explaingit

0xluk3/zk-resources

Analysis updated 2026-06-24

21Audience · researcherComplexity · 1/5Setup · easy

TLDR

Hand picked reading list for zero knowledge proof security, grouped into tutorials, bug trackers, RISC Zero and SP1 zkVM audits, and broader aggregated awesome lists.

Mindmap

mindmap
  root((ZK-resources))
    Inputs
      Curated links
    Outputs
      Reading list
    Sections
      Tutorials
      Bugs and Reports
      zkVMs
      Aggregated
    Use Cases
      Onboard ZK auditors
      Learn zk security
      Find audit reports
    Topics
      RISC Zero
      SP1
      Sumcheck
      Spartan ECDSA
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Onboard a new auditor to zero knowledge proof security with a vetted reading order

USE CASE 2

Find existing audit reports for RISC Zero and SP1 zkVMs before starting a new review

USE CASE 3

Pull bug tracker links into a personal CTF or research notebook

USE CASE 4

Branch out to broader awesome lists once the curated set has been read

What is it built with?

Markdown

How does it compare?

0xluk3/zk-resources0whitedev/detranspileramazingsyp/pokemon-ontology
Stars212121
LanguagePythonJavaScript
Setup difficultyeasyhardeasy
Complexity1/54/53/5
Audienceresearcherdeveloperresearcher

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · easy Time to first run · 5min

In plain English

ZK-resources is a short reading list for people interested in the security side of zero knowledge proofs. The author, 0xluk3, frames it as quality over quantity, so it is a small set of hand picked links rather than an exhaustive directory. The repository contains nothing but the README itself. The Tutorials section has five entries that walk from theory to practice. There is an interactive Sumcheck tutorial from zkSecurity that uses SageMath, the ZK Whiteboard Sessions video series from ZK Hack, a math fundamentals collection at floatingpragma's awesome ZK proofs site, the author's own blog at luk3.tech with math explained in plain terms, and the RareSkills ZK Book. The largest section is Bugs and Reports. It starts with three bug trackers: 0xPARC's zk-bug-tracker, zksecurity's zkbugs, and a Spartan-ECDSA audit under thogiti's ZK-Audits repository. Two zkVM projects then get their own subsections. The RISC Zero block links to that project's official audits folder, a Veridise audit report, a RISC Zero blog post about reaching a formally verified zkVM, a HackenProof bug bounty report, and a Hexens audit. The SP1 block links to Succinct Labs' audits folder, a responsible disclosure write up from LambdaClass about an SP1 exploit found with 3MI Labs and Aligned, Succinct's own January 2025 security update, and a June 2025 Veridise audit of SP1. A further zkVMs subsection groups general teaching material rather than project specific reports. It points to Veridise blog posts that introduce zkVMs and list common vulnerabilities, a Sigma Prime auditor's guide focused on SP1, a 7BlockLabs checklist for auditing zkVM guest programs after the 2025 SP1 incidents, and a separate ZippelLabs report archive. The final section is Aggregated, with three broader awesome lists for readers who want more material: timimm's awesome-zero-knowledge-proofs-security, StefanosChaliasos's Awesome-ZKP-Security, and sCrypt-Inc's awesome-zero-knowledge-proofs. There is no contribution guide, no license, and no commentary on individual links, so the repo is best treated as a starting bibliography put together by one practitioner.

Copy-paste prompts

Prompt 1
Build a one week study plan from ZK-resources tutorials that ends with reading a real audit
Prompt 2
Compare the RISC Zero and SP1 audit findings linked in ZK-resources and summarize common bug patterns
Prompt 3
Suggest five new links that would fit the Tutorials section of ZK-resources without diluting quality
Prompt 4
Turn the Bugs and Reports section of ZK-resources into a checklist for auditing a new zkVM
Prompt 5
Cross reference the awesome lists linked in ZK-resources and list unique entries each one adds

Frequently asked questions

What is zk-resources?

Hand picked reading list for zero knowledge proof security, grouped into tutorials, bug trackers, RISC Zero and SP1 zkVM audits, and broader aggregated awesome lists.

How hard is zk-resources to set up?

Setup difficulty is rated easy, with roughly 5min to a first successful run.

Who is zk-resources for?

Mainly researcher.

Open on GitHub → Explain another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.