This repository contains a list of the most popular and widely used tools in web3 security. If you find any tools missing, you can create a pull request and be a contribute the project.

SmartCheck – a static analysis tool that detects vulnerabilities and bugs in Solidity programs (Ethereum-based smart contracts).

Here we collect and discuss the best DeFI & Blockchain researches and tools. Feel free to DM me on Twitter or open pool request.

Here we collect and discuss the best DeFi, Blockchain and crypto-related OpSec researches and data terminals - contributions are welcome.

Extract the ABI (and resolve proxies, and get other metadata) from Ethereum bytecode, even without source code.

A chronological and (hopefully) complete list of reentrancy attacks to date.

Solidity contract visualisation tool

a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance

Ethereum transaction visualizer. Generates UML sequence diagram for a transaction's contract calls.

Interact with any contract on Ethereum.

Frontend for https://tx.eth.samczsun.com/

Official repository for Paradigm CTF 2021

Puzzles used in the 2022 Paradigm CTF

A collection of smart contract vulnerabilities along with prevention methods

A list of Blockchain Security audit companies, solo auditors and location of public audits.

A symbolic testing tool for EVM smart contracts

A static verifer for Ethereum Smart Contracts written in Vyper

Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.

A collection of practical security-focused guides and checklists for smart contract development

A Solidity smart contract auditing checklist

A 6-part series on how to use Echidna on real-world codebases

A list of useful Crypto resources for OSINT investigations