Our Services
Veridise is a blockchain security company that provides audits and software analysis tools for all layers of the blockchain ecosystem, including smart contracts, zero-knowledge circuits, and blockchain implementations. Veridise is a leading player in ZKP-related security solutions and has audited (and found vulnerabilities in) several ZKP protocols, including core Circom libraries. Veridise is also a leading player in smart contract audits and has found critical vulnerabilities in projects that have been audited by multiple other security companies. Apart from providing expert auditing services, Veridise also provides automated security analysis tools that can be used by our clients for internal audits and validation. For more information about how Veridise can help your project, please check out our services!
Smart Contract Audits
Using a combination of state-of-the-art security analysis tools and a team of world-class security experts, Veridise offers comprehensive code reviews for smart contracts and DeFi protocols.
ZKP Audits
Veridise provides security audits of arithmetic circuits implementing zero-knowledge proofs. Using our internal tools and our team of ZKP experts, we can find subtle flaws and vulnerabilities in ZKP protocols.
Blockchain Audits
Veridise also offers security audits for blockchain implementations. Our team has previously found several critical denial-of-service vulnerabilities in major blockchain implementations.
Web3 Wallets and NFT Audits
Veridise can provide code reviews and security assessment for web3 wallets and NFTs.
Security as a Service
Access our tooling by connecting your project to our SaaS platform and perform security analysis in a push-button way.
How a Veridise Audit Works
Assessment
Veridise experts first assess the scope of the audit by looking at the source repository and discussing key requirements to be verified.
Review
Veridise security experts formalize key properties of your project and utilize our proprietary analysis tools to check for common vulnerabilities as well as deeper logical bugs.
Delivery
We deliver a high-quality audit report summarizing our findings and recommendations. Our reports include any uncovered vulnerabilities, their potential impact, and mitigation strategies. Veridise security experts also engage in discussions with our clients to assess the impact of any potential bug fixes.
Security as a Service
The Security as a Service (SaaS) aims at making the state-of-the-art toolings from Veridise accessible to everyone that cares about the security of their protocols. SaaS users can explore various tooling from fuzzing, static analysis to symbolic execution, all developed by Veridise, to secure their codebase while leaving the complicated environment settings and tooling configurations to SaaS, and focus on the core part of verification.
Step 1 – CHOOSE
Decide which Veridise tools are the best fit for your project.
Step 2 (Optional) – Specify
Write your own specifications or hire Veridise experts to write them for you.
Step 3 – Submit to Veridise
Upload your code (and optional specifications) to Veridise servers for automated security analysis
Step 4 – Get Results
Get results from our security analysis tools in real time and perform continuous integration.
Veridise Tooling
We pride ourselves in developing state-of-the-art security solutions for every layer of the blockchain ecosystem, ranging from web3 and DeFi applications to Zero-knowledge proofs to the underlying blockchain implementations.
Eurus
Eurus is a smart contract verifier that checks source code against [V] specifications.
Medjai
Medjai is a verifier for Cairo programs. It checks Cairo code against [V] specifications.
OrCa
OrCa is an oracle-guided smart contract fuzzer.
Picus
Picus is a security analysis tool for ZKP circuits implemented in Circom (or anything that compiles to R1CS).
Vanguard
Vanguard is a static analyzer for finding common vulnerabilities in smart contracts.
SaaS
Our Security-as-a-Service platform allows instant access to Veridise security analysis tools.