Smart contracts are hard to get right. They usually manage valuable digital assets, are publicly readable and immutable, which makes them the perfect target for cybersecurity attacks.
There are plenty of examples of incidents in which funds have been stolen or permanently locked, because of programming errors, unexpected user behavior or oddities of the underlying blockchain protocol implementation.
Blockchain systems do not stop at the smart contract level. Other issues to consider are:
To this end, we offer full stack auditing and consulting services including pentesting and code reviews.
This package consists in an audit performed by a single auditor resulting in a comprehensive report listing vulnerabilities and their criticality, together with a set of recommendations. This package includes a second round of reviews are fixes are applied, resulting in the audit report being updated.
This package increases the coverage of the audit process by engaging three experienced auditors to audit the smart contracts independently before reaching consensus in debrief meeting. As in the standard package, a second round allows the client to fix any issues encountered.
The most comprehensive of our service offerings accompanies the development team throughout the smart contract development process, providing early feedback. Our auditors will participate in design meetings, provide security guidance and perform regular code reviews. At the end of the process and formal audit will be performed.
We have performed smart contract audits for various projects, including tokens based on ERC20, ERC223 and ERC721 specifications, DeFi protocols, STO platforms, prediction markets and investment funds.
When building distributed ledger application, companies usually have to deal with private and financial data. This means that compliance with legal and regulatory frameworks is very important. We provide specialized auditing and consulting services to help our clients build compliant systems. Our compliance service offerings include:
Sign up to our newsletter.
