← Back to Research
Research · July 9, 2026

NRDAX: the canonical technique registry for decentralized infrastructure attacks

Simon Morley·1 min read

We have published NRDAX (NullRabbit Decentralised Attack indeX) at nrdax.com.

NRDAX is the reference registry for attack techniques against decentralized infrastructure. Each entry is a chain-agnostic technique: an equivalence class of real primitives observed across node implementations, spanning consensus, P2P, RPC, mempool, and related surfaces. Every technique carries a permanent ID, a mechanism description, instances across chains, and reproducers.

Current state (v0.1-import)

  • 135 techniques
  • Grouped into mechanism families: compute_amp, connection_exhaustion, gossip_abuse, memory_amp, response_amp, and others
  • Coverage matrix across 21 chains, with lab and production evidence

Built from the corpus

The registry is built from the same ground-truth corpus and taxonomy used in our advisories and detectors. It exists so the community has one citable, machine-readable place to reference how these systems are actually attacked at the infrastructure layer.

Link: nrdax.com

The corpus, taxonomy spec, and advisories remain the primary artifacts. NRDAX is the surfaced index over them.

This is the substrate.

nrdaxsecurity-researchtaxonomyregistryvalidator-securitycorpus
Publication policy:Why we publish these findings →

Related Posts