The Software Economist Blog: Ethereum and smart contract security tools summarized

Monday, February 12, 2018

Ethereum and smart contract security tools summarized

Some of the most important tools for testing ensuring or improving the security for your smart contract are the followings. Even if some of them are pretty much in a beta phase, it is practical to list them:

- OpenZeppelin: Solidity library for writing secure smart contracts:

https://github.com/OpenZeppelin/zeppelin-solidity

- Oyente: analysis tool for smart contracts:

https://github.com/melonproject/oyente

- SolCover: Solidity testing code coverage

https://github.com/sc-forks/solidity-coverage

- SolGraph: visualizing structure and control flow of solidity contracts

https://github.com/raineorshine/solgraph

- Vyper: new experimental and more secure programming language for Ethereum smart contracts

https://github.com/ethereum/vyper

- Securify: formal verification initiative for solidity smart contracts

https://securify.ch/

- SmartCheck: another verification tool for looking for wrongly implemented patterns
https://tool.smartdec.net/

- Ganache: more UI and user friendly testrpc

https://github.com/trufflesuite/ganache


"On a long enough timeline we will all become Satoshi Nakamoto.."
Daniel Szego

	*Daniel Szego*
Having spent one and a half decade in software development, engineering, R&D, project management and leading software companies; and having two master degrees one in engineering and one in business administration, I thought I summarize some of my theoretical and practical thought on the software industry and enterprise softwares.

	Contact