ConsenSys Diligence

ConsenSys Diligence is a smart contract audit service and blockchain security analysis tool offered by ConsenSys. According to the vendor, this product aims to assist startups and enterprises in the blockchain industry by ensuring the secure launch and maintenance of Ethereum blockchain applications. It is designed to cater to various professions and industries, including blockchain developers, smart contract auditors, security analysts, cryptocurrency exchanges, and decentralized finance (DeFi) platforms.

Key Features

Smart Contract Audits: According to the vendor, ConsenSys Diligence offers code reviews to identify vulnerabilities and potential security risks in smart contracts, aiming to ensure their security before deployment.

Automated Security Analysis: The vendor states that ConsenSys Diligence utilizes the MythX API to scan for security vulnerabilities in Ethereum and other EVM-based blockchain smart contracts, providing affordable options for smart contract security and fortifying code against potential vulnerabilities.

Smart Contract Testing: The vendor claims that ConsenSys Diligence allows developers to use the Scribble specification language to translate high-level specifications into Solidity code and write properties directly into smart contracts, enhancing the effectiveness of fuzzing campaigns by instrumenting smart contracts with runtime assertions.

Automatic Property Checking: According to the vendor, ConsenSys Diligence uses Fuzzing to test security properties and detect vulnerabilities before deployment, helping developers avoid costly smart contract rewrites and enabling stress testing with millions of transactions.

Enterprise Security Counseling: The vendor asserts that ConsenSys Diligence supports enterprises at all stages of the blockchain development lifecycle, providing testing, auditing, and formal verification services to ensure the security of their blockchain applications.

Threat Modeling: According to the vendor, ConsenSys Diligence helps identify potential entry points for hackers and visualizes a project's attack surface, continuously updating the threat model to address evolving risks.

Incident Response Planning: The vendor claims that ConsenSys Diligence assists in setting up infrastructure monitoring, enabling quick identification, reporting, triaging, and response to security incidents, helping organizations establish a robust incident response plan.

Continuous Verification: According to the vendor, ConsenSys Diligence monitors security vulnerabilities as code is written and changed, allowing for real-time identification and mitigation of potential risks, ensuring security remains a priority throughout the development lifecycle.

Detailed Analytics Reports: The vendor states that ConsenSys Diligence provides vulnerability reports with executive summaries, vulnerability details, and mitigation guidance, offering comprehensive insights into the security posture of smart contracts and helping developers prioritize and address security issues effectively.