Security Tools

Essential tools for smart contract security analysis. From static analyzers to fuzzers, find everything you need to secure your code.

4.8k
Static Analysis

Slither

Static analyzer that detects vulnerabilities, code optimization opportunities, and provides insights about your Solidity code.

  • 40+ vulnerability detectors
  • Code optimization tips
  • CI/CD integration
3.5k
Symbolic Execution

Mythril

Security analysis tool that uses symbolic execution to detect security vulnerabilities in EVM bytecode.

  • Automatic vulnerability detection
  • Transaction trace analysis
  • Supports deployed contracts
2.2k
Fuzzing

Echidna

Property-based fuzzer that tests smart contracts with randomly generated inputs to find edge cases.

  • Property-based testing
  • Coverage guided fuzzing
  • Corpus optimization
7k
Development & Testing

Foundry

Blazingly fast toolkit for Ethereum development with built-in fuzzing and invariant testing.

  • Forge testing framework
  • Cast CLI tool
  • Anvil local node
500
Static Analysis

Aderyn

Modern Rust-based static analyzer that quickly finds vulnerabilities with detailed reports.

  • Fast Rust implementation
  • Multiple output formats
  • Custom rules support
500
Symbolic Testing

Halmos

Symbolic testing tool for EVM bytecode based on formal verification techniques.

  • Foundry integration
  • Symbolic execution
  • Custom constraints

Quick Install

Install Slither
pip3 install slither-analyzer
Install Foundry
curl -L https://foundry.paradigm.xyz | bash && foundryup
Install Aderyn
cargo install aderyn

Learning Resources

Practice

Damn Vulnerable DeFi

Wargame to learn offensive security of DeFi smart contracts.

Practice

Ethernaut

Web3/Solidity based wargame by OpenZeppelin.

Reference

Solidity Patterns

Collection of smart contract patterns and best practices.

Reference

SWC Registry

Smart Contract Weakness Classification registry.