EntityEngine

Smart Contract Audit

Leading smart contract audit firms providing security assessments for DeFi protocols, token contracts, and Web3 infrastructure.

4 listings in this category

ConsenSys Diligence

Smart Contract Audit

Ethereum's most credible smart contract audit firm — backed by ConsenSys

New York, USA (distributed globally)
Solidity Smart Contract AuditsDeFi Protocol SecurityEVM Security Research+3

Best for: Ethereum and EVM projects needing audits with institutional credibility and deep Ethereum protocol knowledge

View profile

Trail of Bits

Smart Contract Audit

Elite security research firm covering smart contracts, cryptography, and protocol-level security

New York, USA
Smart Contract AuditsZK Proof System SecurityCryptographic Implementation Review+3

Best for: The most technically complex security mandates — ZK systems, novel cryptography, and L1/L2 consensus security

View profile

CertiK

Smart Contract Audit

The world's most widely deployed smart contract audit firm — formal verification at scale

New York, USA
Smart Contract AuditsFormal VerificationPenetration Testing+3

Best for: Teams needing a broadly credible audit with public verification scores, formal verification for high-assurance applications, or fast turnaround

View profile

OpenZeppelin

Smart Contract Audit

The trusted standard for smart contract security — library creators and auditors of the ecosystem's foundations

Buenos Aires, Argentina (distributed globally)
Solidity Smart Contract AuditsDeFi Protocol SecurityOpenZeppelin Library Integration+3

Best for: DeFi protocols and token projects using OpenZeppelin libraries, or any project where the audit credential needs to be recognisable to sophisticated DeFi users

View profile

Frequently Asked Questions — Smart Contract Audit

How long does a ConsenSys Diligence audit typically take?
ConsenSys Diligence audits typically take 2 to 8 weeks depending on codebase complexity. Simple token contracts at the shorter end; complex DeFi protocols with multiple interacting contracts, upgradeable proxy patterns, and economic edge cases at the longer end. Teams should engage Diligence well before a planned launch — 6-8 weeks minimum lead time is recommended to account for scheduling and potential remediation cycles.
How much does a ConsenSys Diligence audit cost?
Pricing starts from approximately $30,000+ and scales significantly with codebase size and complexity. Large DeFi protocol audits with multiple interacting contracts can reach six figures. ConsenSys Diligence provides pricing estimates following an initial scoping call — the estimate is based on lines of code, complexity, and the specific security concerns relevant to the protocol's architecture.
How long does a Trail of Bits audit typically take?
Trail of Bits engagements run from 4 to 16 weeks for complex protocols — significantly longer than many competitors, reflecting the depth and rigor of the firm's security research approach. Novel L1 consensus mechanisms, ZK proof systems, and complex cryptographic implementations require extended engagement periods to assess thoroughly. Teams should plan for this timeline and engage Trail of Bits very early in the development cycle.
How much does a Trail of Bits audit cost?
Trail of Bits charges premium pricing that reflects its elite talent and research depth — a position at the highest end of the smart contract audit market. Specific figures are available via scoping discussion, but expect engagements to run into six figures for complex protocol work. For projects where security is existential (significant TVL, novel cryptographic assumptions), the premium is typically justified.
How long does a CertiK audit typically take?
CertiK offers a wide range of turnaround times — from 1 week for simple contracts through to 6 weeks for complex DeFi systems. This flexibility makes CertiK accessible for teams with time pressure, including projects approaching exchange listing or token launch deadlines. The firm's scale (300+ security researchers) enables faster turnaround than smaller boutique auditors for comparable scope.
How much does a CertiK audit cost?
CertiK's pricing ranges from approximately $5,000 for simple token contracts through to $500,000+ for complex, multi-component DeFi systems — the widest pricing range of any major auditor. This breadth makes CertiK accessible to early-stage projects with limited budgets while also serving major protocol upgrades. Pricing is determined by codebase size, complexity, and the services required (audit + formal verification + on-chain monitoring).
How long does an OpenZeppelin audit typically take?
OpenZeppelin audits run from 3 to 10 weeks depending on codebase size and complexity. The firm prioritises thoroughness over speed — its audit process involves multiple researchers reviewing the same codebase independently, which adds time but significantly improves the quality of findings. Teams should plan for 8-12 weeks minimum lead time to account for scheduling, the audit itself, and remediation review.
How much does an OpenZeppelin audit cost?
OpenZeppelin's pricing reflects its premium positioning — specific figures are available via scoping discussion, but expect costs in the six-figure range for significant DeFi protocols. The firm has audited Compound, Aave, and Uniswap — the three protocols that defined DeFi — and its credential carries recognisable signal to sophisticated users and institutional investors that justifies the premium.

Browse Other Categories

Law Firm

15 listings

Venture Capital

10 listings

Accounting & Tax

8 listings

Angel Investor

6 listings

Accelerator

6 listings

Ecosystem Grants

5 listings

Banking & Financial Services

5 listings

Consultancy

5 listings

PR & Communications

4 listings

Recruitment & Talent

3 listings

Market Maker & Liquidity

3 listings

← Back to full directory

This directory is compiled from publicly available information and may contain inaccuracies or outdated details. Listings do not imply endorsement or a commercial relationship unless explicitly stated. If you represent a listed organisation and would like to request amendments or removal, please contact us at support@entityengine.io.