Avg attacker reconnaissance time for peer-class protocols

Convex Finance's assessment for RD-F-163 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

The USPD 78-day reconnaissance pattern applies to complex DeFi protocols with extended pre-strike preparation. Convex's 2021 OZ disclosure was discovered via white-hat audit, not attacker reconnaissance. The Resupply June 2025 exploit occurred 1.5 hours after new market deployment — extremely short lead time (opportunistic, not extended reconnaissance). No reconnaissance clock currently running against core Convex contracts per public OSINT. Signal requires hack DB + curator analysis for peer-class baseline. Gray — static posture metric, not assessable without peer-class DB baseline.

Sources #

URL
15 Billion Rugpull Vulnerability Uncovered and Resolved — OpenZeppelinOpenZeppelin 2021 Convex vulnerability disclosure — discovered via white-hat audit, not attacker reconnaissanceretrieved 2026-05-16
URL
Lessons from the Resupply Exploit — GuardrailGuardrail blog — Resupply exploit occurred 1.5 hours after new market deployment, demonstrating opportunistic not extended-reconnaissance attackretrieved 2026-05-16

Methodology #

Report the average number of days of attacker reconnaissance activity before a strike on peer-class protocols (lending/DEX/bridge/perps), sourced from the hack database.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol convex-finance factor RD-F-163 score gray collected_at 2026-05-16 02:41:28