NRDAX: browsable by chain and family, readable by machines
NRDAX now contains 623 techniques across 64 chains. 162 are reproduced with bundles.
Discovery and navigation
- Per-chain landing pages at
/chains/<chain>: one per chain with a reproduced technique (24), listing its techniques by human name, under a/chainshub index. - Per-family landing pages at
/families/<family>: one per populated family (20), with readable labels and an axis blurb. - A three-column footer (Registry, Chains, Project) with per-chain nav on every page.
- Browse by chain or by family from the homepage. Matrix chain headers and technique-page chains now link through to their own pages.
Machine-readability
- Pretty Atom feed:
/feed.xmlrenders as a readable page in the browser (XSL stylesheet) instead of downloading. - A machines strip up top: JSON API, STIX 2.1, knowledge pack, Atom feed. For machines, surfaced first.
- Dataset distribution links in the homepage JSON-LD (DataDownload for JSON, STIX, knowledge pack, and feed) so crawlers and answer engines know where to fetch the data.
Crawlability and data quality
- The sitemap now lists every new chain and family landing page.
- Fixed the first_seen date bug: CVE-only year parsing, so version and PR numbers are no longer read as years, plus a one-time migration that scrubbed the 2030 and 1972 garbage dates from the feed and sitemap.
Explore at nrdax.com. Browse by chain, by family, or pull the data by machine. The gaps are visible in the coverage matrix.
Related Posts
NRDAX now includes known-but-not-reproduced techniques
NRDAX v0.1-import now contains 368 techniques across 21 chains: 140 with reproduced instances and bundles, and 228 known from public disclosures (CVEs, GHSAs, vendor advisories) but not yet reproduced in the lab. A CVE maps to its technique even when no bundle exists yet.
NRDAX: the canonical technique registry for decentralized infrastructure attacks
We have published NRDAX, the NullRabbit Decentralised Attack indeX, at nrdax.com. It is the reference registry for attack techniques against decentralized infrastructure: 135 chain-agnostic techniques, grouped into mechanism families, with a coverage matrix across 21 chains.
Eighteen advisories, ten node implementations, one attack class
Since NR-2026-001, eighteen advisories across ten independent node implementations. Not unrelated bugs: one recurring attack class, unauthenticated ingress surfaces where a cheap request forces disproportionate cost. Egress and memory amplification, pre-auth CPU exhaustion, connection exhaustion, and crashes.
