slither vs mythril

slither

Static Analyzer for Solidity and Vyper (by crytic)

Source Code

blog.trailofbits.com

Suggest alternative

Edit details

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains. (by Consensys)

security-analysis Ethereum Blockchain smart-contracts Solidity program-analysis Security symbolic-execution

Source Code

mythx.io

Suggest alternative

Edit details

Our great sponsors

WorkOS - The modern identity platform for B2B SaaS

InfluxDB - Power Real-Time Data Analytics at Scale

SaaSHub - Software Alternatives and Reviews

Our great sponsors

slither		mythril
	Project
36	Mentions	12
4,992	Stars	3,706
2.1%	Growth	0.9%
9.5	Activity	8.2
1 day ago	Latest Commit	8 days ago
Python	Language	Python
GNU Affero General Public License v3.0	License	MIT License

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

slither

Posts with mentions or reviews of slither. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-02-26.

Hidden Risks Lurking in Ethereum's Smart Contract Proxies
1 project | /r/ethereum | 19 Apr 2023

Yes exactly! However, >99% of the time this wouldn't happen unintentionally, and typically static analysis frameworks will detect function clashing like slither: https://github.com/crytic/slither.
Slither 0.9.3 is out - improvements to the detectors, solidity support and more
1 project | /r/DeFiSecurity | 21 Mar 2023

1 project | /r/eth | 20 Mar 2023

1 project | /r/ethdev | 20 Mar 2023
Are there cases where installing a command line tool via pipx won't work, but installing via pip will?
1 project | /r/learnpython | 13 Mar 2023

I don't know these tools but took a look at the slither-analyze deps, and see that solc-select is not a hard dependency, but part of the extra dep group called dev. So with a normal pipx install slither-analyze, solc-select is probably absent from the relevant venv.
WTS: certiK audit credit ?
1 project | /r/cryptodevs | 12 Mar 2023

Congrats, you just wasted money for an audit you could have done for free with https://github.com/crytic/slither.
Crypto devs, what tools am I missing? Trying to build a decent list of dev resources.
2 projects | /r/cryptodevs | 26 Feb 2023

Vulnerability Infrastructure: Slither
Solidity documentation using AI
1 project | /r/solidity | 24 Feb 2023

What are the differences of your solution to `slither documentation`?
Slither 0.9.2: finds bugs and auto-creates docs with GPT
1 project | /r/eth | 11 Jan 2023

1 project | /r/ethdev | 11 Jan 2023

mythril

Posts with mentions or reviews of mythril. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-04-25.

Fuzzing Around: Better Smart Contract Testing through the Power of Random Inputs
3 projects | dev.to | 25 Apr 2023

Fuzzing has been around for a while in traditional full-stack development, but a new class of tools is here that can apply fuzzing to smart contract testing in web3. Some of the fuzzing tools include the open source Echidna and MythX.
Mythril an easy way to audit your smart contracts.
2 projects | dev.to | 1 Nov 2022

Mythril is part of the core tools of Consensys Mythx one of the biggest Smart Contract security services for Ethereum, which main goal is to ensure development teams avoid costly errors and make Ethereum more secure and trustworthy… or at least that is what their page says.
How do you guarantee the security of your smart contracts?
2 projects | /r/solidity | 19 Oct 2022

Other than audits and testing, there's automated security checking: https://github.com/ConsenSys/mythril I'm yet to try this in one of my projects
Launching your Ethereum dApp on Avalanche
10 projects | /r/Avax | 28 Sep 2022

Mythril
A Comprehensive Guide on Web3 Programming Languages and Tools
19 projects | dev.to | 6 Jun 2022

MythX, Mythril, Manticore, and Echidna are other tools for security audits.
Tools to verify solidity code
6 projects | /r/ethdev | 3 Jun 2022

Smart Contract Weakness Classification and Test Cases: https://swcregistry.io/ OKO Contract Explorer: https://oko.palkeo.com/txview Slither: https://github.com/crytic/slither MythX: https://mythx.io/ Tenderly: https://tenderly.dev/ Spot check program: https://docs.google.com/document/d/16...
Static analysis of smartcontracts?
2 projects | /r/ethdev | 9 Mar 2022

There are some paid tools and some free ones. A few that come to mind are ConsenSys MythX (based in part on the open-source Mythril), ShiftLeft, Oyente, Octopus… maybe best to just check out ETHSecurity’s list.
Formal Verification Methods in industry
4 projects | /r/compsci | 31 Jan 2022

When you say "formal verification methods", what kind of techniques are you interested in? While using interactive theorem provers will most likely not become very widespread, there are plenty of tools that use formal techniques to give more correctness guarantees. These tools might give some guarantees, but do not guarantee complete functional correctness. WireGuard (VPN tunnel) is I think a very interesting application where they verified the protocol. There are also some tools in use, e.g. Mythril and CrossHair, that focus on detecting bugs using symbolic execution. There's also INFER from Facebook/Meta which tries to verify memory safety automatically. The following GitHub repo might also interest you, it lists some companies that use formal methods: practical-fm
Please check this if you are looking for a good tokenomics project.
1 project | /r/SatoshiStreetBets | 30 Apr 2021

- Audited by MythX.io
What kind of Ethereum node/API/setup do I need for these use cases?
2 projects | /r/ethdev | 27 Apr 2021

ability to run security analysis on contracts using for .e.g. https://github.com/ConsenSys/mythril

What are some alternatives?

When comparing slither and mythril you can also consider the following projects:

solc-select - Manage and switch between Solidity compiler versions

manticore - Symbolic execution tool

truffle - :warning: The Truffle Suite is being sunset. For information on ongoing support, migration options and FAQs, visit the Consensys blog. Thank you for all the support over the years.

echidna - Ethereum smart contract fuzzer

smart-contract-best-practices - A guide to smart contract security best practices

eth-security-toolbox - A Docker container preconfigured with all of the Trail of Bits Ethereum security tools.

pyteal - Algorand Smart Contracts in Python

publications - Publications from Trail of Bits

tatum-js - 🚀 Tatum SDK: A 💪 powerful, 🌟 feature-rich TypeScript/JavaScript 📚 library that streamlines the 🛠️ development of 🌐 blockchain applications.

chai - BDD / TDD assertion framework for node.js and the browser that can be paired with any testing framework.