Request an Audit

Interested in working together? Drop us a few details and we'll reach out within 24 hours to schedule a call and discuss your needs.

* Required fields

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

What to Expect

No need to write an essay. Just share the basics and we'll reach out to understand your needs through a quick conversation.

  • 1Submit the form with as much or as little detail as you'd like.
  • 2We'll reach out within 24 hours to schedule a call and discuss your project live.
  • 3Together we'll scope out what makes sense for your timeline and budget.

Most teams prefer a quick chat over filling out forms. We get it.

Other Ways to Reach Us

contact@cybasecurity.io@CybaSecurity@CybaSecurity
Privacy

Your Privacy

Please see our privacy policy regarding how we will handle this information.

Frequently Asked Questions

Common questions about blockchain security audits

What does a blockchain security audit include?
A blockchain security audit is a comprehensive review of your smart contract code performed by experienced security engineers. It involves manual code review, automated analysis, and testing to identify vulnerabilities, logic errors, and potential exploits. We examine access controls, economic attack vectors, integration risks, and compliance with best practices to ensure your contracts are secure and function as intended.
How long does an audit usually take?
The duration depends on the complexity and size of the codebase. A typical audit ranges from 1-4 weeks. Simple contracts may take less time, while complex DeFi protocols or large codebases require more thorough review. We provide accurate timelines after reviewing your specific project scope.
Do you provide a public report?
Yes, upon completion we provide a comprehensive audit report. You can choose to keep it private or publish it publicly. A public report demonstrates your commitment to security and builds trust with users and investors.
Can the report be private?
Yes, of course. The report is yours and you decide whether to publish it or keep it confidential. Many clients choose to keep reports private, especially for sensitive infrastructure or pre-launch projects. We never publish or disclose any audit information without your explicit consent.
What chains / languages do you support?
We specialize in Solidity (EVM-compatible chains like Ethereum, Polygon, Arbitrum, Base, etc.) and Clarity (Stacks blockchain). Our team has extensive experience auditing major protocols in both ecosystems.
How do you handle confidential code?
We treat all client code as strictly confidential. Access is limited to assigned auditors, and we can sign NDAs before engagement. We never share or reference client code without explicit permission.
What happens after issues are found?
We share issues in real-time as they're discovered, allowing your team to start remediation immediately. Each finding includes a detailed description, severity rating, and step-by-step fix recommendations. After you implement fixes, we perform a verification review to ensure all issues are properly resolved.
Can you review a specific commit or PR?
Yes, we can audit specific commits, pull requests, or incremental changes to previously audited code. This is common for teams shipping updates or new features. We scope these reviews based on the changes and their potential impact on the existing codebase.
Do you work with early-stage projects?
Absolutely. We work with projects at all stages, from pre-launch startups to established protocols. For early-stage teams, we can provide guidance on security best practices during development, not just a final audit. Getting security input early often prevents costly issues later.