Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

apegurus/euler-finance

Name: euler-finance
Author: apegurus

skills/case-studies/euler-finance/SKILL.md

Case study of the 2023 Euler Finance exploit: donation attack draining ~$197M

data-ai

Updated May 13, 2026

$ install --global

skillsauth

npx skillsauth add apegurus/solidity-argus euler-finance

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 13, 2026, 3:20 AM154.8s1 file scanned

SKILL.md

name:: euler-finance
description:: Detects donation functions that might allow a user to intentionally make their position underwater to trigger liquidations.
category:: reference
source_url:: https://rekt.news/euler-rekt/
source_license:: CC0
imported_at:: 2025-02-20T00:00:00Z
- regex:: donateToReserves
severity:: High

Euler Finance (2023)

Overview

In March 2023, Euler Finance, a non-custodial lending protocol, was exploited for approximately $197 million. The attacker used a "donation attack" where they intentionally made their own position underwater by donating funds to the protocol's reserves, allowing them to liquidate themselves and profit from the protocol's bad debt handling.

Root Cause

The vulnerability was in the donateToReserves function of the EToken contract. This function allowed a user to donate their EToken balance to the protocol's reserves. However, it did not check if the donation would make the user's position insolvent. By donating a large amount of collateral while having a large debt, the attacker could make their position underwater and then use a separate account to liquidate the position at a massive discount.

Attack Flow

Attacker took a flash loan of 30M DAI from Aave.
Attacker deposited 20M DAI into Euler to receive eDAI.
Attacker leveraged their position by minting 200M dDAI (debt) and 195M eDAI (collateral).
Attacker called donateToReserves with 100M eDAI. This reduced their collateral but kept their debt the same, making the position heavily underwater.
Attacker used a second account to liquidate the first account. Due to the way Euler's liquidation worked, the liquidator received the remaining eDAI at a massive discount, while the protocol was left with bad debt.
Attacker repeated this for other assets (wBTC, wETH, stETH).
Attacker repaid the flash loan and kept the profit.

Impact

Loss: ~$197M
Protocol: Euler Finance
Chain: Ethereum
Date: 2023-03-13

Key Transactions

Attack tx (DAI): 0xc310a0affe2169d1f6feec1c63dbc7f7c62a88bf44e7906e2bc6445e10086615

Detection Heuristics

Pattern 1: Functions that allow users to reduce their collateral (e.g., via donation or transfer) without checking their health factor or solvency.
Pattern 2: Liquidation logic that doesn't properly account for "donated" or "burned" collateral.

Remediation

Fix 1: Add a health factor check to the donateToReserves function to ensure the user remains solvent after the donation.
Fix 2: Implement stricter checks on liquidation bonuses and ensure that the protocol's reserves are not used to subsidize malicious liquidations.

References

rekt.news/euler-rekt/
euler.finance/blog/euler-vault-kit-post-mortem

Related Skills

apegurus/vector-scan

testing

VerifiedTrustedCommunity

Specialist profile for mechanically applying the attack-vector deck and classifying vectors as skip, drop, or investigate.

SKILL.mdUpdated May 30, 2026

apegurus/periphery

tools

VerifiedTrustedCommunity

Specialist profile for libraries, helpers, base contracts, adapters, encoders, wrappers, and integration glue.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

testing

VerifiedTrustedCommunity

Specialist profile for rounding, scale, decimal, downcast, and arithmetic accounting edge cases.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

apegurus/invariant

testing

VerifiedTrustedCommunity

Specialist profile for extracting conservation laws and state couplings, then searching for violating paths.

SKILL.mdUpdated May 30, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/apegurus/solidity-argus.git

# Copy into Claude Code skills folder (global)
cp -r solidity-argus/skills/case-studies/euler-finance ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

apegurus/solidity-argus

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT

apegurus/euler-finance

skills/case-studies/euler-finance/SKILL.md

Case study of the 2023 Euler Finance exploit: donation attack draining ~$197M

data-ai

Updated May 13, 2026

$ install --global

skillsauth

npx skillsauth add apegurus/solidity-argus euler-finance

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 13, 2026, 3:20 AM154.8s1 file scanned

SKILL.md

name:: euler-finance
description:: Detects donation functions that might allow a user to intentionally make their position underwater to trigger liquidations.
category:: reference
source_url:: https://rekt.news/euler-rekt/
source_license:: CC0
imported_at:: 2025-02-20T00:00:00Z
- regex:: donateToReserves
severity:: High

Euler Finance (2023)

Overview

Root Cause

Attack Flow

Attacker took a flash loan of 30M DAI from Aave.
Attacker deposited 20M DAI into Euler to receive eDAI.
Attacker leveraged their position by minting 200M dDAI (debt) and 195M eDAI (collateral).
Attacker called donateToReserves with 100M eDAI. This reduced their collateral but kept their debt the same, making the position heavily underwater.
Attacker used a second account to liquidate the first account. Due to the way Euler's liquidation worked, the liquidator received the remaining eDAI at a massive discount, while the protocol was left with bad debt.
Attacker repeated this for other assets (wBTC, wETH, stETH).
Attacker repaid the flash loan and kept the profit.

Impact

Loss: ~$197M
Protocol: Euler Finance
Chain: Ethereum
Date: 2023-03-13

Key Transactions

Attack tx (DAI): 0xc310a0affe2169d1f6feec1c63dbc7f7c62a88bf44e7906e2bc6445e10086615

Detection Heuristics

Pattern 1: Functions that allow users to reduce their collateral (e.g., via donation or transfer) without checking their health factor or solvency.
Pattern 2: Liquidation logic that doesn't properly account for "donated" or "burned" collateral.

Remediation

Fix 1: Add a health factor check to the donateToReserves function to ensure the user remains solvent after the donation.
Fix 2: Implement stricter checks on liquidation bonuses and ensure that the protocol's reserves are not used to subsidize malicious liquidations.

References

rekt.news/euler-rekt/
euler.finance/blog/euler-vault-kit-post-mortem

Related Skills

apegurus/vector-scan

testing

VerifiedTrustedCommunity

Specialist profile for mechanically applying the attack-vector deck and classifying vectors as skip, drop, or investigate.

SKILL.mdUpdated May 30, 2026

apegurus/periphery

tools

VerifiedTrustedCommunity

Specialist profile for libraries, helpers, base contracts, adapters, encoders, wrappers, and integration glue.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

testing

VerifiedTrustedCommunity

Specialist profile for rounding, scale, decimal, downcast, and arithmetic accounting edge cases.

SKILL.mdUpdated May 30, 2026

apegurus/math-precision

apegurus/invariant

testing

VerifiedTrustedCommunity

Specialist profile for extracting conservation laws and state couplings, then searching for violating paths.

SKILL.mdUpdated May 30, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/apegurus/solidity-argus.git

# Copy into Claude Code skills folder (global)
cp -r solidity-argus/skills/case-studies/euler-finance ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

apegurus/solidity-argus

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT