slither
echidna
Our great sponsors
slither | echidna | |
---|---|---|
36 | 33 | |
4,943 | 2,526 | |
2.6% | 2.5% | |
9.5 | 8.5 | |
about 14 hours ago | 10 days ago | |
Python | Solidity | |
GNU Affero General Public License v3.0 | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
slither
-
Crypto devs, what tools am I missing? Trying to build a decent list of dev resources.
Vulnerability Infrastructure: Slither
-
Using Remix Analyzer For Solidity Syntax Analysis.
There are two other similar tools: slither and solhint.
-
How do you guarantee the security of your smart contracts?
consider tools like Slither https://github.com/crytic/slither
-
Launching your Ethereum dApp on Avalanche
Slither, here's a tutorial
-
A Comprehensive Guide on Web3 Programming Languages and Tools
Sliter is a static smart contract security analytic tool built on Python to detect vulnerabilities, enhance code comprehension, and prototype custom analyses.
-
Tools to verify solidity code
Smart Contract Weakness Classification and Test Cases: https://swcregistry.io/ OKO Contract Explorer: https://oko.palkeo.com/txview Slither: https://github.com/crytic/slither MythX: https://mythx.io/ Tenderly: https://tenderly.dev/ Spot check program: https://docs.google.com/document/d/16...
Static analysis: Slither
-
Any recommendations for smart contract auditing ?
As software you can try https://github.com/crytic/slither or a full package https://github.com/trailofbits/eth-security-toolbox
-
An unofficial audit of a Solidity Game smart contract: Wizards & Dragons Game
If you want to know more about this tool you should check it on GitHub: Slither.
- Smart Contract Security for Pentesters
echidna
-
Fuzzing Around: Better Smart Contract Testing through the Power of Random Inputs
Fuzzing has been around for a while in traditional full-stack development, but a new class of tools is here that can apply fuzzing to smart contract testing in web3. Some of the fuzzing tools include the open source Echidna and MythX.
-
Smart Contract Audits with ConsenSys Diligence Fuzzing - Fuzzing as a Service
Fuzzing has been around for a while. Defensics and Burp Suite are some examples in the traditional development world. There are also several web3/blockchain fuzzing tools available, such as Echidna and Foundry. However, Diligence Fuzzing is fuzzing as a service and makes everything a little simpler to implement. Which in the end means better audits and more secure contracts. So let’s look into it in more detail.
-
A Comprehensive Guide on Web3 Programming Languages and Tools
MythX, Mythril, Manticore, and Echidna are other tools for security audits.
-
Tools to verify solidity code
Input fuzzing: Echidna
- Smart Contract Security for Pentesters
What are some alternatives?
manticore - Symbolic execution tool
solc-select - Manage and switch between Solidity compiler versions
openzeppelin-solidity - OpenZeppelin Contracts is a library for secure smart contract development. [Moved to: https://github.com/OpenZeppelin/openzeppelin-contracts]
openzeppelin-contracts - OpenZeppelin Contracts is a library for secure smart contract development.
mythril - Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains.
remix-ide - Documentation for Remix IDE
eth-security-toolbox - A Docker container preconfigured with all of the Trail of Bits Ethereum security tools.
ganache - :warning: The Truffle Suite is being sunset. For information on ongoing support, migration options and FAQs, visit the Consensys blog. Thank you for all the support over the years.
publications - Publications from Trail of Bits
chai - BDD / TDD assertion framework for node.js and the browser that can be paired with any testing framework.