<><><>Risk Reasons</> - contextual reasons explaining why a risk is present (e.g.,a malicious label)</><>

<><>As blockchain adoption accelerates, so do the sophistication and scale of on-chain threats, including scams, exploits, money laundering, and sanctioned activities. Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK's threat intelligence models.</> This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<><>As blockchain adoption accelerates, so do the sophistication and scale of on-chain threats, including scams, exploits, money laundering, and sanctioned activities. Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation.&nbsp;<>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK’s threat intelligence models.</>&nbsp;This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<><>Risk Reasons</> - contextual reasons explaining why a risk is present (e.g.,a malicious label)</><>

<><>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK's threat intelligence models.</> This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>As blockchain adoption accelerates, so do the sophistication and scale of on-chain threats, including scams, exploits, money laundering, and sanctioned activities. Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK's threat intelligence models.</> This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>As blockchain adoption accelerates, so do the sophistication and scale of on-chain threats, including scams, exploits, money laundering, and sanctioned activities. Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation.&nbsp;<>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK’s threat intelligence models.</>&nbsp;This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>As blockchain adoption accelerates, so do the sophistication and scale of on-chain threats, including scams, exploits, money laundering, and sanctioned activities. Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation.&nbsp;SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK’s threat intelligence models.&nbsp;This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK's threat intelligence models.</> This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK’s threat intelligence models.</> This empowers developers, compliance teams, and security platforms to make faster, data-driven decisions in identifying high-risk entities, preventing fraudulent activity, and enforcing regulatory and protocol-level security standards.</><>

<>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight addresses this gap by providing structured entity-behavior labeling and risk analytics backed by dynamic on-chain telemetry and CertiK’s threat intelligence models.</> designed to enhance security, compliance, and transparency across the blockchain ecosystem. It leverages a real-time API framework to deliver actionable insights by aggregating, classifying, and analyzing data from wallets, smart contracts, and transactions.</><>

<>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation. <>SkyInsight is CertiK's on-chain intelligence and risk analytics platform</> designed to enhance security, compliance, and transparency across the blockchain ecosystem. It leverages a real-time API framework to deliver actionable insights by aggregating, classifying, and analyzing data from wallets, smart contracts, and transactions.</><>

<>Traditional monitoring systems lack the granularity and real-time context required for effective detection and mitigation.&nbsp; <>SkyInsight is CertiK's on-chain intelligence and risk analytics platform</> designed to enhance security, compliance, and transparency across the blockchain ecosystem. It leverages a real-time API framework to deliver actionable insights by aggregating, classifying, and analyzing data from wallets, smart contracts, and transactions.</><>

Crypto High-Rollers Go Big on Bodyguards to Deter Kidnappers

Name

Request the latest threat intelligence and newest custom research based on relevant Web3 contextual factors. This unique service is the only way to unlock direct access to CertiK Intelligence Analysts

See the API endpoints section for a more detailed description of each endpoint.

When an error is encountered, you will receive an HTTP status code along with a message and error code in the body of your query response. We use the following status codes for errors:

Account Settings

Profile

Sign Out

Watchlists

Have your code reviewed by CertiK’s team of seasoned security experts, who have audited 1000’s of projects

Effective findings culminated through performing thousands of audits and a cross-check against a large internal database of security vulnerabilities.

Receive rich reporting, covering findings and recommendations on on how to remediate vulnerabilities.

Our unparalleled expertise in Web3 security and risk management ensures that clients make informed decisions about their investments.

Architectural Support for Programming Languages and Operating Systems

Whether a project has been audited by CertiK

Smart Contract Audit Process

Audited by CertiK

Active Bounty

CertiK Contract Verified

CertiK Formal Verification

CertiK KYC

CertiK Penetration Testing

CertiK Skynet

Top 10% Code Security Score

Top 10% Community Trust Score

Top 10% Fundamental Health Score

Top 10% Governance Strength Score

Top 10% Market Stability Score

Top 10% Operational Resilience Score

Top 10% Security Score

Top 10% Trust Score

Top 10% Watchlisted

CertiK is Web3's leading smart contract auditor and provides a comprehensive suite of tools to secure the industry at scale.

Provable Trust For All.

Elevating Your Entire

Journey

Identify and eliminate security vulnerabilities in blockchains, smart contracts, and Web3 apps using the most rigorous and thorough cybersecurity techniques.

You can now discover projects within the same categories or ecosystems, by clicking the ecosystem icon or category tag within their security leaderboard columns.

ACM Conference on Computer and Communications Security

Crowdsourcing from a list of the world's top ethical hackers to provide you continuous assessment, for uncovering vulnerabilities before anyone else does.

About

Blogs

We're Hiring

Disclaimer

Worker Validation

Partnership

Research

Resources

Testimonials

Ventures

The research department's work spans blockchain security, smart contract verification, and system security, covering critical domains like Mobile Systems, Trusted Execution Environments, and Decentralized Physical Infrastructure Networks.

Comprehensive Research

CertiK audits all of Web3, from decentralized applications to the blockchains they’re built on. We work closely with clients to deliver tailor-made security solutions.

Leverage industry experts for market analysis and data-backed insights, keeping a pulse on the overall market

Research & Analysis Expertise

Our industry-leading audit methodology and tooling includes a review of your code’s logic, with a mathematical approach to ensure your program works as intended.

Our industry-leading L1 chain auditing process combines expert manual review of smart contract code with advanced AI and mathematical techniques to ensure blockchain protocols work as intended.

CertiK’s speed in execution of audits at scale leaves the competition behind. But don't just take our word for it, listen to what our customers are saying:

Every smart contract audit involves comprehensive manual review by our team of experienced security experts. Automated AI-powered review provides an additional layer of security. Formal verification is an optional further step that certifies smart contract behavior with respect to custom function specifications. This helps developers get a handle on the entire scope of their platform.

How Does a Smart Contract Audit Work?

Every audit involves comprehensive manual review by our team of experienced security experts. Formal verification certifies L1 chain code behavior with respect to custom function specifications, helping developers get a handle on the entire scope of their platform. The process of auditing an L1 is the same as for auditing a smart contract. The five-step process is as follows:

Report an incident if you are under cyber attack and need help!

24/7 Incident Response

Our researchers' expertise and insights are also showcased at major industry conferences, such as BlackHat, DEFCON, HITB, POC, and CanSecWest, where they share groundbreaking findings with the global security community. This engagement not only underscores CertiK's position as a thought leader but also strengthens its role in shaping the future of cybersecurity standards.

This dedicated team is at the cutting edge of security research, advancing core areas of formal verification, cryptographic integrity, and zero-knowledge proof systems.

Advancing Security Innovation

At CertiK Ventures, our evolving investment thesis serves as both a guiding framework and an open invitation for collaboration. 
We believe the best ideas emerge through dialogue and collective wisdom. This living document reflects our thinking as of November 2024 and will continue to evolve with the industry. We welcome your engagement and input as we refine our approach and push the boundaries of what’s possible in crypto and blockchain.

An L1 chain audit provides a comprehensive security assessment of a Layer 1 blockchain to identify vulnerabilities and recommend ways to fix them.

CertiK has audited nearly a dozen L1s, along with projects written in all major programming languages, thousands of Web3 projects, and tens of thousands lines of code. As a pioneer in the blockchain security industry, CertiK brings expertise that can only be gained from years of experience with thousands of projects to each and every L1 chain audit.

Through a powerful blend of academic rigor and industry acumen, CertiK's research department continues to drive transformative solutions to meet the complex security challenges of blockchain and emerging technologies. With our focus on applied research and a proven record of impactful discoveries, CertiK's research team stands as a leading force in advancing cybersecurity for Web3 and beyond.

Skynet Leaderboard

Network and Distributed System Security Symposium

What's New

Visit the project’s profile page directly for more details about their status. Some projects may temporarily display as ‘Pending’ but will be available soon.

CertiK has audited thousands of Web3 projects and tens of thousands lines of code written in all major smart contract programming languages.

We bring expertise that can only be gained from years of experience with thousands of projects to each and every audit.

When it comes to security, only the best will do.

Proceedings of the ACM on Programming Languages

Connect portfolio companies to CertiK's extensive partner network for accelerated growth

Ecosystem Partnerships

productsItemDescription.security-scores-ranking

productsItemDescription.skynet-scores-ranking

SkyNode

Advisory Service

Bug Bounty

productsItemTitle.compliance-aml

Formal Verification

Incident Response

Team Verification

L1 Chain Audit

Penetration Testing

Security Score

Security Scores & Ranking

Sky Harbor

SkyHarbor

SkyInsights

Skynet

Skynet Score

SkyTrace

Smart Contract Audit

Web 3 Security Audit

Protect Your Project Today

Apply to CertiK Ventures

Founded in December 2017 by professors from Columbia and Yale, CertiK stands at the forefront of blockchain and Web3 security, pioneering advancements in Formal Verification and AI-driven technologies to safeguard blockchains, smart contracts, and decentralized applications. As a recognized leader in the field, CertiK's mission is to establish resilient standards across the rapidly evolving Web3 landscape, ensuring that emerging technologies are secure and reliable for global adoption.

The CertiK research department is composed of a highly specialized team of researchers and engineers, combining expertise from prestigious academic institutions, including Yale, Georgia Tech, Tsinghua, and Peking University, with industry veterans from Microsoft, Samsung, and Intel.

CertiK Research

Security Score evaluates a project’s real-time security posture using on-chain and off-chain data.

Sign up and gain access to curated features like watchlist and so on in two simple steps.

SkyHarbor can quickly identify vulnerabilities or suspicious activities in your system, ensuring that your assets are safe and secure.

Actively monitor on-chain smart contracts in real time and present actionable security and Web3 app data insights for the community.

A comprehensive security assessment of your smart contract and blockchain code to identify vulnerabilities and recommend ways to fix them.

What’s in a Smart Contract Audit Report?

smartContractAuditSubtitle

The team's focus is not only on theoretical advancements but also on implementing practical solutions that elevate security standards in these high-stakes areas.

Practical Security Solutions

Provide not just financial backings but also operational expertise to founders

Financial & Business Support

Invest in projects centered around blockchain security and Web3 advancement

Tech Development & Security Focus

IEEE Transactions on Information Forensics and Security

An index measuring a crypto project's relative security, market performance, and social sentiment

Providing the largest coverage on languages and ecosystem, as well as faster onboarding options, depending on project code size.

Explore growth opportunities with CertiK Ventures.

As a Builder, Grown with Builders, Growth with Builders

CertiK Ventures is a initiative from CertiK to contribute back to its long-serving builder community. It acts as the Research, Investment and Incubation arm of CertiK.

CertiK Ventures

Clients receive rich reports on their smart contract code, complete with comprehensive vulnerability analyses and recommended remediations.

CertiK KYC provides private identity verification for project teams through a rigorous vetting process while maintaining the highest standards of data protection.

Welcome to CertiK’s Hack3d report for Q1 of 2025! During this quarter, hackers stole more than $1.6 billion across 197 security incidents. These figures represent an approximate 303.38% increase in value lost compared to the previous quarter, the majority of which is due to the Bybit exploit, the largest crypto theft in history. In our report, we discuss the latest trends in Web3 security, including an analysis of the most prominent attack vectors and targeted chains. We also highlight a variety of our recently-published technical and educational resources.

Hack3d: The Web3 Security Quarterly Report - Q1 2025

Welcome to Hack3d: The Web3 Security Report for 2024. CertiK’s Hack3d reports offer deep dives into the exploits, vulnerabilities, and trends that define blockchain and smart contract security. They’re an invaluable resource for anyone seeking to understand the current landscape of Web3 security.

Hack3d: The Web3 Security Report 2024

A total of $688,102,941 was lost across 184 onchain security incidents in Q2 2024. This represents a 37% increase in value lost compared to Q1 2024, though there was an 18% decrease in the number of incidents quarter-over-quarter.

Hack3d: The Web3 Security Quarterly Report - Q2 + H1 2024

Skynet Quest is a brand new platform that unlocks Web3 security with engaging learning experiences and tools. By completing quests, users gain practical knowledge of Web3 security, earn rewards, and unlock valuable tools. Whether you're new to Web3 or a seasoned expert, Skynet Quest has something to teach everyone.

Introducing Skynet Quest: The Web3 Security Journey of a Lifetime

A total of $502,522,934 was lost to 223 hacks, scams, and exploits throughout the first quarter of 2024. Check out our comprehensive report for all the statistics, data, and analysis you need to understand the current state of onchain security.

Products & Technology

Featured Ecosystems

Company