call\{value:.*\}$.*$;
severity:: High

DAO Hack (2016)

Overview

Root Cause

Attack Flow

The attacker created a malicious contract and funded it with DAO tokens.
The attacker called the splitDAO function.
The DAO contract sent ETH to the attacker's contract via a low-level call.
The attacker's fallback function triggered another call to splitDAO.
Steps 3 and 4 repeated recursively until the gas limit was reached or the contract was drained.
The state update (reducing the attacker's balance) only happened after the recursive calls finished, which was too late.

Impact

Loss: ~$60M (3.6M ETH)
Protocol: The DAO
Chain: Ethereum
Date: 2016-06-17

Key Transactions

Attack tx: 0x0eb3f4d006903f621f048358878b2ad9046f00d28e5540fa24644433252170e4

Detection Heuristics

Pattern 1: Low-level .call() used for ETH transfers without a reentrancy guard.
Pattern 2: State variables (like balances) updated after an external call.

Remediation

Fix 1: Use the Checks-Effects-Interactions pattern. Update state before making external calls.
Fix 2: Implement a reentrancy guard (e.g., OpenZeppelin's ReentrancyGuard).

References

rekt.news/dao-rekt/
blog.slock.it/the-history-of-the-dao-628d50257c3d

Related Skills

apegurus/vector-scan

testing

VerifiedTrustedCommunity

Specialist profile for mechanically applying the attack-vector deck and classifying vectors as skip, drop, or investigate.

SKILL.mdUpdated May 30, 2026

apegurus/periphery

tools

VerifiedTrustedCommunity

Specialist profile for libraries, helpers, base contracts, adapters, encoders, wrappers, and integration glue.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

testing

VerifiedTrustedCommunity

Specialist profile for rounding, scale, decimal, downcast, and arithmetic accounting edge cases.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

apegurus/invariant

testing

VerifiedTrustedCommunity

Specialist profile for extracting conservation laws and state couplings, then searching for violating paths.

SKILL.mdUpdated May 30, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/apegurus/solidity-argus.git

# Copy into Claude Code skills folder (global)
cp -r solidity-argus/skills/case-studies/dao-hack ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

apegurus/solidity-argus

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT