Securing Ethereum
Smart Contracts since 2017
Smart Contract Audits for Ethereum protocols and institutions. Supercharged by AI agents, guided by veteran experts.
Collaborations to help Ethereum win
References
Trusted by teams building the most critical infrastructure across Ethereum.
Request an audit and partner with a veteran boutique team that puts your security and success at the center.
Audit Services
Top quality audits, performed by experts, supercharged by agents.
Powered by Super Chonky
Developed by tintinweb
Expert guided agentic auditing is the new standard.
Expert auditors are still the key to highest quality security. Receive a best-in-class report by humans orchestrating agents through a custom workflow and verifying findings.
Agentic Scan before Audit
Use Chonky right from beginning of your development lifecycle. Reduce security debt, secure early.
Supercharged Expert Audit
Agentic efficiency and expert knowledge combined. While Chonky finds known vulnerabilities our veteran auditors discover and verify deep and complex attack vectors.
Continuous Agentic Scans
Make Chonky part of your team. Your personal audit assistant customised and integrated to your workflows.
Our specialisation
Smart Contract Testing + Audits
Highest quality code reviews to prevent costly hacks and signal a strong security stance.
Incident Response Planning
Attacks will happen, be ready to react and stop the hack. We show you how.
Pre-audit security assessment
Building securely right from the beginning avoids security debt and saves you costly rewrites and exploits.
SNAP Security Review
As Consensys Alumni we know the MetaMask Threat Model inside out. We find what others miss.
Pioneering fuzzing for complex systems
Fuzzing complements audits: fuzzers monitor your codebase to automatically, and therefore cost effectively, catch bugs early in the development lifecycle. We build specialized fuzzer to catch critical bugs in complex systems that would be hard to find otherwise.
zkVM / zk Systems
Critical Vulnerabilities detected:
circom
Smart Contracts
Continuous fuzzing for:
Compilers
Critical Vulnerabilities detected:
Solidity
Testimonials
"We appreciate the Consensys Diligence team for taking on a very broad audit scope for Lido V3 and for maintaining a steady cadence of updates throughout the process. Their work went beyond surface-level issues and consistently challenged core design assumptions from the early stages, which helped us materially improve the codebase. Overall, the engagement contributed to a more robust and well-reasoned implementation."
— Eugene Mamin, CTO at Lido
"Working with the Diligence team has significantly strengthened the security of gnark since 2024. Their specialized fuzzers, Rio and Circuzz, have been continuously stress-testing our codebase for almost two years—uncovering at least three soundness and three completeness bugs that traditional methods missed. This kind of sustained, rigorous testing is indispensable for the mathematical integrity of the Linea ecosystem."
— Ivo Kubjas, Gautam Botrel, Gnark Team at Linea
"The Diligence team is truly world-class. From day one, they've been thoughtful, rigorous, and deeply collaborative. They don't just move through a checklist - they take the time to understand your architecture, your objectives, and the nuanced mechanics of your protocol. They approach the engagement like true partners, as invested in your project's success as you are. What stands out most is their professionalism and sense of ownership. Communication is proactive and clear, findings are actionable and well-reasoned, and the team consistently operates with a builder's mindset. If you're building serious onchain infrastructure and want an audit partner you can trust completely, this is the gold standard."
— Billy Luedtke, Founder at Intuition
Technology & Research
Tools to make security work easier
It is almost a tradition to develop and publish tools that make the lives of security researchers easier and help developer to create more secure code. Here is a selection of tools from 2017 until today.
Academic research
Together with Prof. Dr. Maria Christakis and her group we dedicate time to research and publishing.
Blog
The latest from our Blog
How Consensys Diligence Secures MetaMask Snaps and Linea
This blog highlights Diligences work across Consensys in auditing MetaMask Snaps and Linea components.
Tobias Vogel
May 23, 2024
Diving deep into Audit Contests Analytics and Economics
It’s been a couple of years since code4rena has introduced competitive audits into the smart contract security …
Joran Honig
Apr 12, 2024
You're missing out! If you're not writing detection modules.
We recently released a new tool called napalm, a detection module IDE. Napalm makes it easy to set-up a multi-tool …
Joran Honig
Feb 21, 2024
Unleashing Napalm
Attention, all auditors and security researchers! We’ve got a new tool for you! You’re a security researcher and you …
Joran Honig
Jan 31, 2024
EthTrust - The Frontier of Smart Contract Security Standards
Enterprise Ethereum Alliance (EEA) shapes the most mature standard for smart contract security. Consensys Diligence contributes to the EthTrust Security Levels Specification, spearheaded by the EEA EthTrust Security Levels Working Group.
Consensys Diligence
Dec 18, 2023
GLIF: DeFi Innovation on Filecoin With Zero-Compromise Security
Learn how an audit by the Diligence team made GLIF’s smart contracts and protocol more secure.
Consensys Diligence
Dec 8, 2023
Tidal Finance: Crypto-Native Insurance For A Crypto-Native Economy
This blog post discusses Tidal’s engagement with Consensys Diligence to audit the protocol’s on-chain insurance smart contracts.
Consensys Diligence
Dec 8, 2023
How To Write Robust And Sustainable Smart Contracts
Consensys Diligence provides actionable tips on building secure and robust smart contracts in web3.
Emmanuel Awosika
Sep 19, 2023
Reproducing the DeusDao exploit with Diligence Fuzzing
On May 6th 2023 DeusDao was exploited resulting in $6.5M in losses. A detailed write-up of the event can be found here. …
Dimitar Bounov
Aug 1, 2023
Diligence Fuzzing Now Supports Foundry Projects
Announcing Diligence Fuzzing support for all Foundry developers to ensure easy and efficient smart contract security.
Emmanuel Awosika
Aug 1, 2023
Endeavors into the zero-knowledge Halo2 proving system
Consensys Diligence explains the Halo2 zero-knowledge prover and highlights bugs that can affect security of Halo2 circuits.
Rai Yang
Jul 26, 2023
Why Your Web3 Project Needs A Bug Bounty Program
Crypto hacks are costing projects millions in user funds. Bug bounty programs can help prevent exploits and secure the …
Consensys Diligence
Jun 21, 2023
Charting The Web3 Security Landscape
An overview of the emerging web3 security stack and industry.
Consensys Diligence
May 9, 2023
Consensys Diligence and Socket partner for secure Socket Liquidity Layer smart contracts
While smart contract systems of today have the capability to be deployed with permissions, upgradeable proxies, and ways …
Consensys Diligence
Apr 25, 2023
Benchmarking Smart-Contract Fuzzers
Helping users with selecting a suitable fuzzer
Valentin Wüstholz
Apr 19, 2023
