slither
eth-security-toolbox
Our great sponsors
| slither | eth-security-toolbox | |
|---|---|---|
| 36 | 2 | |
| 4,968 | 644 | |
| 1.6% | 1.4% | |
| 9.5 | 6.0 | |
| 7 days ago | 6 months ago | |
| Python | Dockerfile | |
| GNU Affero General Public License v3.0 | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
slither
-
Hidden Risks Lurking in Ethereum's Smart Contract Proxies
Yes exactly! However, >99% of the time this wouldn't happen unintentionally, and typically static analysis frameworks will detect function clashing like slither: https://github.com/crytic/slither.
- Slither 0.9.3 is out - improvements to the detectors, solidity support and more
-
Are there cases where installing a command line tool via pipx won't work, but installing via pip will?
I don't know these tools but took a look at the slither-analyze deps, and see that solc-select is not a hard dependency, but part of the extra dep group called dev. So with a normal pipx install slither-analyze, solc-select is probably absent from the relevant venv.
-
WTS: certiK audit credit ?
Congrats, you just wasted money for an audit you could have done for free with https://github.com/crytic/slither.
-
Crypto devs, what tools am I missing? Trying to build a decent list of dev resources.
Vulnerability Infrastructure: Slither
-
Solidity documentation using AI
What are the differences of your solution to `slither documentation`?
- Slither 0.9.2: finds bugs and auto-creates docs with GPT
eth-security-toolbox
- Eth security toolbox
-
Any recommendations for smart contract auditing ?
As software you can try https://github.com/crytic/slither or a full package https://github.com/trailofbits/eth-security-toolbox
What are some alternatives?
solc-select - Manage and switch between Solidity compiler versions
building-secure-contracts - Guidelines and training material to write secure smart contracts
manticore - Symbolic execution tool
echidna - Ethereum smart contract fuzzer
mythril - Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.
publications - Publications from Trail of Bits
chai - BDD / TDD assertion framework for node.js and the browser that can be paired with any testing framework.
wndcontracts
safe-smart-account - Safe allows secure management of blockchain assets.
create-smart-contract - Set up Ethereum smart contract development environment with one command
chainlink - node of the decentralized oracle network, bridging on and off-chain computation