DeFi Threat Matrix
Last year right after the bZk/fulcrum hack I started working on a MITRE ATT&K Threat Matrix equivalent for DeFi/smart contract protocols/applications..
for a proper release I am hoping to re-categorize these named vectors along with helping eliminate distractions.
You can find the v2 google sheet here
Here is a CSV file of a preliminary re-drafting for v3.
Any contributions are welcomed. I would say that the focus is more on economic / interactions rather than specific vulnerabilities that would be covered ordinarly by a CVE or under the SWC database.
Cheers