Skip to content
@PositiveSecurity

Positive Security

Web3 security research
README.md

Who are we?

We are a team of distributed ledger security researchers who provide smart contract auditing services on Ethereum, TRON, TON, Hyperledger Fabric platforms.

In our audits we use formal verification and fuzzing methods for deep and comprehensive analysis of code security. We also actively investigate the security of projects with zero knowledge and related cryptography.

We run CTF competitions on various platforms that cover not only the challenges of cracking smart contracts, zero disclosure projects (ZKP) and cryptography, but also aim to develop the formal verification skills of the community.

Contacts:

Pinned Loading

  1. zk-audit-guide zk-audit-guide Public

    Checklist for security audit of ZKP projects by @positivesecurity

    33

  2. tron-audit-guide tron-audit-guide Public

    Checklist for security audit of tron projects by @positivesecurity

    25 4

  3. ton-audit-guide ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    43 5

  4. PositiveCTF-EVM PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    Solidity 23 15

Repositories

Showing 10 of 13 repositories
  • BlendV2-FV Public

    Blend v2 (Stellar) Certora FV Competition (Feb 2025, #4 place)

    PositiveSecurity/BlendV2-FV’s past year of commit activity
    Rust 0 0 0 0 Updated Aug 26, 2025
  • PositiveCTF-TON Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-TON’s past year of commit activity
    Tact 0 1 0 0 Updated Aug 14, 2025
  • aquarius-cantina-fv Public

    Aquarius (Stellar) Certora FV Competition (Jun 2025, 🏆#1 place)

    PositiveSecurity/aquarius-cantina-fv’s past year of commit activity
    Rust 0 Apache-2.0 0 1 0 Updated Jun 18, 2025
  • ton-graph Public

    VSCode extension for visualizing function call graphs in TON smart contracts. Built with Mermaid.js by @PositiveSecurity

    PositiveSecurity/ton-graph’s past year of commit activity
    TypeScript 3 MIT 1 0 0 Updated Jun 9, 2025
  • PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-EVM’s past year of commit activity
    Solidity 23 15 0 0 Updated May 30, 2025
  • ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    PositiveSecurity/ton-audit-guide’s past year of commit activity
    43 5 0 0 Updated Feb 26, 2025
  • .github Public
    PositiveSecurity/.github’s past year of commit activity
    0 0 0 0 Updated Dec 2, 2024
  • ConCert Public Forked from AU-COBRA/ConCert

    A verified implementation of the DEX/AMM protocol in ConCert

    PositiveSecurity/ConCert’s past year of commit activity
    Coq 3 MIT 22 0 0 Updated Sep 25, 2024
  • zk-audit-guide Public

    Checklist for security audit of ZKP projects by @PositiveSecurity

    PositiveSecurity/zk-audit-guide’s past year of commit activity
    33 0 0 0 Updated Sep 12, 2024
  • tron-audit-guide Public

    Checklist for security audit of tron projects by @PositiveSecurity

    PositiveSecurity/tron-audit-guide’s past year of commit activity
    25 4 0 0 Updated Sep 11, 2024
View all repositories