We’ve joined forces with Euler to launch a public security challenge in stablecoin liquidity on Ethereum mainnet. This groundbreaking event reimagines smart contract validation through open access, real funds, and production code - all tested transparently before the research community. It all begins June 3 at 10:00 AM ET.
Are you up for the challenge? Security researchers who complete our onboarding can test their skills against production contracts, keeping any funds they legitimately exploit.
Welcome to the next generation of protocol security validation. With live testing on mainnet, we're creating an arena where theory transforms into practice and elite researchers demonstrate their expertise.
Participation Requirements & Process
Euler has deployed a new USDC and USDT swap contract containing $500,000 in live liquidity. The objective is straightforward: assess whether the protocol holds under active scrutiny from qualified researchers.
To participate, researchers must register at cantina.xyz, complete KYC verification, agree to legal terms, and then access the codebase through Cantina's secure infrastructure. Participants who follow this process and operate within scope are eligible to retain funds obtained through valid exploits. All activity must be conducted through the Cantina environment.
This structured approach creates an open, collaborative environment while maintaining professional security testing standards.
Private Bug Bounty Phase to Follow
Following the live CTF, Euler and Cantina will introduce a private bug bounty phase. Researchers who identified vulnerabilities during the challenge but did not find an exploit will have the opportunity to submit their findings through a structured disclosure process.
This secondary phase ensures that responsible research beyond the exploit window is still recognized and rewarded appropriately.
Why Euler Opted for a Live CTF
Euler selected a live mainnet format in place of traditional audit methods. Why? They want to test a different style of validating contract resilience, in its actual deployment environment, without abstraction or simulation.
The challenge offers clear outcomes. An exploit either succeeds, or the system holds. This format enables precise, unambiguous results that reflect real-world conditions.
Our Journey together
Our security journey with Euler has reached several significant milestones:
- May 2024: Landmark $1.25M security competition for Euler v2, the largest competition of its kind at that time
- August 2024: Launched a $7.5M bug bounty program, Cantina's second-largest competitive program to date.
- April 2025: Completed a high-signal review of EulerSwap
Throughout these engagements, Euler has shown unwavering commitment to security excellence through precise engineering, clear communication, and intense focus on system resilience.
This CTF marks the next milestone in our shared mission of transparent, disciplined, and community-driven protocol validation.
How Cantina Ensures Security and Trust in Web3 Protocol Testing
Cantina enables security challenges through a robust infrastructure that emphasizes accountability and control. Our platform includes secure KYC onboarding, gated access to CTF materials, and tailored workflows. We provide tools for researcher management, activity tracking, and coordinated disclosures.
These systems support transparent testing without compromising operational integrity. The result is a trusted environment for high-stakes protocol validation.
If you’re building production-grade protocols and looking to validate your system under real-world conditions, we’re ready to help. Contact our team today.