How do I decode a smart contract transaction?

Three steps. **(1)** Copy the *"Input Data"* from Etherscan or from your wallet (the long hex blob). **(2)** Paste it here in **Decode calldata** mode. **(3)** If the selector is in the registry of common functions (ERC-20, NFTs, Uniswap), you see the function name and arguments right away. If not, type the signature manually (you will find it in the ABI on Etherscan under *"Contract → Read/Write"*). Arrays and strings are skipped, but numbers and addresses are decoded.

Why do the first 4 bytes of calldata describe what a transaction does?

Because that is how the **Application Binary Interface (ABI)** for Solidity is designed. The compiler takes your function signature (e.g. **transfer(address,uint256)**), runs **keccak256** (a hash) over it, takes the first 4 bytes and remembers: *"this is the selector for transfer"*. When someone sends a transaction starting with those 4 bytes, the contract knows which function to run. **4 bytes** = roughly **4 billion possible functions**, in practice, enough.

What does 0xa9059cbb at the start of a transaction mean?

It is the selector for **transfer(address,uint256)**, i.e. an **ERC-20 token transfer**. Every transaction that **sends USDT, USDC, SHIB, LINK** or any other Ethereum token starts with **0xa9059cbb**. The next 32 bytes (64 hex chars) are the recipient address, and the final 32 bytes are the token amount (in the smallest unit). The most common selector on Ethereum, you will see it in 80% of DeFi traffic.

How do I know what function my transaction is calling?

Three ways: - **Paste the calldata into our decoder**: we check the built-in registry of ~30 common ones. - **Open Etherscan**, go to the transaction, click *"Decode Input Data"*: if the contract is **verified** (green tick), Etherscan knows its ABI and decodes for you. - **Copy the selector** (first 10 chars after 0x) and search **4byte.directory**: an external database with millions of function signatures.

**A function that turns any text into a unique 32-byte fingerprint.** Feed it *"transfer(address,uint256)"*, out comes a number like **a9059cbb2ab09eb219583f4a59a5d0623ade346d962bcd4e46b11da047c9049b**. The same input always gives the same fingerprint; change a single letter and the fingerprint is totally different. Ethereum uses the first 4 bytes of this fingerprint as the function selector. Keccak256 is a cousin of **SHA-3**, but not identical (the padding differs, details in the next question).

Why does Ethereum use keccak instead of SHA-3?

**Historical bad luck.** Ethereum was designed in 2014, before **SHA-3** had been finalised by NIST. Vitalik and the team picked the **draft version** of the Keccak algorithm, which became the standard **before** NIST added the final padding tweak. NIST changed the padding later, but Ethereum already had a live mainnet and could not change it without breaking every existing contract. The result: Ethereum **keccak256** ≠ official **SHA3-256**, even though they are practically identical otherwise.

Why do you not write argument names in the function signature?

Because the selector calculation **only cares about types**. **transfer(address,uint256)** and **transfer(address to,uint256 amount)** produce **the same selector**. The convention: write types only, comma-separated, no spaces, no keywords like **memory** or **calldata**. **uint** is a shortcut for **uint256**, but careful, in the selector signature you **must** write **uint256** (the full name), not **uint**, otherwise you get a different hash.

Why are arrays (address[]) and strings not decoded?

Because **dynamic types** (string, bytes, T[]) are encoded specially: their slot in the calldata holds an **offset** (pointer to where the real data lives), and the actual data is appended at the end of the calldata. Full decoding requires following the offset, reading the length, then reading the bytes. Doing it properly is a lot of code (essentially what **ethers.js** does internally). For a first look at a transaction, seeing addresses and numbers is usually enough, and those we do decode. For full decoding use Etherscan or a library like **viem** or **ethers**.

Can two different functions share the same selector (collision)?

**Yes, but rarely.** 4 bytes = ~4 billion possibilities, within a single contract the collision risk is microscopic. But **across the whole of Ethereum** (millions of contracts) real collisions have happened. The famous one: a malicious function called **gasprice_bit_ether(int128)** has the same selector as **transfer(address,uint256)** (both hash to **0xa9059cbb**). Attackers tried to exploit this for social engineering. **Lesson**: do not trust the selector alone, always check the full function signature.

Ethereum function selector - free

What does this Ethereum transaction actually do?

You are looking at a smart contract transaction (a program running on the Ethereum blockchain) and you see something like 0xa9059cbb000000...0de0b6b3a7640000. The first ten characters are not random. That is the function selector, a short identifier telling the contract: *"call the transfer function"*.

This tool does two things. First: type a function signature like transfer(address,uint256) and get its 4-byte identifier (0xa9059cbb). Those are the 4 bytes that appear at the start of every transaction calling that function.

Second: paste a raw calldata blob (the hex from a transaction), the tool extracts the selector, looks it up in a built-in registry of ~30 common functions (ERC-20, NFTs, Uniswap, WETH, proxies, ENS), and shows you what arguments were passed.

Everything runs locally in your browser, no API calls, no data leaving your device. Perfect for debugging wallet transactions, reading pending transactions on Etherscan, or just learning how the EVM ABI works.

How to use it

Pick a mode at the top: Compute selector (you know the function name, you want the identifier) or Decode calldata (you have a hex blob and want to know what it does).
In Compute selector mode: type the function signature like functionName(argType1,argType2). No spaces, no argument names, just the types. The 4-byte result appears instantly.
In Decode calldata mode: paste the full transaction hex (with 0x or without). The tool reads the first 4 bytes and looks them up in the built-in registry. If found, it shows the function name and a parameter table. If not, you can paste the signature manually.
Click the example chips under the input (transfer, approve, swap) to see how common operations look.
The list at the bottom is the built-in selector registry (~30 common ones). Click any entry to autofill the input.
string, bytes, and array arguments are marked as *"(dynamic type)"* and skipped, full decoding requires complex offset logic (out of scope here). Addresses and integers decode just fine.

When this is useful

Six typical situations where the selector gives you a concrete answer:

Debugging a weird wallet transaction. Something disappeared from your wallet and you do not know what you clicked. Copy the calldata from Etherscan, paste it here, you see immediately: *"ah, this was approve for unlimited USDT to some random contract"*. Now you know what to revoke.
Reading a pending transaction on Etherscan. You want to know what the contract is about to do before you sign in MetaMask. Paste the *"Input Data"* field, you see: *"swapExactTokensForTokens, a DEX swap"*. Brain relaxes.
Building an integration with a smart contract. You need to construct calldata by hand (e.g. for a multicall or a non-standard framework). You compute the selector for each function, concatenate with the arguments. This is step one.
Learning how the ABI works. Your first day with Solidity and someone throws *"function selector"* at you. Type transfer(address,uint256), you get 0xa9059cbb, change it to Transfer(...) (capital T), totally different selector. So even capitalisation matters. Lesson learned.
Security review of a contract. You have a suspicious transaction that allegedly called *"claimAirdrop"*, but something feels off. Compute the selector for claimAirdrop() and check whether it matches the first 4 bytes of the calldata. If it does not, someone tried to fool you.
Writing Foundry / Hardhat tests. You need to hardcode a selector in a test (e.g. for expectRevert(bytes4)). Compute it here, copy, paste into the test. No need to install cast or set up a separate toolchain.

Questions and answers

Four bytes of hex that tell a smart contract which function to call. An Ethereum contract has many functions (transfer, approve, balanceOf, ...). When someone sends a transaction to it, the first 4 bytes of the calldata point to the function to execute. The rest of the calldata is the arguments. Think of it as a hotel room number: first you say *"room 412"* (the selector), then you say what you want done in that room (the arguments).

What does this Ethereum transaction actually do?

How to use it

Pick a mode at the top: Compute selector (you know the function name, you want the identifier) or Decode calldata (you have a hex blob and want to know what it does).

In Compute selector mode: type the function signature like functionName(argType1,argType2). No spaces, no argument names, just the types. The 4-byte result appears instantly.

In Decode calldata mode: paste the full transaction hex (with 0x or without). The tool reads the first 4 bytes and looks them up in the built-in registry. If found, it shows the function name and a parameter table. If not, you can paste the signature manually.

Click the example chips under the input (transfer, approve, swap) to see how common operations look.

The list at the bottom is the built-in selector registry (~30 common ones). Click any entry to autofill the input.

string, bytes, and array arguments are marked as *"(dynamic type)"* and skipped, full decoding requires complex offset logic (out of scope here). Addresses and integers decode just fine.

When this is useful

Six typical situations where the selector gives you a concrete answer:

Debugging a weird wallet transaction. Something disappeared from your wallet and you do not know what you clicked. Copy the calldata from Etherscan, paste it here, you see immediately: *"ah, this was approve for unlimited USDT to some random contract"*. Now you know what to revoke.
Reading a pending transaction on Etherscan. You want to know what the contract is about to do before you sign in MetaMask. Paste the *"Input Data"* field, you see: *"swapExactTokensForTokens, a DEX swap"*. Brain relaxes.
Building an integration with a smart contract. You need to construct calldata by hand (e.g. for a multicall or a non-standard framework). You compute the selector for each function, concatenate with the arguments. This is step one.
Learning how the ABI works. Your first day with Solidity and someone throws *"function selector"* at you. Type transfer(address,uint256), you get 0xa9059cbb, change it to Transfer(...) (capital T), totally different selector. So even capitalisation matters. Lesson learned.
Security review of a contract. You have a suspicious transaction that allegedly called *"claimAirdrop"*, but something feels off. Compute the selector for claimAirdrop() and check whether it matches the first 4 bytes of the calldata. If it does not, someone tried to fool you.
Writing Foundry / Hardhat tests. You need to hardcode a selector in a test (e.g. for expectRevert(bytes4)). Compute it here, copy, paste into the test. No need to install cast or set up a separate toolchain.

Questions and answers

Ethereum function selector

What does this Ethereum transaction actually do?

How to use it

When this is useful

Questions and answers

Related tools

Ethereum unit converter

Crypto address validator

HD wallet derivation (BIP32/44)

Ethereum function selector

What does this Ethereum transaction actually do?

How to use it

When this is useful

Questions and answers

Related tools

Ethereum unit converter

Crypto address validator

HD wallet derivation (BIP32/44)