Bitcoin Forum

I am interested to find out about trusted audit providers. The audit report being publicly viewable is absolutely essential.

So far I have found the following;

Trail of Bits
OpenZeppelin
Consensys Diligence
Kudelski Security
Certik

Let me know what you think of those five and feel free to add any other trusted auditors.

I need this to have a different perspective on the coin/token of my choice.

Those were trusted audit companies but i never heard about kudelsky and trail of bits. Im feeling curious about what project that used those companies service.


I will add some like hacken and chain security. These audit platforms have so many clients like WBTC and etc.
Audit was totally needed. BTW any parties have different metrict to audit the codes. This will be decreasing the chance for the vulnerability to happen since the code gets tested from the various formula.

Actually I am more familiar with the last one certik foundation but it has also some negative publicity. I also read some projects which are audited by them still experiencing such hack or breach through the smart contract. So what does it mean? It's just a fine layer of security which has been breached unfortunately. But when they are asked what happened they will tell you that it happened all the time. So do you think they are credible for that reason? As if there is a vulnerability that will occur if not now later on.

slow mist and peckshield is also famous but usually all auditor give full report for public to see right?

and for this i think no one si perfect hahaha hacker always find new bug. but if project get hacked it become new source to check for another project

I think I've heard some of it like "Certik and Consensys" but the three others are not familiar to me. Anyway IMO, I believe that auditing smart contracts are highly technical work and must have the expertise to do that, but as I said many times that there is no perfect system that was made by humans everything is subjected to flaws and errors that's why all systems in the world are flawed and needed an update from time to time so that those errors will be fixed.

Only feeling familiar with certik, consensys and zeppeling but i guess zeppelin was the most trusted auditors and i can call that this is the most reliable one from the list. Consensys could become the second place but i think that almost all people are always using the smartcontract that is programmed by open zeppelin. I have seen this in so many smartcontract that issued by the various projects if they were using or taking the source code of smartcontract from open zeppelin. I can say that the code was safe but that needs a little audit. that's why i trust open zeppeling rather than another service.

No problem. Anyone has their own opinion regarding it. Having some opinions about auditors were also good when it comes to help you to know which was the most reliable party to audit the code of your smartcontract.
It's not something wrong but people who are familiar with certik as exchange sites will need audit from certik as a requirement.

Usually, I am guided by certic and rugpull. Certik provides a long audit with all aspects be reviewed, while rugpull just has a rating of defi-projects and give a short review of what to pay attention to if you want to invest. It is essential to do research before investing so you need information, but the thing is that you can't always rely only on your knowledge so it is great when there are some professionals who can share there opinion.