ReX Framework Uses LLMs for Smart Contract Exploit Generation
A recent research article on arXiv introduces a novel framework known as ReX, designed to harness large language models for automatically crafting exploits aimed at smart contracts. ReX not only generates these exploits but also compiles and executes them using the Foundry development framework, validating their effectiveness. The study analyzed five contemporary LLMs against eight prevalent vulnerability types, utilizing a dataset of over 38 actual proof-of-concept exploits. Findings indicate that while premier LLMs perform well with individual contract vulnerabilities, they face challenges with cross-contract issues, underscoring limitations in automating exploit generation in this context.
Key facts
- ReX is an execution-grounded framework for automated exploit generation.
- It links LLM-based exploit synthesis to the Foundry stack.
- Five recent LLMs were evaluated across eight vulnerability classes.
- A curated dataset of 38+ real incident PoCs was used.
- Three automation aids: prompt refactoring, compiler feedback loop, templated test harnesses.
- Frontier LLMs can produce deterministic PoCs for single-contract vulnerabilities.
- LLMs remain weak on cross-contract attacks.
- Outcomes depend mainly on model and bug type.
Entities
Institutions
- arXiv