Ethereum Virtual Machine Security

Blog post 246 of the most common Smart Contract security issues found while conducting audits.

Key facts and discussion about the Smart Contract auditing process.

Database that organizes security information for dApps and Smart Contracts.

Wargame in which you hack Ethereum Smart Contracts to learn about security best practices.

CTF challenges to learn about Smart Contract security.

Blog post with an overview of common Smart Contract vulnerabilities.

Wargame to learn how infamous DeFi hacks were conducted.

CTF / Wargame focused on popular DeFi Exploits and Vulnerabilities.

Knowledge Base of adversary tactics and techniques based on real-world observations on DeFi.

Reference document that outlines best practices for intermediate Solidity programmers.

CTF / Wargame to learn about Smart Contract security.

Interactive wargame that teaches you Ethereum Virtual Machine (EVM) security fundamentals.

Community for security-focused Ethereum researches & developers.

Mastering Ethereum's chapter about Smart Contract Security.

Collection of Smart Contract implementations showcasing the most prominent security issues.

OpenZeppelin's official Blog about Blockchain- and Smart Contract security.

Ethereum-focused CTF-style security competition.

Checklist with 14 different best practices when working on Smart Contract projects.

Peckshield's Blog about Smart Contract security.

Community-drive resource for Ethereum Virtual Machine (EVM) Smart Contract developers.

Deep dive into security considerations when working on Ethereum Smart Contracts and dApps.

CTF dApp built based on vulnerable Smart Contracts to exploit.

Key facts and discussion about various Smart Contract attack vectors.

Long-form blog post outlining common Ethereum Virtual Machine (EVM) attack vectors.

Collection of Smart Contract attack vectors and preventative methods.

Checklist to standardize the security of Smart Contracts.

Opinionated security and quality standard for Smart Contracts written in Solidity.

Blog post which outlines important tips and techniques to hard Smart Contracts written in Solidity.

Database that catalogs Smart Contract weaknesses.

Collection of real-world ERC-20 Token implementations with unexpected behavior.

Tool to simplify Ethereum Virtual Machine (EVM) security analysis and testing.

Docker container preconfigured with security tools for Ethereum Virtual Machine (EVM) Smart Contracts.

Symbolic execution tool to analyze Smart Contracts.

Security analysis tool for Ethereum Virtual Machine (EVM) bytecode.

Security analysis tool for closed-source bytecode.

Static analysis framework for Ethereum Virtual Machine (EVM) Smart Contracts.

Security scanner for Ethereum Virtual Machine (EVM) Smart Contracts.

Solidity static analysis framework.

Mutation testing framework for Ethereum Virtual Machine (EVM) Smart Contracts.

Verifier for Ethereum Virtual Machine (EVM) Smart Contracts.

Collection of Solidity Smart Contracts optimized for gas savings and security.

Security Operations Platform for Ethereum.

Linting utility that helps you write more standardized and secure Solidity code.

Code coverage reports for Smart Contracts written in Solidity.

Visual Studio Code extension optimized for Solidity developers and auditors.

Collection of opinionated Smart Contracts optimized for gas savings and security.

Library for secure Smart Contract development with the Solidity programming language.

Frequently asked questions about Smart Contract development on the Ethereum Virtual Machine (EVM).

OpenZeppelin's official forum for Smart Contract developers.

Hands-on tutorials and explainers to learn Smart Contract development on Ethereum Virtual Machine (EVM) chains.

This Tutorial by Trail of Bits teaches you everything you need to know about Smart Contract security.

Learn how to write maintainable Smart Contracts.