Is Your EigenLayer AVS Audit Secured by Experts?

As a trusted EigenLayer Marketplace Vendor, Dedaub has audited high-impact AVS projects including EigenLayer Middleware, Othentic, eOracle, and Predicate.

  • Code analysis → Deep inspection of execution flows, cross-module logic, and state transitions.
  • Quorum & staking security → Validation of delegation, governance enforcement, slashing conditions, and validator assumptions.
  • Economic risk modeling → Simulation and review of staking dynamics, approval flows, and adversarial game theory.

Dedaub also secures Web3 leaders like Chainlink (CCIP), Satlayer, and Babylon's restaking system—combining automated analysis with expert-led review.

REQUEST AN AUDIT
EigenLayer AVS Security Audit

$30B ASSETS MANAGED BY AUDITED CODE

Ethereum Foundation
Coinbase
Chainlink
Ledger
Immunefi
Enzyme Finance
DeFi Saver
Fantom
Multichain
Vector
Ethereum Foundation
Coinbase
Chainlink
Ledger
Immunefi
Enzyme Finance
DeFi Saver
Fantom
Multichain
Vector

Trusted for security audits by the world's Web3 leading companies

119
Public reports
220+
Total Audits
65
Clients
16
Chains
REQUEST AN AUDIT
SatLayer logo

"Dedaub brought exceptional clarity and depth to our smart contract security audit. Their rigorous review and actionable insights strengthened our core protocol."

Arun Devabhaktuni

CSO at SatLayer

Eoracle logo

"The audit conducted by Dedaub on our Eoracle middleware contracts was comprehensive and successful. The team at Dedaub delivered a precise and detailed analysis, further strengthening the security of our smart contracts."

Yoni Keselbrener

Smart Contracts Team Lead at Eoracle

Stablejack logo

"Dedaub's meticulous audit process gave us invaluable insights and strengthened our protocol's security. Thanks to Yannis and the team for their expertise and collaboration!"

Ulvi Kağan Dağdeviren

Co-Founder at Stablejack

Ethereum Foundation logo

"Dedaub provided a very generous and thorough pro-bono audit of the on-chain funding mechanism for Protocol Guild, uncovering critical vulnerabilities and offering valuable insights that improved our overall security. Dedaub achieved a deep understanding of the codebase, and we had clear communication throughout the process. We highly recommend their services to others."

Fredrik Svantes

Security Researcher at Ethereum Foundation

Liquity logo

"As a returning customer, we knew Dedaub would deliver. Their expertise in DeFi security and smart contract analysis is unmatched. For Liquity V2, they identified vulnerabilities and provided key insights to optimize our protocol. Once again, Dedaub delivered flawlessly."

Bingen Eguzkitza

Head of Development at Liquity

OZ Networks logo

"The Dedaub Security Suite provides an efficient Decompiler API with an intuitive user interface for quick navigation. Its performance and speed set a high standard in the industry, making it a competitive choice for gaining data-driven security insights. The team behind Dedaub is responsive to user feedback, enhancing the overall experience."

David Daniel

Director of Threat Intelligence at OZ Networks

Fluidkey logo

"Dedaub thoroughly reviewed our TypeScript crypto library and was able to share valuable improvement recommendations."

Moritz Boullenger

Co-Founder at Fluidkey

Ironblocks logo

"I love the Dedaub decompiler—No other tool even comes close to what Dedaub has created."

David Benchimol

Blockchain Security Engineer, Ironblocks

Sentio logo

"I love Dedaub decompiler"

Fuyao Zhao

CEO, Sentio

SatLayer logo

"Dedaub brought exceptional clarity and depth to our smart contract security audit. Their rigorous review and actionable insights strengthened our core protocol."

Arun Devabhaktuni

CSO at SatLayer

Eoracle logo

"The audit conducted by Dedaub on our Eoracle middleware contracts was comprehensive and successful. The team at Dedaub delivered a precise and detailed analysis, further strengthening the security of our smart contracts."

Yoni Keselbrener

Smart Contracts Team Lead at Eoracle

Stablejack logo

"Dedaub's meticulous audit process gave us invaluable insights and strengthened our protocol's security. Thanks to Yannis and the team for their expertise and collaboration!"

Ulvi Kağan Dağdeviren

Co-Founder at Stablejack

Ethereum Foundation logo

"Dedaub provided a very generous and thorough pro-bono audit of the on-chain funding mechanism for Protocol Guild, uncovering critical vulnerabilities and offering valuable insights that improved our overall security. Dedaub achieved a deep understanding of the codebase, and we had clear communication throughout the process. We highly recommend their services to others."

Fredrik Svantes

Security Researcher at Ethereum Foundation

Liquity logo

"As a returning customer, we knew Dedaub would deliver. Their expertise in DeFi security and smart contract analysis is unmatched. For Liquity V2, they identified vulnerabilities and provided key insights to optimize our protocol. Once again, Dedaub delivered flawlessly."

Bingen Eguzkitza

Head of Development at Liquity

OZ Networks logo

"The Dedaub Security Suite provides an efficient Decompiler API with an intuitive user interface for quick navigation. Its performance and speed set a high standard in the industry, making it a competitive choice for gaining data-driven security insights. The team behind Dedaub is responsive to user feedback, enhancing the overall experience."

David Daniel

Director of Threat Intelligence at OZ Networks

Fluidkey logo

"Dedaub thoroughly reviewed our TypeScript crypto library and was able to share valuable improvement recommendations."

Moritz Boullenger

Co-Founder at Fluidkey

Ironblocks logo

"I love the Dedaub decompiler—No other tool even comes close to what Dedaub has created."

David Benchimol

Blockchain Security Engineer, Ironblocks

Sentio logo

"I love Dedaub decompiler"

Fuyao Zhao

CEO, Sentio

SatLayer logo

"Dedaub brought exceptional clarity and depth to our smart contract security audit. Their rigorous review and actionable insights strengthened our core protocol."

Arun Devabhaktuni

CSO at SatLayer

Eoracle logo

"The audit conducted by Dedaub on our Eoracle middleware contracts was comprehensive and successful. The team at Dedaub delivered a precise and detailed analysis, further strengthening the security of our smart contracts."

Yoni Keselbrener

Smart Contracts Team Lead at Eoracle

Stablejack logo

"Dedaub's meticulous audit process gave us invaluable insights and strengthened our protocol's security. Thanks to Yannis and the team for their expertise and collaboration!"

Ulvi Kağan Dağdeviren

Co-Founder at Stablejack

Ethereum Foundation logo

"Dedaub provided a very generous and thorough pro-bono audit of the on-chain funding mechanism for Protocol Guild, uncovering critical vulnerabilities and offering valuable insights that improved our overall security. Dedaub achieved a deep understanding of the codebase, and we had clear communication throughout the process. We highly recommend their services to others."

Fredrik Svantes

Security Researcher at Ethereum Foundation

Liquity logo

"As a returning customer, we knew Dedaub would deliver. Their expertise in DeFi security and smart contract analysis is unmatched. For Liquity V2, they identified vulnerabilities and provided key insights to optimize our protocol. Once again, Dedaub delivered flawlessly."

Bingen Eguzkitza

Head of Development at Liquity

OZ Networks logo

"The Dedaub Security Suite provides an efficient Decompiler API with an intuitive user interface for quick navigation. Its performance and speed set a high standard in the industry, making it a competitive choice for gaining data-driven security insights. The team behind Dedaub is responsive to user feedback, enhancing the overall experience."

David Daniel

Director of Threat Intelligence at OZ Networks

Fluidkey logo

"Dedaub thoroughly reviewed our TypeScript crypto library and was able to share valuable improvement recommendations."

Moritz Boullenger

Co-Founder at Fluidkey

Ironblocks logo

"I love the Dedaub decompiler—No other tool even comes close to what Dedaub has created."

David Benchimol

Blockchain Security Engineer, Ironblocks

Sentio logo

"I love Dedaub decompiler"

Fuyao Zhao

CEO, Sentio

FAQ: Smart Contract Audit Questions

Auditing smart contracts isn't just a checklist—it's how we prevent billion-dollar exploits. At Dedaub, teams ask us how we approach staking logic, oracle accuracy, and bridge risks. This FAQ covers exactly that: what we audit, why it matters, and what we've found in the wild.
Request an Audit

🔎 How do you audit oracles like eOracle?

Oracles are frequently targeted for manipulation and mispricing. We audit:

• Off-chain → on-chain data syncing logic
• Median or aggregation mechanisms
• Bridge dependency surfaces
• Flash loan exposure in pricing feeds

Dedaub secured eOracle, an AVS-integrated middleware, by uncovering and mitigating timing-based feed inconsistencies. Our review ensured high-integrity Oracle inputs for critical EigenLayer restaking logic.

⛓️ What types of risks do bridge audits identify?

Cross-chain bridges are high-value targets due to their complexity and attack surface. We review:

• Message relay logic and nonce tracking
• Replay vulnerability resistance
• Consensus bypasses and timestamp inconsistencies
• Economic misalignment across chains

We detected critical vulnerabilities in high-value decentralized bridges, highlighted by our proactive identification of a critical exploit yielding over $1 billion in potential losses, for which we were awarded a $2 million bounty.

📅 How long does an AVS audit take and what's the process?

AVS audits typically take 1–4 weeks, depending on code complexity and responsiveness.

Our process starts with a two-phase review:

Phase 1: Auditors map out the code's intended functionality—how it should behave under normal conditions.

Phase 2: They switch perspectives and act as attackers, trying to break the system by exploiting edge cases, economic loopholes, or unexpected flexibility.

Continuous peer challenge: Each audit is led by two senior researchers who push each other to uncover blind spots. If one claims a section is covered, the other challenges them to explain the hardest edge cases, forcing more profound clarity and coverage.

Multi-layer threat modeling: We don't just review isolated functions. Our auditors intentionally explore how different modules interact, simulating complex exploit paths across staking, governance, and validation layers.

Tool-assisted + human-led: Every project is uploaded into the Dedaub Security Suite, where over 70 automated vulnerability detectors, AI-based pattern matchers, and custom fuzzers run in parallel. We complement these with manual tests on anything suspicious, especially where computerized tools can't reason about business logic.

🔐 What does a staking audit include?

We analyze smart contract logic that governs delegation, validator selection, slashing, and staking economics. Key areas we check:

• Insecure delegation patterns
• Slashing condition bypasses
• Inconsistent validator quorum checks
• Economic model fragility (e.g., griefing vectors, capital inefficiencies)

Our audits have helped EigenLayer Middleware, Aethos, and Othentic launch safely by identifying critical staking vulnerabilities. Previous audits collectively secured assets exceeding $30 billion and identified and resolved numerous high-severity vulnerabilities, safeguarding critical staking infrastructure.

🔧 What makes AVS audits different from standard smart contract audits?

AVS audits require more in-depth economic modeling and a review of validator logic. Unlike standard dApps, AVS protocols rely on dynamic staking, slashing, and governance mechanisms that can collapse if assumptions break under adversarial pressure.

Dedaub's AVS audits combine traditional code analysis with simulation of validator misbehavior, restaking edge cases, and economic incentives under attack.

🧪 What tools and techniques do you use in AVS audits?

We use a blend of automated and manual techniques:

• Static analysis via the Dedaub Security Suite (70+ vulnerability detectors)
• Custom fuzzing for edge-case validator logic
• Manual simulation of delegation and governance changes
• Formal methods when necessary for economic consistency guarantees

Clients also gain access to our Security Suite portal, where they can explore the machine-generated issues our team has reviewed and prioritized.

🔄 What happens after the audit?

Once the audit begins, our team collaborates closely with your developers, reviewing the codebase, sharing early findings, and iterating through fixes as needed.

Here's what to expect:

Preliminary report: We categorize all findings by severity—Critical, High, Medium, Low, or Advisory—and walk your team through them.

Issue resolution support: Your team fixes the issues with our guidance.

Final verification: We conduct a thorough review to ensure that everything is properly resolved.

Comprehensive final report: Delivered after all fixes are validated—ready for publication or stakeholder review.

We align the process with your timeline and budget from the outset, and maintain synchronization through regular communication.

Audit Methodology

Dedaub's Security Audit teams include at least two senior security researchers and any support they may need (e.g., cryptography expertise, financial modeling, testing) from the rest of our team. We carefully match the team's expertise to your project's specific nature and requirements.
Request an Audit
Two-phase review

Two-phase review

During phase 1, the auditors understand the code in terms of functionality, i.e., in terms of legitimate use.

During phase 2, the auditors assume the role of attackers and attempt to subvert the system's assumptions by abusing its flexibility.

Constant challenging

Constant challenging

The two senior auditors will continuously challenge each other, trying to identify dark spots. An auditor who claims to have covered and to understand part of the code is often challenged to explain difficult elements to the other auditor.

Thinking at multiple levels

Thinking at multiple levels

Beyond thinking of adversarial scenarios in self-contained parts of the protocol, the auditors explicitly attempt to devise complex combinations of different parts that may result in unexpected behaviour.

Use of advanced tools

Use of advanced tools

Every AVS project undergoes analysis by Dedaub's proprietary static analyzer (including over 70 specialized algorithms), AI-driven code review, automated fuzzing frameworks, and targeted manual tests for vulnerabilities like slashing errors or quorum manipulation.

Before the audit concludes, the development team gains access to the online system with our automated analyses, allowing them to view all the machine-generated warnings that the auditors have also reviewed.

Why Dedaub?

Dedaub is a leading blockchain security and auditing firm led by PhD-level researchers and veteran white-hat hackers. Our deep academic rigor, combined with practical hacker expertise, has safeguarded over $30 billion in Total Value Locked (TVL) across DeFi and EigenLayer AVS protocols.
Request an Audit

$3M

IN BUG BOUNTIES IN 11 SUCCESSFUL CLAIMS FOR IDENTIFYING CRITICAL ISSUES

$Billions

IN TVL SECURED VIA PROACTIVE WHITE-HAT HACKING and SEAL 911 WAR ROOMS

200+

SMART CONTRACT SECURITY AUDITS FOR LEADING DEFI PROTOCOLS

Experienced

Experienced

Trusted by Leading EigenLayer AVS Projects
– EigenLayer Middleware (staking and validation security)
– eOracle (middleware integrity)
– Predicate (secure execution layer)
– Othentic (economic and staking risk modeling)

Bespoke

Bespoke

Discuss your AVS security needs with a trusted EigenLayer auditor, ensuring robust staking, governance, and execution security for your protocol.

Trusted

Trusted

Engage with our seasoned Smart Contract Auditors, renowned for their proven success and in-depth knowledge of blockchain security.

Secure your Project with Dedaub Smart Contract Audit Services

By submitting this form, you consent to Dedaub processing your personal data in line with our Privacy Policy. You can unsubscribe from communications or request data access, correction, or deletion at any time.