// 01 · ABOUT ME
I'm Khant Wai Yan Aung (SnavOhburmaa), a smart contract auditor and blockchain security researcher.
// 02 · PROFILE
I'm a computer science student and security researcher from Myanmar, currently studying at Rangsit University in Thailand. I spend most of my time reading protocol code and taking apart past hacks to understand exactly how they happened. When I report a bug, I write it the way I'd want to receive it: a clear root cause, a proof of concept that shows the issue is real, and a fix that doesn't create new problems.
These days I'm auditing CodeHawks First Flights and hunting bug bounties to keep my skills sharp on real, live code.
- education
- B.Sc. Computer Science
Rangsit University · 2024 to 2027 - nationality
- Myanmar
- languages
- Burmese (native)
English (upper intermediate) - links
-
GitHub ↗︎
LinkedIn ↗︎
// 03 · WHAT I CAN DO
manual-review
I read the code line by line to catch the bugs tools miss: broken access control, accounting that does not add up, reentrancy, bad oracle assumptions, and unsafe upgrades.
formal-verification
I use Certora and Halmos to mathematically prove a contract's key rules always hold, a level of certainty that testing and fuzzing alone can't give.
fuzzing-&-invariants
I write Foundry invariant tests and Echidna campaigns that throw thousands of random inputs at a protocol to find the edge cases that break its core rules.
static-analysis
I run Slither and Aderyn to flag suspicious patterns quickly, then review every result by hand so the report contains real issues, not noise.
poc-development
Every High or Critical finding comes with a working exploit I can run, so the issue is proven, not just claimed.