Today we're realeasing the Phishing Dojo. The first version of The Red Guild's interactive challenges to learn how to outsmart anyone trying to phish and scam you.

Phishing and scams are likely the riskiest threats affecting anyone navigating the crypto world today.

While we were all too focused specializing on protecting smart contracts, attackers have doubled-down on more traditional forms of tactics and techniques to target web3 infra and apps. Why bother finding and exploiting a rare math issue in your DeFi protocol, when they could simply steal the admin's private keys with malware?

In 2024 the crypto ecosystem is coming to realize that the dark forest exists off-chain too.

Although we won't stop them, we can all be more prepared against phishing and scams.

That's why today, from The Red Guild, we're announcing our latest public good for benefit of the whole crypto community.

The Phishing Dojo

Learning to spot phishing attempts and scams has never been more pressing. Hacks are getting more and more sophisticated, and you really don't want to get rekt this way.

You need a training ground to improve your phishing detection skills 🧐

Phishing Dojo by The Red Guild
Interactive challenges to learn how to detect phishing and scams in the crypto space, by The Red Guild.
Phishing DojoThe Red Guild

The first version of the Phishing Dojo is essentially an interactive trivia. You'll have to explore various scenarios and have to outsmart attackers that are trying to rekt you. The first released scenarios include:

  • Email clients with scammy messages
  • Airdrop and scam sites
  • Malicious approval transactions
  • Off-chain token approvals (a.k.a. permits)
  • Address spoofing in block explorers
Learning to spot phishing emails in the Phishing Dojo
Have you ever heard about transaction spoofing?

We've been secretly working on this project for the past months, and we're glad to release its first version. It's been inspired by this trivia developed by Jigsaw and Google. Ours is tailored to the most notorious crypto threats.

At Devcon SEA 2024

We are presenting the Phishing Dojo at Devcon 🦄. Come talk about it in our impact booth, where we can also show you more public good initiatives we've got!

You can also find us in our 2-hour workshop "Don’t get rekt: practical threat detection for users and devs" on Nov 13th at 4 PM.

Don’t get rekt: practical threat detection for users and devs @ Devcon SEA
Learn to uncover, and protect against, weaponized repositories, sites and tools targeting web3 users, devs & researchers. With examples and hands-on exercises, the session begins with topics like detecting suspicious activity in sites, handling wallet secrets & signatures, decoding calldata of malicious txs, and simulating them to avoid attacks. To then cover more advanced techniques to spot harmful backdoors in code repositories and services that can impact on devs & users’ safety.
Devcon SEA

Meanwhile, give the dojo a try, and let us know what you think! 🚀

Phishing Dojo by The Red Guild
Interactive challenges to learn how to detect phishing and scams in the crypto space, by The Red Guild.
Phishing DojoThe Red Guild