nowarp
Professional smart contracts audits and security tooling
Security Tools
Misti
Static analyzer that finds security vulnerabilities, TON-specific pitfalls, and optimization opportunities in smart contracts. Fully automatic, open-source, and extensible for third-party security researchers. Learn how it works and try it yourself...
Scanner
Web-interface to the demo version of mass-scan that runs code analysis over contracts publicly available on verifier.ton.org and GitHub. Only a couple of these contracts are displayed - manually verified projects that don't contain any vulnerabilities. Try the scanner...
Smart Contract Audits
Professional smart contracts security assessment through rigorous manual review and formal specification/verification when needed.
Approach
- Small experienced technical team
- Clear communication and formalized processes
- We only accept projects we can thoroughly verify
- Once engaged, we support you through all stages
References available upon request.
Contacts
Latest Posts
All posts →Compiler Testing — Part 1: Coverage-Guided Fuzzing with Grammars and LLMs
How coverage-guided fuzzing and LLM-assisted mutators adapt to smart-contract compilers. 100+ bugs found across Sui Move, Cairo, Solang, Solidity, and Leo.
Skry: Hybrid LLM Static Analysis for Sui Move
A hybrid static analysis + LLM security tool for Sui Move, focused on access control, governance, and centralization issues.
TON Security Risks: A Static Analysis Perspective
Exploring static analysis capabilities and limitations for TON smart contracts security through Misti.