uups-checker 1.0.0

package/UPS

@@ -0,0 +1,232 @@
+#!/bin/bash
+
+# UUPS Proxy Initialization Checker
+# Usage: ./UUPSCHECKER <contract_address> [chain]
+# Chains: eth (default), bsc, opbnb, polygon, arbitrum, optimism
+
+# Colors
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+BLUE='\033[0;34m'
+NC='\033[0m' # No Color
+
+# Banner
+echo -e "${BLUE}"
+echo "╔══════════════════════════════════════════╗"
+echo "║       UUPS INITIALIZATION CHECKER        ║"
+echo "║          Whitehat Bounty Tool            ║"
+echo "╚══════════════════════════════════════════╝"
+echo -e "${NC}"
+
+# Check if address provided
+if [ -z "$1" ]; then
+    echo -e "${RED}[ERROR]${NC} No address provided!"
+    echo "Usage: ./UUPSCHECKER <contract_address> [chain]"
+    echo "Chains: eth, bsc, opbnb, polygon, arbitrum, optimism"
+    exit 1
+fi
+
+ADDRESS=$1
+CHAIN=${2:-eth}
+
+# Set RPC based on chain
+case $CHAIN in
+    eth)
+        RPC_URL="https://mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://etherscan.io/address"
+        ;;
+    bsc)
+        RPC_URL="https://bsc-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://bscscan.com/address"
+        ;;
+    opbnb)
+        RPC_URL="https://opbnb-mainnet-rpc.bnbchain.org"
+        EXPLORER="https://opbnbscan.com/address"
+        ;;
+    polygon)
+        RPC_URL="https://polygon-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://polygonscan.com/address"
+        ;;
+    arbitrum)
+        RPC_URL="https://arbitrum-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://arbiscan.io/address"
+        ;;
+    optimism)
+        RPC_URL="https://optimism-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://optimistic.etherscan.io/address"
+        ;;
+    *)
+        echo -e "${RED}[ERROR]${NC} Unknown chain: $CHAIN"
+        exit 1
+        ;;
+esac
+
+echo -e "${BLUE}[INFO]${NC} Checking: $ADDRESS"
+echo -e "${BLUE}[INFO]${NC} Chain: $CHAIN"
+echo -e "${BLUE}[INFO]${NC} Explorer: $EXPLORER/$ADDRESS"
+echo ""
+
+# EIP-1967 Implementation Slot
+IMPL_SLOT="0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc"
+
+# Check implementation slot
+echo -e "${YELLOW}[1/5]${NC} Reading EIP-1967 implementation slot..."
+IMPL_ADDRESS=$(cast storage $ADDRESS $IMPL_SLOT --rpc-url $RPC_URL 2>/dev/null)
+
+if [ -z "$IMPL_ADDRESS" ] || [ "$IMPL_ADDRESS" == "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+    echo -e "${RED}[RESULT]${NC} Not a proxy or no implementation set"
+    exit 0
+fi
+
+# Convert to address format
+IMPL_ADDRESS="0x${IMPL_ADDRESS:26:40}"
+echo -e "${GREEN}[✓]${NC} Implementation: $IMPL_ADDRESS"
+
+# Check if it's UUPS by looking for proxiableUUID function (definitive UUPS marker)
+echo -e "${YELLOW}[2/5]${NC} Checking if UUPS proxy..."
+UUPS_CHECK=$(cast call $IMPL_ADDRESS "proxiableUUID()(bytes32)" --rpc-url $RPC_URL 2>&1)
+
+if [[ $UUPS_CHECK == *"Error"* ]] || [[ $UUPS_CHECK == *"revert"* ]] || [ -z "$UUPS_CHECK" ]; then
+    echo -e "${RED}[!] Not UUPS (Transparent Proxy)${NC}"
+    IS_UUPS=false
+    
+    # For Transparent Proxy, check admin slot instead
+    echo -e "${YELLOW}[2b/5]${NC} Checking Transparent Proxy admin..."
+    ADMIN_SLOT="0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103"
+    ADMIN_ADDRESS=$(cast storage $ADDRESS $ADMIN_SLOT --rpc-url $RPC_URL 2>/dev/null)
+    
+    if [ -z "$ADMIN_ADDRESS" ] || [ "$ADMIN_ADDRESS" == "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+        echo -e "${RED}[!]${NC} No admin set (VULNERABLE!)"
+        ADMIN_ADDRESS="0x0000000000000000000000000000000000000000"
+    else
+        ADMIN_ADDRESS="0x${ADMIN_ADDRESS:26:40}"
+        echo -e "${GREEN}[✓]${NC} Admin: $ADMIN_ADDRESS"
+    fi
+else
+    echo -e "${BLUE}[✓] UUPS proxy detected!${NC}"
+    IS_UUPS=true
+fi
+
+# Check owner/admin
+echo -e "${YELLOW}[3/5]${NC} Checking owner/admin..."
+
+if [ "$IS_UUPS" = true ]; then
+    # For UUPS, check owner on implementation
+    OWNER=$(cast call $IMPL_ADDRESS "owner()(address)" --rpc-url $RPC_URL 2>/dev/null)
+else
+    # For Transparent, we already have admin from step 2b
+    OWNER=$ADMIN_ADDRESS
+fi
+
+if [ -z "$OWNER" ] || [ "$OWNER" == "0x0000000000000000000000000000000000000000" ]; then
+    echo -e "${RED}[!]${NC} No owner/admin found"
+    OWNER="NOT_FOUND"
+else
+    echo -e "${GREEN}[✓]${NC} Owner/Admin: $OWNER"
+fi
+
+# Check if initialized
+echo -e "${YELLOW}[4/5]${NC} Checking initialization status..."
+
+PROXY_INITIALIZED=false
+IMPL_INITIALIZED=false
+
+# Check proxy initialization (slot 0 for Initializable)
+PROXY_INIT_SLOT="0x0000000000000000000000000000000000000000000000000000000000000000"
+PROXY_INIT_DATA=$(cast storage $ADDRESS $PROXY_INIT_SLOT --rpc-url $RPC_URL 2>/dev/null)
+
+if [ ! -z "$PROXY_INIT_DATA" ] && [ "$PROXY_INIT_DATA" != "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+    PROXY_INITIALIZED=true
+    echo -e "${GREEN}[✓]${NC} Proxy: INITIALIZED"
+else
+    echo -e "${YELLOW}[!]${NC} Proxy: NOT INITIALIZED"
+fi
+
+# Check implementation initialization
+IMPL_INIT_DATA=$(cast storage $IMPL_ADDRESS $PROXY_INIT_SLOT --rpc-url $RPC_URL 2>/dev/null)
+
+if [ ! -z "$IMPL_INIT_DATA" ] && [ "$IMPL_INIT_DATA" != "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+    IMPL_INITIALIZED=true
+    echo -e "${GREEN}[✓]${NC} Implementation: INITIALIZED"
+else
+    echo -e "${RED}[!]${NC} Implementation: NOT INITIALIZED"
+fi
+
+# Overall initialization status
+if [ "$IS_UUPS" = true ]; then
+    # For UUPS, check if owner is set as backup
+    if [ "$OWNER" != "NOT_FOUND" ] && [ "$OWNER" != "0x0000000000000000000000000000000000000000" ]; then
+        IMPL_INITIALIZED=true
+    fi
+    
+    INITIALIZED=$IMPL_INITIALIZED
+else
+    # For Transparent Proxy, check if admin is set
+    if [ "$ADMIN_ADDRESS" != "0x0000000000000000000000000000000000000000" ] && [ "$ADMIN_ADDRESS" != "NOT_FOUND" ]; then
+        INITIALIZED=true
+    else
+        INITIALIZED=false
+    fi
+fi
+
+# Get balance
+echo -e "${YELLOW}[5/5]${NC} Checking balance..."
+BALANCE=$(cast balance $ADDRESS --rpc-url $RPC_URL 2>/dev/null)
+BALANCE_ETH=$(echo "scale=4; $BALANCE / 1000000000000000000" | bc 2>/dev/null)
+
+if [ -z "$BALANCE_ETH" ]; then
+    BALANCE_ETH="0"
+fi
+
+echo -e "${GREEN}[✓]${NC} Balance: $BALANCE_ETH ETH"
+
+# Final verdict
+echo ""
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"
+echo -e "${BLUE}              FINAL VERDICT                ${NC}"
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"
+
+if [ "$IS_UUPS" = true ]; then
+    echo -e "Proxy Type:      ${GREEN}UUPS${NC}"
+else
+    echo -e "Proxy Type:      ${YELLOW}Transparent Proxy${NC}"
+fi
+
+echo -e "Implementation:  $IMPL_ADDRESS"
+
+if [ "$IS_UUPS" = true ]; then
+    echo -e "Owner:           $OWNER"
+else
+    echo -e "Admin:           $OWNER"
+fi
+
+echo -e "Balance:         $BALANCE_ETH ETH"
+
+if [ "$INITIALIZED" = true ]; then
+    echo -e "Status:          ${GREEN}✓ INITIALIZED${NC}"
+    echo ""
+    echo -e "${GREEN}[SAFE]${NC} Proxy is properly configured"
+else
+    echo -e "Status:          ${RED}✗ UNINITIALIZED${NC}"
+    echo ""
+    if [ "$IS_UUPS" = true ]; then
+        echo -e "${RED}[VULNERABLE]${NC} UUPS implementation is uninitialized!"
+        echo -e "${RED}[EXPLOIT]${NC} Potential takeover vulnerability!"
+        echo ""
+        echo -e "${YELLOW}Next steps:${NC}"
+        echo "1. Try calling initialize() on the implementation"
+        echo "2. Check if you can set yourself as owner"
+        echo "3. Verify with: cast call $IMPL_ADDRESS \"owner()(address)\" --rpc-url $RPC_URL"
+    else
+        echo -e "${RED}[VULNERABLE]${NC} Transparent proxy has no admin!"
+        echo -e "${RED}[EXPLOIT]${NC} Anyone can call admin functions!"
+        echo ""
+        echo -e "${YELLOW}Next steps:${NC}"
+        echo "1. Try calling admin() on the proxy"
+        echo "2. Try calling changeAdmin() to set yourself as admin"
+        echo "3. Verify with: cast call $ADDRESS \"admin()(address)\" --rpc-url $RPC_URL"
+    fi
+fi
+
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"

package/UUPSCHECKER

@@ -0,0 +1,208 @@
+#!/bin/bash
+
+# UUPS Proxy Initialization Checker
+# Usage: ./UUPSCHECKER <contract_address> [chain]
+# Chains: eth (default), bsc, polygon, arbitrum, optimism
+
+# Colors
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+BLUE='\033[0;34m'
+NC='\033[0m' # No Color
+
+# Banner
+echo -e "${BLUE}"
+echo "╔══════════════════════════════════════════╗"
+echo "║       UUPS INITIALIZATION CHECKER        ║"
+echo "║          Whitehat Bounty Tool            ║"
+echo "╚══════════════════════════════════════════╝"
+echo -e "${NC}"
+
+# Check if address provided
+if [ -z "$1" ]; then
+    echo -e "${RED}[ERROR]${NC} No address provided!"
+    echo "Usage: ./UUPSCHECKER <contract_address> [chain]"
+    echo "Chains: eth, bsc, polygon, arbitrum, optimism"
+    exit 1
+fi
+
+ADDRESS=$1
+CHAIN=${2:-eth}
+
+# Set RPC based on chain
+case $CHAIN in
+    eth)
+        RPC_URL="https://mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://etherscan.io/address"
+        ;;
+    bsc)
+        RPC_URL="https://bsc-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://bscscan.com/address"
+        ;;
+    polygon)
+        RPC_URL="https://polygon-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://polygonscan.com/address"
+        ;;
+    arbitrum)
+        RPC_URL="https://arbitrum-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://arbiscan.io/address"
+        ;;
+    optimism)
+        RPC_URL="https://optimism-mainnet.infura.io/v3/db4d2c885bc946b691dbb3d5ef26d9e2"
+        EXPLORER="https://optimistic.etherscan.io/address"
+        ;;
+    *)
+        echo -e "${RED}[ERROR]${NC} Unknown chain: $CHAIN"
+        exit 1
+        ;;
+esac
+
+echo -e "${BLUE}[INFO]${NC} Checking: $ADDRESS"
+echo -e "${BLUE}[INFO]${NC} Chain: $CHAIN"
+echo -e "${BLUE}[INFO]${NC} Explorer: $EXPLORER/$ADDRESS"
+echo ""
+
+# EIP-1967 Implementation Slot
+IMPL_SLOT="0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc"
+
+# Check implementation slot
+echo -e "${YELLOW}[1/5]${NC} Reading EIP-1967 implementation slot..."
+IMPL_ADDRESS=$(cast storage $ADDRESS $IMPL_SLOT --rpc-url $RPC_URL 2>/dev/null)
+
+if [ -z "$IMPL_ADDRESS" ] || [ "$IMPL_ADDRESS" == "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+    echo -e "${RED}[RESULT]${NC} Not a proxy or no implementation set"
+    exit 0
+fi
+
+# Convert to address format
+IMPL_ADDRESS="0x${IMPL_ADDRESS:26:40}"
+echo -e "${GREEN}[✓]${NC} Implementation: $IMPL_ADDRESS"
+
+# Check if it's UUPS by looking for upgradeTo function
+echo -e "${YELLOW}[2/5]${NC} Checking if UUPS proxy..."
+UUPS_CHECK=$(cast call $IMPL_ADDRESS "upgradeTo(address)" --rpc-url $RPC_URL 2>&1)
+
+if [[ $UUPS_CHECK == *"Error"* ]] || [[ $UUPS_CHECK == *"revert"* ]]; then
+    echo -e "${YELLOW}[!]${NC} Not UUPS (Transparent Proxy)"
+    IS_UUPS=false
+    
+    # For Transparent Proxy, check admin slot instead
+    echo -e "${YELLOW}[2b/5]${NC} Checking Transparent Proxy admin..."
+    ADMIN_SLOT="0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103"
+    ADMIN_ADDRESS=$(cast storage $ADDRESS $ADMIN_SLOT --rpc-url $RPC_URL 2>/dev/null)
+    
+    if [ -z "$ADMIN_ADDRESS" ] || [ "$ADMIN_ADDRESS" == "0x0000000000000000000000000000000000000000000000000000000000000000" ]; then
+        echo -e "${RED}[!]${NC} No admin set (VULNERABLE!)"
+        ADMIN_ADDRESS="0x0000000000000000000000000000000000000000"
+    else
+        ADMIN_ADDRESS="0x${ADMIN_ADDRESS:26:40}"
+        echo -e "${GREEN}[✓]${NC} Admin: $ADMIN_ADDRESS"
+    fi
+else
+    echo -e "${GREEN}[✓]${NC} UUPS proxy detected!"
+    IS_UUPS=true
+fi
+
+# Check owner/admin
+echo -e "${YELLOW}[3/5]${NC} Checking owner/admin..."
+
+if [ "$IS_UUPS" = true ]; then
+    # For UUPS, check owner on implementation
+    OWNER=$(cast call $IMPL_ADDRESS "owner()(address)" --rpc-url $RPC_URL 2>/dev/null)
+else
+    # For Transparent, we already have admin from step 2b
+    OWNER=$ADMIN_ADDRESS
+fi
+
+if [ -z "$OWNER" ] || [ "$OWNER" == "0x0000000000000000000000000000000000000000" ]; then
+    echo -e "${RED}[!]${NC} No owner/admin found"
+    OWNER="NOT_FOUND"
+else
+    echo -e "${GREEN}[✓]${NC} Owner/Admin: $OWNER"
+fi
+
+# Check if initialized
+echo -e "${YELLOW}[4/5]${NC} Checking initialization status..."
+
+INITIALIZED=false
+
+if [ "$IS_UUPS" = true ]; then
+    # For UUPS, check implementation initialization
+    INIT_CHECK_1=$(cast call $IMPL_ADDRESS "initialized()(bool)" --rpc-url $RPC_URL 2>/dev/null)
+    
+    if [ "$INIT_CHECK_1" == "true" ]; then
+        INITIALIZED=true
+    elif [ "$OWNER" != "NOT_FOUND" ] && [ "$OWNER" != "0x0000000000000000000000000000000000000000" ]; then
+        INITIALIZED=true
+    fi
+else
+    # For Transparent Proxy, check if admin is set
+    if [ "$ADMIN_ADDRESS" != "0x0000000000000000000000000000000000000000" ] && [ "$ADMIN_ADDRESS" != "NOT_FOUND" ]; then
+        INITIALIZED=true
+        echo -e "${GREEN}[✓]${NC} Transparent proxy has admin set"
+    else
+        echo -e "${RED}[!]${NC} Transparent proxy has no admin!"
+    fi
+fi
+
+# Get balance
+echo -e "${YELLOW}[5/5]${NC} Checking balance..."
+BALANCE=$(cast balance $ADDRESS --rpc-url $RPC_URL 2>/dev/null)
+BALANCE_ETH=$(echo "scale=4; $BALANCE / 1000000000000000000" | bc 2>/dev/null)
+
+if [ -z "$BALANCE_ETH" ]; then
+    BALANCE_ETH="0"
+fi
+
+echo -e "${GREEN}[✓]${NC} Balance: $BALANCE_ETH ETH"
+
+# Final verdict
+echo ""
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"
+echo -e "${BLUE}              FINAL VERDICT                ${NC}"
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"
+
+if [ "$IS_UUPS" = true ]; then
+    echo -e "Proxy Type:      ${GREEN}UUPS${NC}"
+else
+    echo -e "Proxy Type:      ${YELLOW}Transparent Proxy${NC}"
+fi
+
+echo -e "Implementation:  $IMPL_ADDRESS"
+
+if [ "$IS_UUPS" = true ]; then
+    echo -e "Owner:           $OWNER"
+else
+    echo -e "Admin:           $OWNER"
+fi
+
+echo -e "Balance:         $BALANCE_ETH ETH"
+
+if [ "$INITIALIZED" = true ]; then
+    echo -e "Status:          ${GREEN}✓ INITIALIZED${NC}"
+    echo ""
+    echo -e "${GREEN}[SAFE]${NC} Proxy is properly configured"
+else
+    echo -e "Status:          ${RED}✗ UNINITIALIZED${NC}"
+    echo ""
+    if [ "$IS_UUPS" = true ]; then
+        echo -e "${RED}[VULNERABLE]${NC} UUPS implementation is uninitialized!"
+        echo -e "${RED}[EXPLOIT]${NC} Potential takeover vulnerability!"
+        echo ""
+        echo -e "${YELLOW}Next steps:${NC}"
+        echo "1. Try calling initialize() on the implementation"
+        echo "2. Check if you can set yourself as owner"
+        echo "3. Verify with: cast call $IMPL_ADDRESS \"owner()(address)\" --rpc-url $RPC_URL"
+    else
+        echo -e "${RED}[VULNERABLE]${NC} Transparent proxy has no admin!"
+        echo -e "${RED}[EXPLOIT]${NC} Anyone can call admin functions!"
+        echo ""
+        echo -e "${YELLOW}Next steps:${NC}"
+        echo "1. Try calling admin() on the proxy"
+        echo "2. Try calling changeAdmin() to set yourself as admin"
+        echo "3. Verify with: cast call $ADDRESS \"admin()(address)\" --rpc-url $RPC_URL"
+    fi
+fi
+
+echo -e "${BLUE}═══════════════════════════════════════════${NC}"