Security Tools

Static Analysis

  • Manticore - Dynamic binary analysis tool with EVM support
  • Mythril - Reversing and bug hunting framework for the Ethereum blockchain
  • Oyente - Analyze Ethereum code to find common vulnerabilities, based on this paper.
  • Solgraph - Generates a DOT graph that visualizes function control flow of a Solidity contract and highlights potential security vulnerabilities.
  • SmartCheck - Static analysis of Solidity source code for security vulnerabilities and best practices.

Test Coverage

Linters

Linters improve code quality by enforcing rules for style and composition, making code easier to read and review.

  • Solcheck - A linter for Solidity code written in JS and heavily inspired by eslint.
  • Solint - Solidity linting that helps you enforce consistent conventions and avoid errors in your Solidity smart-contracts.
  • Solium - Yet another Solidity linting.
  • Solhint - A linter for Solidity that provides both Security and Style Guide validations.