building-secure-contracts
eth-security-toolbox
| building-secure-contracts | eth-security-toolbox | |
|---|---|---|
| 10 | 2 | |
| 2,076 | 648 | |
| 0.6% | 1.4% | |
| 8.4 | 6.0 | |
| 9 days ago | 6 months ago | |
| Solidity | Dockerfile | |
| GNU Affero General Public License v3.0 | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
building-secure-contracts
-
Smart Contract Security Field Guide
I appreciate how organized the Consensys guide is laid out. It's pretty easy to read. Trail of Bits has a similar guide that is a little more in-the-weeds technically. It also covers, what we think is, essential background about certain automated analysis techniques like static analysis and how fuzzers work. Check it out!
https://secure-contracts.com/
- Trail of Bits Building Secure Contracts: Now with support for Cosmos
- Trail of Bits Building Secure Contracts: Now with support for Substrate
- New release of Building-secure-contracts: it introduces not so smart contracts for Algorand/Cairo/Cosmos/Substrate - a set of common vulnerabilities for these chains. The release contains also new training materials for Echidna and new guidelines
- Trail of Bits added Algorand to their "Building Secure Contracts" developer guide
-
Launching your Ethereum dApp on Avalanche
We highly recommend using at least one of them if professional contract security review is not possible. A more comprehensive look into secure development practices can be found here.
-
Smart Contract Exploitation Repository
If you need more reading about building secure smart contracts and auditing workflows, see here: https://github.com/crytic/building-secure-contracts
- Any recommendations for smart contract auditing ?
eth-security-toolbox
- Eth security toolbox
-
Any recommendations for smart contract auditing ?
As software you can try https://github.com/crytic/slither or a full package https://github.com/trailofbits/eth-security-toolbox
What are some alternatives?
slither - Static Analyzer for Solidity and Vyper
pooltogether-community-ui - UI to use when creating your own custom pools, prize strategies or as reference code for integrating your own pools.
coreth - Code and wrapper to extract Ethereum blockchain functionalities without network/consensus, for building custom blockchain services.
avalanche-faucet - Avalanche Faucet for Fuji Network and Subnets.
avalanchego - Go implementation of an Avalanche node.
mythril - Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.
avalanche-network-runner - Tool to run and interact with an Avalanche network locally
aave-v3-core - This repository contains the core smart contracts of the Aave V3 protocol.
bolts - BOLT: Basis of Lightning Technology (Lightning Network Specifications)