# [Exp] Hacking AES

AES on Binance Smart Chain has experienced a price manipulation attack requiring flashloan. It is one of the most complex attacks we have seen so far.

Full exploit: https://github.com/SunWeb3Sec/DeFiHackLabs/blob/main/src/test/AES_exp.sol

# Using Blaz to Solve

AES LP contract that is vulnerable:

• 0x40eD17221b3B2D8455F4F1a05CAc6b77c5f707e3
• https://bscscan.com/address/0x40eD17221b3B2D8455F4F1a05CAc6b77c5f707e3

The contracts are exploitable before block number 23695904. We'll fork the chain at block number 23695904 and let Blaz find the exploit for us.

# Step 1

Select BSC and click Next. Then, put the contract address and block number as follows:

# Step 2

Select all Common Vulnerabilities and submit the job. You'll find results in a few minutes.