Web3 auditing & smart-contract security

Hi, I’m Mariano Salazar

Smart Contract Security Engineer & Solidity Lead

I design, audit, and harden DeFi, NFT, and RWA protocols. My workflow mixes manual reviews, invariant tests, and on-chain experience to ship resilient products with teams across LATAM and Europe.

Book a review See deployments

Remote (Queretaro, Mexico)

About me

I’m a blockchain engineer with dual citizenship (Costa Rica / Mexico) and 5+ years building and auditing smart contracts. I have led development for Disruptive Studio, Ignichat, and open communities, while participating in reviews for Cantina, Code4rena, and Cyfrin Codehawks.

Technical auditing

Manual reviews plus Foundry, Echidna, and Slither fuzzing to uncover overflows, privilege abuse, and MEV vectors.

DeFi / RWA architecture

I design stablecoin controllers, NFT markets, and multi-chain vaults with separated governance and on-chain guardians.

Continuous learning

Ethereum bootcamp, Cyfrin Updraft, Blockchain Sec Academy, and a Master’s in Blockchain keep my practice sharp.

Community

Spanish-speaking mentor via ThaddeusCrypto and workshops that help teams mature their security posture.

Skills

Tools and practices I rely on to ship secure, production-grade Web3 products.

Audits & testing

Manual code reviewInvariant testing (Foundry/Echidna)Property-based fuzzingStatic analysis (Slither, MythX)Threat modeling

Contract stacks

Solidity & YulERC-20/721/1155Chainlink / AaveHardhat & FoundryTenderly / Viem

Infrastructure

PolygonEthereumLayer 2sIPFS/NFT.StorageBitcoin Taproot

Human skills

Technical writingThaddeusCrypto workshopsWeb3 mentorshipIntermediate EnglishNative Spanish

Deploys & Audits

A curated list of public repos and deployed contracts that showcase my focus on security, governance, and real Web3 products.

Open-source references

Public PoCs, audits, and tooling I maintain for the community.

My StableCoin Project

Over-collateralized stablecoin using Chainlink oracles and panic-liquidation protections.

SolidityChainlinkFoundry

My Blockchain Project

Blockchain developed in Go.

Go LangJavascriptHTML

NFTContracts with Foundry

Optimized ERC-721 contracts with roles, reveal flows, and reusable launch tooling.

NFTERC-721Foundry

Updraft Security Reports

Curated public findings, methodologies, and checklists for Web3 teams.

AuditDocs

Arbitrage with AAVE Flashloan

Atomic arbitrage strategy on Aave v3 with slippage guards and tenderly-backed simulations.

AaveMEVPolygon

RWA custody

Contracts that tokenize invoices and safeguard real-world assets on Polygon.

RWA Custody Vault

On-chain registry with multi-sig guardians and automated asset freezes.

PolygonRWA

Marketplace suite (Polygon)

Managed NFT launch infrastructure running fully on Polygon.

WhiteListToken

Allowlist management for pre-sale phases.

PolygonAccess control

MarketControl

Orchestrates roles and global marketplace parameters.

GovernancePolygon

VaultNFT

Custodies NFTs and collection-based rewards.

PolygonVault

NFTMarket

Buy/sell engine with batch listing.

MarketplacePolygon

batchmarket

Bulk execution of creator orders.

Batch opsPolygon

ManageTransferToken

Controls limits and transfers for utility tokens.

CompliancePolygon

Collection

Main ERC-721 contract powering the marketplace.

ERC-721Polygon

Bets Game protocol

Gaming suite with segregated vaults and dynamic room creation.

Whitelist

Access control for verified players.

PolygonWhitelist

Vault

Safekeeps player funds with multisig controls.

VaultPolygon

Pay Vault

Handles payments and withdrawals through segmented flows.

PaymentsPolygon

reloadFactory

Factory to spin up new, audited matches.

FactoryPolygon

Game core

Scalable PvP / PvE core logic.

GameplayPolygon

Staking program (BSC)

Staking architecture with split rewards for validators and holders.

vaultRewardsStaking

Distributes incentives to active stakers.

BSCRewards

vaultRewardsHolders

Routes rewards to long-term holders.

BSCRewards

VaultStaking

Manages deposits and withdrawals with dynamic limits.

BSCVault

StakingControl

Coordinates governance and global risk settings.

GovernanceBSC

Staking

Primary contract where users interact with the staking flow.

BSCCore

RewardsContract

Schedules emissions and unlock curves.

BSCTokenomics

Token sale with KYC (Ethereum)

Full token sale stack with KYC lists and programmable vaults.

Whitelist

KYC registry plus phase-based quotas.

EthereumKYC

Rechain Token

ERC-20 token powering the program.

ERC-20Ethereum

supplyVault

Safekeeps raised funds and releases per milestone.

VaultEthereum

p2pVault

Channels P2P / OTC agreements.

OTCEthereum

sellTokenControl

Applies global sell limits.

ComplianceEthereum

manageToken

Handles administrative and emergency operations.

AdminEthereum

Let’s talk

Need to reinforce your protocol’s security or want me embedded through launch? Book a review and we’ll plan the path to mainnet together.

Email

mtsa95@gmail.com

Location

Remote (Queretaro, Mexico)

GitHub

github.com/Thaddeus19

linkedin.com/in/mariano-salazar-alvarez

YouTube

@thaddeuscrypto

Ready to get started?

Let’s review your contracts, deployment processes, and monitoring needs so you can ship with confidence.

Email me now