How to Audit and Revoke Token Approvals Before the Next DeFi Exploit Drains Your Wallet

The Radiant Capital exploit didn’t just drain $50 million from DeFi liquidity pools — it left a toxic residue that continues to threaten users who never directly interacted with the compromised protocol. Over 5,500 wallets remain exposed to the attack contract because their owners never revoked the token approvals they granted to Radiant’s smart contracts. If you’ve ever used a DeFi protocol, you almost certainly have stale approvals that could be weaponized. Here’s how to find and eliminate them.

The Objective

Token approvals are permissions you grant to smart contracts allowing them to move tokens from your wallet. When you supply liquidity to a lending protocol, swap tokens on a DEX, or stake assets, you’re giving the contract an allowance — often an unlimited one — to transfer your tokens. Most users never revoke these approvals after their transaction is complete, leaving a persistent attack surface that exploits like the Radiant Capital hack can exploit long after the initial breach.

The goal of this guide is straightforward: audit every active token approval across all your wallets, identify which ones are no longer needed, and revoke them. This is the crypto equivalent of changing the locks after you’ve lent your house key to someone — except in DeFi, you’ve likely handed out dozens of keys and forgotten about most of them.

Prerequisites

Before you begin, you’ll need a few things. First, a list of all wallet addresses you use for DeFi interactions, including hardware wallets, MetaMask accounts, and any exchange-connected wallets you’ve used to interact with on-chain protocols. Second, a small amount of native tokens (ETH, BNB, SOL, etc.) in each wallet to pay for the gas fees associated with revoking approvals. Third, about 30 minutes of focused time — this is not something to rush through.

You’ll also want to bookmark the following tools: Revoke.cash (supports EVM chains), Solana-specific tools like Step Finance or Solscan for SPL token approvals, and the official blockchain explorers for any chains you use regularly. For a more technical approach, you can use Etherscan’s token approval checker directly.

Step-by-Step Walkthrough

Start with Revoke.cash, the most user-friendly tool for EVM-based approvals. Connect your wallet through the website — Revoke.cash is a well-established, open-source tool that has been audited and trusted by the Ethereum community. Once connected, the dashboard displays all active token approvals across connected networks, showing the contract address, token type, and approval amount.

For each approval, evaluate whether it’s still necessary. Active positions in lending protocols or liquidity pools obviously need their approvals to remain functional. But completed interactions — a swap you made months ago, a lending protocol you’ve withdrawn from, or especially any interaction with now-compromised contracts — should be revoked immediately. Click the revoke button next to each unnecessary approval and confirm the transaction in your wallet. Gas fees are typically minimal, usually a few cents per revocation.

Pay special attention to unlimited approvals, which show up as extremely large numbers (often represented as the maximum uint256 value). Many DeFi interfaces default to requesting unlimited approvals for convenience, but this means the approved contract can theoretically drain your entire balance of that token at any time. Going forward, manually set approval amounts to exactly what you need for each transaction.

For the Radiant Capital exploit specifically, check for any approvals to the following contract addresses on Arbitrum and BNB Chain: the exploit contract at 0xd50cf00b6e600dd036ba8ef475677d816d6c4281 and any related Radiant Capital contracts. If you find active approvals to these addresses, revoke them immediately — the attack contract remains active and could potentially drain approved tokens from wallets that haven’t revoked.

For Solana wallet users, the process is different. SPL token approvals don’t work the same way as ERC-20 approvals, but you should still review active delegated authorities. Use Solscan to check your wallet’s token accounts and look for any delegated authorities you don’t recognize.

Troubleshooting

If a revocation transaction fails, it’s usually because of insufficient gas or a network congestion issue. Try increasing the gas limit slightly and resubmitting. If you’re using a hardware wallet, make sure the device is connected and unlocked before attempting to sign the revocation transaction.

Sometimes you’ll encounter approvals to contracts that have been deprecated or upgraded. These are safe to revoke — the new contract version will request fresh approvals when needed. If you’re unsure whether revoking an approval will affect an active position, check the protocol’s documentation or ask in their official Discord before proceeding.

For users who interact with many protocols across multiple chains, consider using a bulk revocation tool. Revoke.cash offers a batch revoke feature that can clear multiple approvals in a single transaction, saving significant gas fees and time.

Mastering the Skill

Making approval management a regular habit is what separates cautious DeFi users from future exploit victims. Set a monthly reminder to check your active approvals, or better yet, use a browser extension like WalletGuard that automatically alerts you to risky approvals as you browse. After every DeFi interaction, immediately revoke any approvals that are no longer needed. With Bitcoin at $72,720 and the total DeFi TVL growing, the stakes are too high to leave your wallet’s back door wide open.disclaimer paragraph: This article is for educational purposes only and does not constitute financial or security advice. Always verify contract addresses through official channels and exercise caution when interacting with any blockchain application.