Dedaub Security Audits

Hire our team and benefit from industry-leading security expertise and advanced static analysis technology, ensuring your project is launched free of critical vulnerabilities. Our audit team benefits from deep expertise in DeFi security, program analysis, consensus protocols and advanced cryptography and can tackle projects in different languages, including Solidity, Golang and Rust. In addition to a hacker mindset, many of our security researchers have a strong (PhD-level) academic background.

REQUEST AN AUDIT Read Our Audit Reports
Security Audit

$30B ASSETS MANAGED BY AUDITED CODE

Staking

We have audited multiple Lido staking implementations, EigenLayer modules and Staking for Zircuit. In particular EigenLayer's middleware and AVS such as EigenDA was audited by our team. Collectively, these projects handle over $40B. A number of High severity issues in these projects were identified as part of our audits.
AUDIT REPORTS

Decentralized Exchanges

Whether it's a novel constant-function market maker or a fork of an existing protocol, our team is fully prepared. For example, we've recently identified a high severity CVE in live Uniswap smart contracts (CVE-2022-48216), which led to redeployments on all affected chains. Our team has also worked with Maverick, where we found a critical vulnerability allowing infinite minting for pool shares. We can also help secure Dex integrations, such as Uniswap V3 position managers. In an audit for Maple Finance we found 3 distinct critical and high-severity vulnerabilities related to AMM integrations.
AUDIT REPORTS

DeFi

The Dedaub team has made several security contributions for DeFi, directly auditing some of the best known protocols. Example include multiple audits for Lido. Findings include a critical issue that allows price manipulation between the base and staked token, that can result in a theft of funds. The team has also audited Pendle smart contracts. The team discovered a high-severity CVE in a live version of Uniswap's UniversalRouter. More recently, the team also performed audits for GMX V2, Liquity V2, as well as EigenLayer, finding high-severity issues for all 3 teams. Finally, many modern DeFi protocols are underpinned by Chainlink Oracles, stablecoins such as USDC, and the evolution of the EVM. Our team has also been involved in securing these too.
AUDIT REPORTS

L1s - L2s

The Dedaub team has been particularly impactful for L1s. For the Ethereum Foundation we have audited and performed impact studies for a variety of EIPs over the years, including EIP-1884, EIP-3074, EIP-4788, EIP-6780, Verkle Trees and others. With our help the Ethereum community was able to derisk network upgrades, and preemptively find issues or tweak EIPs to minimize impact. Through our distinctive tech we can also pinpoint projects that would be adversely affected by network updgrades. For instance, for EIP-3074 we identified Sushiswap and older versions of Compound. Our team can also conduct audits of sequencers, node implementations in GoLang, consensus protocols and evaluate compatibility of EVM-based chains.
AUDIT REPORTS

NFTs

Our work in NFTs includes audits for the world largest decentralized NFT exchange, Blur. Notably our team has found access control issues allowing anyone to be able to execute arbitrary transactions on a user's proxy, together with high severity denial of attack issues.
AUDIT REPORTS

Oracles

As a long-term security partner of Chainlink, our team has conducted over 30 private audits targeting most components of the Chainlink stack. DeFi protocols incessently rely on fair and accurate price and cross-chain data connectivity. Our team has also audited Oracle integrations, that in addition to Chainlink utilize Pyth, Uniswap TWAP oracles.
AUDIT REPORTS

Stablecoins

Our team has audited implementations of the USDC and TUSD stablecoins, developed by Coinbase and Archblock respectively.
AUDIT REPORTS

Bridges

Unfortunately, the world's largest hacks (by financial value) involve bridges. In 2022, our team proactively detected vulnerability in a large decentralized bridge and demonstrated via a PoC how all the funds moved to the Fantom chain could be stolen in a single transaction, yielding over $1B in profit. Our team was subsequently awarded a $2m bounty for this find. Dedaub also successfully audited Chainlink CCIP, which, in our view, is one of the most secure bridges to date.
AUDIT REPORTS

Ensure your project is launched free of critical vulnerabilities.

REQUEST AN AUDIT
Experienced

Experienced

Combining decades of academic rigor with practical hacking expertise, our team excels in Smart Contract and blockchain security.

Bespoke

Bespoke

Our team ensures a personalized, efficient audit process with dedicated attention and clear communication.

Trusted

Dedaub is a long-time security partner for major Web3 companies like Ethereum Foundation, Coinbase, and Chainlink.

WHY WORK WITH DEDAUB

Your Security Needs Resolved with Trust

Dedaub is a leading blockchain security technology and auditing firm that combines deep security research, academic rigor, and practical hacker expertise.
Request An Audit Read Our Audit Reports

$3M

IN BUG BOUNTIES IN 11 SUCCESSFUL CLAIMS FOR IDENTIFYING CRITICAL ISSUES

$Billions

IN TVL SECURED VIA PROACTIVE WHITE-HAT HACKING and SEAL 911 WAR ROOMS

200+

SMART CONTRACT SECURITY AUDITS FOR LEADING DEFI PROTOCOLS

The Smart Contract Audit Process

Embark on a journey towards smart contract security with Dedaub's meticulous audit process. Our structured approach ensures thorough scrutiny from cost estimation to the final report, aligning perfectly with your project's timeline and budget requirement.

REQUEST AN AUDIT
1

Cost and Schedule Proposal

Our team estimates the cost and projected timeline considering the codebase's scope and complexity. We align our assessment to meet your project deadlines and budget.

2

Audit Commencement

Our experts dedicate the agreed time to analyze your contracts meticulously. We engage in continuous dialogue with your development team to achieve optimal results.

3

Preliminary Findings Delivery

We categorize and detail findings in the preliminary report by risk level: Critical, High, Medium, Low, or Advisory. We arrange a discussion session to clarify any issues with your team.

4

Issue Resolution Process

Your developers will address the identified issues following our tailored guidance in the initial report.

5

Final Review and Report

Post-mitigation, we conduct a final review to ensure all issues are resolved, culminating in a comprehensive final report documenting.

Frequently Asked Questions

How long do the audits take?

The timeline for each smart contract audit is customized according to the project size and its technical intricacies.

What types of smart contract audits do we offer?

Our comprehensive audits provide in-depth security analysis and guidance.

Which technologies are supported?

Our team is proficient in a variety of technologies including blockchain programming languages Solidity and Vyper. We also support a wide range of other popular blockchain development frameworks.

What is the confidentiality of our audits?

Clients can choose to make their smart contract audit reports public or to keep them private. We tailor our approach to fit your preferences and needs.

What is the cost of our smart contract audits?

Our pricing model varies based on the project's scope and complexity.

Secure your smart contract...

Launch your next Web3 project free of critical vulnerabilities...

REQUEST AN AUDIT