3rd-party Lists
- SlowMist Hacked - SlowMist Zone
- saeidshirazi/Awesome-Smart-Contract-Security - A curated list of Smart Contract Security materials and resources For Researchers
- slowmist/Blockchain-dark-forest-selfguard-handbook - 区块链黑暗森林自救手册
- knownsec/Ethereum-Smart-Contracts-Security-CheckList - 以太坊合约审计checkList - 2019停更,都是老问题,很多高版本solc已经避免了
- slowmist/Knowledge-Base - 慢雾安全团队知识库
- freebuf: 数字货币钱包安全白皮书 - 360团队在2018阿年编写,主要是SPV系统环境和一些传统问题,没啥用
- x676f64/secureum-mind_map - This content is for the Secureum Epoch0 Bootcamp for Smart Contract auditng. The plan is to grow this over time. Pull requests accepted
- Blockchain Threat Intelligence - 每周更新
- 1522402210/BlockChain-Security-List - BlockChain-Security-List About cryptocurrency security. (reverse, exploit, fuzz..)
- gokulsan/awesome-blockchain-security-platforms
Code Audit
- fravoll/solidity-patterns - A compilation of patterns and best practices for the smart contract programming language Solidity
- SWC Registry - Smart Contract Weakness Classification and Test Cases
- solc - List of known bugs
- OpenZeppelin/openzeppelin-contracts - OpenZeppelin Contracts is a library for secure smart contract development
Dynamic Analysis
Static Analysis
- palkeo/panoramix - Ethereum decompiler - etherscan在用
- trailofbits/pyevmasm - Ethereum Virtual Machine (EVM) disassembler and assembler
- crytic/slither - Static Analyzer for Solidity
- ConsenSys/mythril - Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains
- trailofbits/rattle - an EVM binary static analysis framework designed to work on deployed smart contracts
- quoscient/octopus - Security Analysis tool for WebAssembly module and Blockchain Smart Contracts (BTC/ETH/NEO/EOS)
Uncategorized