Trail of Bits
Basics
- Does security audits.
- Since 2012
- Clients 'ranging from Facebook to DARPA'
- Has published quite some research.
Audits
Has done audits on the following projects (among others):
- Algorand (link)
- Balancer (link)
- Compound (link)
- Loom Network
- Aave
- Aztec Protocol
- Curve (link)
- Three for MakerDAO
- Dharma
- Set (link)
Cryptic
- From their blog (15-5-2020):
"Crytic, our Github app for discovering smart contract flaws, is kind of a big deal: It detects security issues without human intervention, providing continuous assurance while you work and securing your codebase before deployment. Crytic finds many bugs no other tools can detect, including some that are not widely known. Right now, Crytic has 90+ detectors, and we’re continuously adding new checks and improving existing ones."
In the blog post they mention 12 bugs that were solely found by Cryptic across platforms.
Critiques
- As explained in this DeFi Weekly edition, Hegic had code bugs, even though it was 'audited' by Trail of Bits. What follows is a back and forth between Hegic and Trail of Bits, where it seems like Trail of Bits did not handle the situation carefully.
Team, investors, partners
Team
- Full team can be found here (9-3-2020)
- Supports the EEA
- One of the four sponsors of Week in Ethereum (1-5-2020).
- Has a partnership with Secureum and its Auditing Bootcamp (19-7-2021).
(:
Knowledge empowers all and will help us get closer to the decentralized world we all want to live in!
Making these free wiki pages is fun but takes a lot of effort and time.
If you have enjoyed reading, tips are appreciated :) This will help us to keep expanding this archive of information.
ETH tip address: 0x83460bE5F218b1520B69D702cE60A1DE37dD8E31
Also check out CoinTr.ee for more content.