GETSecured - Automated Smart Contract Audit Platform

The holy grail of security on chain for every chain

Comment

Inspiration

Cybersecurity is one of the fundamental principles of any blockchain-based solution. Unfortunately, we are seeing a lot of data breaches these days where malicious users are managed to hack the smart contracts or exploit some weakness or security vulnerabilities to gain access to others' money and steal it. A lot of such incidents could have been easily avoided if the developers have a convenient tool to check for security vulnerabilities in their code before deploying it to the network. Most of the tools are pretty complex to set up and run. Hence I thought of building a tool that is very easy, simple and convenient for developers to use to scan their code and fix the vulnerabilities in their code.

What it does

This is an automated smart contract security audit tool that can help developers to scan their source code for any security vulnerabilities and help them to fix bugs in their code. Developers can upload their smart contract solidity code as a zip file and then get a scan result with a summary and detailed report on the vulnerabilities found.

How we built it

I have looked into a lot of other security audit tools, tried to understand their pros and cons and then with my combined observations, tried to build this tools that addresses a few of the gaps and limitations that other tools have.

Challenges we ran into

Essentially, the most difficult two challenges I faced are,

  1. How can I simplify the user experience for someone to try a security audit tool and also understand what's the problem and how to fix them
  2. Find relevant and suitable vulnerabilities that are important to the project as well as for the developers.

Accomplishments that we're proud of

Creating the tool that runs the scanning on a given set of source code and finds relevant vulnerabilities.

What we learned

Learned how to run various security audit tools. Also, learned the TRON network and how to deploy smart contracts in the Shasta network

What's next for GETSecured

We would like to launch this as a full-fledged tool to help the entire development community.

Built With

Share this project:

Updates