Building Secure Smart Contracts
Guidelines, vulnerability case studies, and the tools to enforce them.
Type
Handbook
Domain
Blockchain
Maintainer
Trail of Bits
Format
Web handbook
Overview
Building Secure Smart Contracts collects Trail of Bits' guidelines, best practices, and automated-analysis tooling for developing secure smart contracts across many blockchain platforms. It pairs hard-won development guidance (code-maturity criteria, token-integration checklists, secure workflows) with the program-analysis tools the team builds and uses, complete with theory, API docs, and hands-on exercises.
What's inside · 4
-
Development guidelines
Code-maturity criteria, token-integration checklists, incident response, and review preparation.
-
Learn EVM
Opcode references, transaction tracing, arithmetic checks, and EIP/Yellow Paper summaries.
-
Not So Smart Contracts
Annotated vulnerability examples across Algorand, Cairo, Cosmos, Solana, Substrate, Sui, and TON.
-
Program analysis tools
Echidna and Medusa fuzzing, Slither static analysis, and Manticore symbolic execution.
Who it's for
Smart-contract developers and security engineers building, reviewing, or automating analysis of on-chain code.
More guides & handbooks
- MCP Security Guide Securing the Model Context Protocol: the mcp-context-protector wrapper, disclosed attack classes, and community defenses. AI/ML Security
- Testing Handbook Handbook Guides for configuring and automating static and dynamic analysis tools. Application Security
- ZKDocs Handbook Interactive documentation on zero-knowledge proof systems. Cryptography
- CTF Field Guide Guide Field guide to winning at Capture The Flag competitions. Education
- Ruby Security Field Guide Guide Practical Ruby security guide. Application Security
