Decentralized

Finance

Systems

Application

Security            

Full-stack web3 security services delivered by top-tier ethical hackers with a focus on the real financial impact

Get in touch

Services

Smart Contract Audit

Security audit of the Ethereum Solidity smart contracts, Solana Rust programs, Aptos Move contracts or any kind of a dApp

Security advisory

Comprehensive continuous security consulting and audit, implementation of the Security SDLC practices, monitoring, and incident response

Vulnerability Management

Penetration testing and security assessment of the web3 applications, layer 1 nodes, bridges, and infrastructure

Risk Assessment

Web3 protocol external risk and viability assessment for the traders, PE, and VC funds during the due dilligence

Whitepaper Verification

Validation and assessment of the mathematical tokenomics models proposed in the whitepaper and implemented in code

Security Monitoring

Monitoring the contracts for hack attempts, suspicious transactions and dangerous actions as well as financial solvency

Smart Contract Audit

Security audit of the Ethereum Solidity smart contracts, Solana Rust programs, Aptos Move contracts or any kind of a dApp

Security advisory

Comprehensive continuous security consulting and audit, implementation of the Security SDLC practices, monitoring, and incident response

Vulnerability Management

Penetration testing and security assessment of the web3 applications, layer 1 nodes, bridges, and infrastructure

Risk Assessment

Web3 protocol external risk and viability assessment for the traders, PE, and VC funds during the due dilligence

Whitepaper Verification

Validation and assessment of the mathematical tokenomics models proposed in the whitepaper and implemented in code

Security Monitoring

Monitoring the contracts for hack attempts, suspicious transactions and dangerous actions as well as financial solvency

Portfolio

We've successfully completed dozens of complex audits. Here're the reports for some of them.

Our team joint with partners placed 2nd in the most respected smart contract security audit competition
— Paradigm CTF 2022.
Learn More
Security audit of the Yearn Finance no-hedge joint strategy helped to ensure the validity of the yield farming strategy logic and the security of the implementation.
Learn More
Security audit of the GIVEth smart contracts led to discovery of a critical vulnerability in another protocol andremediation of the associated risk.
Learn More
Our team joint with partners placed 2nd in the most respected smart contract security audit competition — Paradigm CTF 2022.
Learn More
Security audit of the Yearn Finance no-hedge joint strategy helped to ensure the validity of the yield farming strategy logic and the security of the implementation.
Learn More
Security audit of the GIVEth smart contracts led to discovery of a critical vulnerability in another protocol andremediation of the associated risk.
Learn More

tools

We contribute to the Web3 security by creating the tools that help to automate the security audit.

ABI Decompiler

Reverse Engineering tool that helps you to efficiently match the function selectors in the EVM bytecode to the function signatures.

view
Contract Diff

Smart diff tool that helps you to understand which code the protocol has been forked from and what exactly has been changed.

view
Semgrep Solidity

Semgrep Solidity rulepack helps developers to find the typical vulnerable patterns in the smart contract code in CI/CD.

view

Why Decurity?

We are a team of veteran hackers who dived into the blockchain and smart contract security in the early days. Under our supervision, an audit is not just a filing of the checklist but rather a full-fledged research.

See our public reports on Github to learn more.

About Us

  • Multiple world CTF hacking champions

  • Top-50 hackers worldwide according to HackerOne

  • Discovered critical issues during most of engagements

  • Blockchain security experts with proven record since 2017

Our Customers

Contact Us