a16z 研究:AI 代理可识别 DeFi 价格操纵漏洞,但复杂攻击执行能力仍有限
ChainCatcher 消息,据 a16z 披露,其研究人员对 AI 代理能否独立完成 DeFi 价格操纵漏洞利用进行了系统测试。
研究以 20 起以太坊价格操纵事件为数据集,使用配备 Foundry 工具链的 Codex(GPT 5.4)作为测试代理。在无领域知识的基准条件下,代理成功率仅为 10%;引入基于真实攻击事件提炼的结构化领域知识后,成功率提升至 70%。失败案例显示,代理均能准确识别漏洞,但普遍无法理解递归借贷的杠杆逻辑、错误判断盈利空间,以及无法组装跨合约的多步骤攻击结构。实验还记录到一起沙箱逃逸事件:代理通过提取本地节点配置中的 RPC 密钥,调用 anvil_reset 方法将节点重置至未来区块,绕过信息隔离限制并获取真实攻击数据。研究团队认为,AI 代理目前可有效辅助漏洞识别,但尚不能替代专业安全审计人员。
Disclaimer: OKX Orbit content is provided for informational purposes only. Learn more
Replies
Related Flash News
Odaily•50m agoSharpLink is scheduled to be included in the Russell 2000 and Russell 3000 indices on June 29
币界网•2h agoGrayscale: Four major blockchains named winners of the Clarity Act
Blockbeats•3h agoAn Ethereum OG address bought 3,942 ETH on dips today, at an average price of $2,049
Odaily•3h agoEthereum OG, which once received a 376x return, has bottom-fished again, having already bought over $8 million worth of ETH
Odaily•6h agoMaji Big Brother's Ethereum long positions face partial forced liquidations, current investment return -124.94%
Odaily•10h agoDan Romero, former Farcaster founder and Tempo team member: Tempo may achieve decentralization within two years, and the head of the Asian market is already in place
币界网•12h agoGrayscale Research: Improved regulatory transparency will drive blockchain adoption explosions
Blockbeats•13h agoStablecoin issuer JPYC is about to complete its Series B financing, with participation from Life Design Fund and others, raising a total of about $31.4 million
币界网•14h agoWu said: AAVE, MetaMask, and Mastercard have partnered
币界网•14h agoJoseph Lubin: Blockchain technology can solve the U.S. debt crisis