Skip to content
@PositiveSecurity

Positive Security

Web3 security research
README.md

Who are we?

We are a team of distributed ledger security researchers who provide smart contract auditing services on Ethereum, TRON, TON, Hyperledger Fabric platforms.

In our audits we use formal verification and fuzzing methods for deep and comprehensive analysis of code security. We also actively investigate the security of projects with zero knowledge and related cryptography.

We run CTF competitions on various platforms that cover not only the challenges of cracking smart contracts, zero disclosure projects (ZKP) and cryptography, but also aim to develop the formal verification skills of the community.

Contacts:

Pinned Loading

  1. zk-audit-guide zk-audit-guide Public

    Checklist for security audit of ZKP projects by @positivesecurity

    34

  2. tron-audit-guide tron-audit-guide Public

    Checklist for security audit of tron projects by @positivesecurity

    23 4

  3. ton-audit-guide ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    40 5

  4. PositiveCTF-EVM PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    Solidity 22 15

Repositories

Showing 10 of 11 repositories
  • ton-graph Public

    VSCode extension for visualizing function call graphs in TON smart contracts. Built with Mermaid.js by @PositiveSecurity

    PositiveSecurity/ton-graph’s past year of commit activity
    TypeScript 3 MIT 1 0 0 Updated Jun 9, 2025
  • PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-EVM’s past year of commit activity
    Solidity 22 15 0 0 Updated May 30, 2025
  • PositiveCTF-TON Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-TON’s past year of commit activity
    Tact 0 1 0 0 Updated May 30, 2025
  • ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    PositiveSecurity/ton-audit-guide’s past year of commit activity
    40 5 0 0 Updated Feb 26, 2025
  • .github Public
    PositiveSecurity/.github’s past year of commit activity
    0 0 0 0 Updated Dec 2, 2024
  • ConCert Public Forked from AU-COBRA/ConCert

    A verified implementation of the DEX/AMM protocol in ConCert

    PositiveSecurity/ConCert’s past year of commit activity
    Coq 3 MIT 22 0 0 Updated Sep 25, 2024
  • zk-audit-guide Public

    Checklist for security audit of ZKP projects by @PositiveSecurity

    PositiveSecurity/zk-audit-guide’s past year of commit activity
    34 0 0 0 Updated Sep 12, 2024
  • tron-audit-guide Public

    Checklist for security audit of tron projects by @PositiveSecurity

    PositiveSecurity/tron-audit-guide’s past year of commit activity
    23 4 0 0 Updated Sep 11, 2024
  • discussions Public
    PositiveSecurity/discussions’s past year of commit activity
    0 0 0 0 Updated Jul 29, 2024
  • blockscout-go-api Public

    Golang client for Blockscout API

    PositiveSecurity/blockscout-go-api’s past year of commit activity
    Go 1 MIT 2 0 0 Updated Apr 6, 2024
View all repositories