Attack Transaction Analysis

Trust Score 55/100

Audit-grade transaction analysis skill: pull chain-specific artifacts (EVM/Solana), run a 6-phase root-cause forensic workflow, generate PoC/replay harnesses an

triggers:analyze transactionattack analysistx hashforensic analysisreplay harness

GitHub SKILL.md

What it does

This skill automates end-to-end attack transaction analysis for EVM and Solana. It pulls traces and RPC artifacts, fetches contract sources, runs decompilation and fork-replay harnesses (Foundry/anvil), and produces audit-grade reports with root cause, PoC, and risk upper-bound measurements.

When to use it

Use when a user provides a suspicious transaction hash and requests a forensic analysis or proof-of-concept reproduction. Recommended for auditors, incident responders, and researchers needing deterministic replay and evidence-backed conclusions.

What's included

Scripts: artifact pullers, replay harness recipes, fork/replay test instructions (pull_artifacts.py, Foundry test recipes, decompilation helpers).
References: detailed methodology, SPEC, deep-dive guides, and module checklists in docs/ to ensure reproducible, gate-driven analysis.
Instructions: explicit 6-phase workflow, gates, and output templates to produce result.md with required sections.

Compatible agents

Designed for security-focused agent workflows that can orchestrate RPC calls, run Foundry/anvil locally, and manage large artifact sets; pairs well with agents that can run shell commands and interpret forensic outputs.

Audit Summary

Blockchain attack transaction analysis skill for EVM and Solana. SKILL.md is extremely detailed with a rigorous 6-phase forensic methodology. All 5 scripts failed to run: two require CLI arguments (--tx), two crash on missing Python module imports (txanalyzer, pull_solana_artifacts sibling), and one can't find its dependency script. The curl|bash install patterns for Heimdall and Foundry in prerequisites are a security concern.

Watch Out

Two 'curl | bash' install commands in prerequisites (Heimdall, Foundry) — pipe-to-shell security risk
decompile.py sends contract bytecode and decompiled code to OpenAI API — data exfiltration risk
Requires config.json with RPC/API keys to function
All scripts fail without the txanalyzer Python package and proper module paths
Foundry/anvil setup requires BSC_RPC_URL and network-specific env vars

Missing Dependencies

txanalyzer (Python module)pull_solana_artifacts (sibling module)

Notes

The SKILL.md is one of the most thorough skill documents seen — structured forensic methodology with mandatory gates, evidence hierarchy, and stop conditions. However, the scripts cannot run without external dependencies (txanalyzer package) and proper project structure. The curl|bash patterns in install prerequisites and the OpenAI API data transmission in decompile.py are notable security concerns. The skill is niche (blockchain forensics) but well-designed for its domain.

Information

Repository: txanalyzer
Stars: 35
Installs: 0

Trust Score

Overall55

Security50

Code Quality52

Architecture72

Usefulness42

Related Skills

AWP (Agent Work Protocol)

Tooling and scripts for onboarding, staking, allocation, and managing agents on the AWP network (Base/Ethereum/Arbitrum/BSC). Includes safe, opt-in daemon and r

Monad Development

Practical developer skill for deploying and verifying smart contracts, configuring Foundry projects, and integrating frontends (viem/wagmi) on the Monad blockch

Stellar iOS & Mac SDK

Native Swift SDK and guidance for building Stellar blockchain apps on iOS/macOS: transaction building, signing, Horizon queries, Soroban RPC, XDR handling, and

OpenTestAI

Automated, high-confidence AI testing: bug detection, persona feedback, and prioritized test-case generation using many specialized tester profiles.

CTF Write-up Generator

Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.

Minimal Run & Audit (repro reporting)

Execute a README-first smoke test and produce standardized reproducibility outputs (`repro_outputs/`) and PATCHES.md — trusted reporting for repo reproduction r

Skill Issue — Skill Auditor

Scan and audit installed agent skills to produce a health report covering inventory, usage, dependency checks, version status, and actionable recommendations.

GRC & Compliance (ServiceNow)

Guides Governance, Risk & Compliance (GRC) work in ServiceNow: policies, controls, risk records, audits and ES5 script examples for automating GRC workflows.

Back to Skills