Being in security doesn’t always require hacking skills.

Security researchers live in Web3 security firms, audit and research teams, and incident‑response communities.

This job requires making sure others learn from exploits.

Understanding failures is a real security skill.

Dissecting incidents, writing post-mortems, mapping attack vector and researching root causes.

Trust Army trains analysis, structured thinking, argumentation, and reasoning from other POVs.

Security as a collective intelligence.

If you choose to connect the dots instead of chasing charts — it’s your time to shine.

Market intel lives in Web3 companies, research desks, foundations, and analytics platforms like CORE3. You turn markets, protocols, and narratives into a clear vision.

Sense-making at a bigger scale is how you can describe this job.

You track risk signals, trends, and narratives, and take part in controlling risk and strategy. CORE3 turns individual research into collective scoring and transparent DYOR community-driven proof of opinions.

Intelligence beats doomscrolling and fast reaction to buy signals from CT.

While everyone is waiting for Mawari Part I results.

Parts II and III are still open, same Hacken audit, same rules.

Both Flash Pools bring up to 200% APY in 3 days.

Closing in just 45 Hrs, don’t miss out: hackenio.cc/FlashPool

⚠️Flash Pools are high-risk, high-yield instruments in security prediction markets.

DYOR is a core skill for your future Web3 career

We broke down 5 roles where real research pays bills: Research, risk, protocol analyst, security research, and market intel.

Different roles that run around the same core skill. Turning noise into clear, defensible decisions.

Trust Army that flows into DYOR Certification give you the taste of the real deal.

CORE3 allows you to share your view on projects. Missions train how to think and research.

CORE3 turns that into proof of opinion and probability of loss—the way professional teams reason about risk.

If you already know how to read docs, question narratives, compare, and write structured DYOR.
You are closer than you can imagine.

The next step is to treat DYOR like it’s your job.

Time to pick your lane. Finish Trust Army missions with purpose.

Get DYOR certified and build a visible track record by participating on CORE3.

Hacken Alpha Intelligence Weekly Digest #49
4 Projects, 4 Different Stories: Legacy vs Launch

One pattern: old infrastructure starves, new consumer brands pump.

Four projects the community dug into: TOP AI Network, KIRA, Rujira, Moonbirds

Here's what's worth watching 👇
https://x.com/hackenai/status/2017252292689297484?s=20

Trust Army Tips Series starts NOW.

Most people forget about the first step, and later this issue shows up.

Task 1 is focused on finding Token Addresses. One address per chain. Pull them all and match the networks.

Your first mission: collect all token addresses of a project and match them to blockchains.

To make your journey easier, here are the services to use for Task 1.

To find everything you need, you can use CoinMarketCap, CoinGecko, and Dexscreener

Master Task 1 here: hackenio.cc/WebTrustArmy

Mawari Part I - Stakers won!

Congrats to everyone who joined Part I and secured their real $USDC yield up to 200% APY.

Results for Parts II and III are coming soon. Let's wait for the results and see if stakers win them too.

Don’t forget to withdraw your rewards 👉 hackenio.cc/FlashPool

Trust Army Tips Series Part II

Task 2 is where you learn how to find Top Holders of any Token.

Who holds what percentage? Understanding how many tokens live on CEX or DEX.

Maybe most of the tokens live in the 0x00…dead address.

Your job is to find holders across every chain👇

What's the idea behind this task?

You definitely bought a token where you were the exit liquidity for the whale holding 99%.

Next time you see a tweet with CA and #DYOR, you will be more cautious and double-check on the chain scanner how many holders are there and how much of the supply they hold.

Your toolkit for Task 2:
Ethereum – https://etherscan.io/
BNB Smart Chain – https://bscscan.com/
Base – https://basescan.org/
Polygon – https://polygonscan.com/
Arbitrum – https://arbiscan.io/
Optimism – https://optimistic.etherscan.io/
Avalanche C‑Chain – https://snowtrace.io/
Fantom – https://ftmscan.com/
VeChain – https://explore.vechain.org/

Complete Task 2 here: hackenio.cc/WebTrustArmy

Trust Army Tips Series continues.
Task 3: Token distribution tells the real story.

How much allo does the team receive on TGE? Are there any vestings? This reveals if the project is fairly launching or retail is going to suffer an institutional dump in 3 months.

Tokenomics is the crucial part that everyone forgets👇

Your mission is to find the official initial token distribution document.

In the tokenomics, every % counts. Team, investors, community, treasury.

This is how you spot a red flag before you become exit liquidity👇

Task 3 Toolkit:
CoinGecko — https://www.coingecko.com/
CoinMarketCap — https://coinmarketcap.com/
Project Website / Docs
Messari — https://messari.io/
GitBook / Notion Docs
Medium / Blog Announcements
TokenUnlocks — https://tokenomist.ai/
CoinCarp — https://www.coincarp.com/
ChainBroker — https://chainbroker.io/

Finish Task 3 here: hackenio.cc/WebTrustArmy

TrustArmy Tips Part V
Task 5 - Socials

100K followers means nothing if only 100 people see the post.

DYOR researchers measure how active the socials of the project are, instead of just looking at follower count.

Active audience % is the project’s reality check before trusting a “strong community” claim.

Your mission for Task 5:
- Take the last 10 Twitter posts and calculate the average views
- Divide by total followers × 100, you get Twitter active audience %
- Do the same for Discord: average reactions on 10 posts / total members × 100

And don’t forget to look up their Twitter Score, that’s a crucial metric.


Toolkit for Task 5:
Twitter Score – best way to get a clean X score for Web3 accounts
​
SorsaApp – social graph + follower quality, who actually follows a project

Use them together, then run the formulas.

Start Task 5 👉https://hackenio.cc/WebTrustArmy

Hacken Alpha Intelligence Weekly Digest #50
As always on Fridays, we disassembled 4 projects in our DYOR Digest 50th time.

DePIN positioning, old‑school blockchain‑as‑a‑service, privacy storage, and high‑risk payments.

Four projects on our researchers spotlight: GEODNET, Ardor, Autonomi, Ultima.

Take a look at what our researchers found out about them 👇
https://x.com/hackenai/status/2019793615417999428?s=20

For most, “ ✅ Audited” ticks all the boxes, but not for a true DYOR Researcher.

Serious analysts want to know and see all the proof:
- Who did the audit, and how recent is it?
- What's the scope of it?
- Were the findings fixed, if any?
- Is there an active bug bounty?

Turn vague “we’re secure” claims into verifiable links. 👇

For the chosen project, you need:
- Find official docs/security page
- Log documentation link
- Collect every audit report + auditor + audit date
- Check for bug bounty page
Take your time, this task is about extra caution.

Where to hunt for audits & bounties:
• Hacken Audits
• HackenProof
• Immunefi
• Sherlock
• CertiK
• DeFiLlama
• GitBook docs

Master Task 6 here: hackenio.cc/WebTrustArmy

Even if you're not a developer, GitHub has a lot to tell about crypto projects.

Take a look at your favorite project; there could be an abandoned repo with no commits in a year.

Task 7 is about checking who’s actually constantly shipping and who is just contributing to CT.

For Task 7:
- Find the official GitHub from the site/docs
- Open the main repo
- Filter by last month (or any active month in the last 6)
- Count contributors
- Count commits

You only need one tool for Task 7:
• GitHub

Tips:
– Always use the official GitHub link from the project site/docs
– Check “Insights → Contributors” and commit history

Time to crush Task 7 – hackenio.cc/WebTrustArmy

Disclaimer: Projects can have private repositories, DYOR.

The project you see has a DAO that works; it won't hurt to check its health for potential manipulation

DAO makes sense when the actual community shapes the project's future.

In task 8, you have to determine whether governance is alive or just a slide on a pitch deck👇

For Task 8:
- Find if the project has a DAO (yes/no)
- Save links to: main DAO page + governance forum
- Check where voting happens: on‑chain or off‑chain
- Pull the number of proposals

Calculate active voters % = (avg votes per proposal / total lifetime participants) * 100

Where do you dig for DAO data:
Snapshot – off‑chain voting, proposal history
Tally – on‑chain governance dashboards
DeepDAO – DAO stats, participants, proposals
Aragon – DAOs built on the Aragon framework

Dig into DAO’s 👉 hackenio.cc/WebTrustArmy

In 2022-2023, there were founders with a proven track record of cashing out investors' funding.

Since those times, the market has started to actually check founders' backgrounds before aping in.

Your goal in Task 9 is to turn “anon devs” into a clear vision of who’s actually in charge 👇

For Task 9 (Team):
– Identify CEO, CTO, CMO, and founders from site/docs
– Find their LinkedIn profiles and log each link
– For every key person, note: education, business experience, and working history
– Search for “reputation incidents” (scams, lawsuits, failed projects) and save links

Where you investigate people, not just tokens:
• LinkedIn – primary source for roles, history
• Crunchbase / Wellfound – startup & founder records
• X (Twitter) – what they say, how they act
• CoinTelegraph, CryptoNews, Decrypt – news + controversies

Take on Task 9 👉 hackenio.cc/WebTrustArmy

Everyone has heard about Seed, Series A/B/C, or Private rounds.

The success of a project is usually measured by the X’s they print. Dig deeper and find out who backed the project and at what cost.

Task 10 is about seeing every funding round and understanding where smart money sits👇

For Funding Rounds:
– Google + docs: find all public raises (seed, private, Series, etc.)
– For each round, log: investors, date, amount, price per token (if available)
– Cross‑check with official reps in Telegram/Discord to confirm or correct numbers
– Add website links for each investor (VC pages, fund announcements)

Where you should look for fundraising info:
• ChainBroker
• Crunchbase
• CryptoRank
• ICODrops
• Messari – (profiles, funding tabs)
• Crypto Fundraising – deal lists & rounds

Discover funding rounds in Task 10 👇hackenio.cc/WebTrustArmy

Hacken Alpha Intelligence Weekly Digest #51

4 moves our DYOR Alpha community discovered this week: MEV‑protected swaps, invisible DEX rails, CEX → L2 capital bridge, and a small L1 chasing real‑time payments.

$COW, $ZRX, $INK, $KONET — same “infra” label, very different realities.

Here’s the report 👇 https://x.com/hackenai/status/2022325967973187728?s=20

Legal registration claims on the website never mean the same thing.

British Virgin Islands offshore company or Switzerland, with all compliance checks intact.

Task 11 – Find the jurisdiction tier and know what liability project has 👇

For Legal Risks:
– Find company registration + link (site, docs, OpenCorporates)
– Check how the token was distributed (ICO, airdrop, SAFT, mining, etc.)
– Look for US restrictions (“not available to US residents”) and save the source

If unclear, ask in the official Telegram/Discord and note the response (or lack thereof).

Where to discover legal risks:
• Messari – project profiles, compliance notes
• ICODrops – historical token sales
• WorldCoinIndex – extra links & basic data
• OpenCorporates – company registration records

Take on the Task 11 👉 hackenio.cc/WebTrustArmy