Skip to content
@PositiveSecurity

Positive Security

Web3 security research
README.md

Who are we?

We are a team of distributed ledger security researchers who provide smart contract auditing services on Ethereum, TRON, TON, Hyperledger Fabric platforms.

In our audits we use formal verification and fuzzing methods for deep and comprehensive analysis of code security. We also actively investigate the security of projects with zero knowledge and related cryptography.

We run CTF competitions on various platforms that cover not only the challenges of cracking smart contracts, zero disclosure projects (ZKP) and cryptography, but also aim to develop the formal verification skills of the community.

Contacts:

Pinned Loading

  1. zk-audit-guide zk-audit-guide Public

    Checklist for security audit of ZKP projects by @positivesecurity

    34

  2. tron-audit-guide tron-audit-guide Public

    Checklist for security audit of tron projects by @positivesecurity

    26 4

  3. ton-audit-guide ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    42 5

  4. PositiveCTF-EVM PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    Solidity 26 16

Repositories

Showing 10 of 14 repositories
  • twitter-scraper Public Forked from m0leynik/twitter-scraper

    Scrape the Twitter frontend API without authentication with Golang.

    PositiveSecurity/twitter-scraper’s past year of commit activity
    Go 0 MIT 232 0 0 Updated Dec 12, 2025
  • .github Public
    PositiveSecurity/.github’s past year of commit activity
    0 0 0 0 Updated Dec 2, 2025
  • PositiveCTF-EVM Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-EVM’s past year of commit activity
    Solidity 26 16 0 0 Updated Dec 2, 2025
  • BlendV2-FV Public

    Blend v2 (Stellar) Certora FV Competition (Feb 2025, #4 place)

    PositiveSecurity/BlendV2-FV’s past year of commit activity
    Rust 0 0 0 0 Updated Aug 26, 2025
  • PositiveCTF-TON Public

    A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.

    PositiveSecurity/PositiveCTF-TON’s past year of commit activity
    Tact 0 1 0 0 Updated Aug 14, 2025
  • aquarius-cantina-fv Public

    Aquarius (Stellar) Certora FV Competition (Jun 2025, 🏆#1 place)

    PositiveSecurity/aquarius-cantina-fv’s past year of commit activity
    Rust 0 Apache-2.0 0 1 0 Updated Jun 18, 2025
  • ton-graph Public

    VSCode extension for visualizing function call graphs in TON smart contracts. Built with Mermaid.js by @PositiveSecurity

    PositiveSecurity/ton-graph’s past year of commit activity
    TypeScript 4 MIT 1 0 0 Updated Jun 9, 2025
  • ton-audit-guide Public

    Checklist for security audit of TON projects by @PositiveSecurity

    PositiveSecurity/ton-audit-guide’s past year of commit activity
    42 5 0 0 Updated Feb 26, 2025
  • ConCert Public Forked from AU-COBRA/ConCert

    A verified implementation of the DEX/AMM protocol in ConCert

    PositiveSecurity/ConCert’s past year of commit activity
    Coq 3 MIT 22 0 0 Updated Sep 25, 2024
  • zk-audit-guide Public

    Checklist for security audit of ZKP projects by @PositiveSecurity

    PositiveSecurity/zk-audit-guide’s past year of commit activity
    34 0 0 0 Updated Sep 12, 2024
View all repositories