MetaTrust - MetaTrust Labs - The AI Powered Trust Layer for Web3

Products

Services

Builder-first Web3 Security.

Build Fast, Stay Secure.

Trusted By

MetaScan

Automatic security vulnerability scanning for Web 3 applications using our proprietary 4-in-1 engines.

MetaScout

24 x 7 runtime security monitoring for on-chain attacks, and risk detection of deployed Web3 projects.

MetaScore

Comprehensive security and risk assessment and ranking for Web3 applications.

MPM

Open-source package manager to publish, discover, install, and develop secure smart contracts.

Web3 Auditing

Fast, effective and affordable auditing service with top-notch security R&D Team.

Security Consulting

Consultation for secure Web3 development. From coding convention, security design to framework adoption.

MetaScan

Automatic and Comprehensive Security Scanning for Web3 Applications
Automatic Security Auditor for Web3 Developers

With a developer-first focus, MetaScan utilizes a groundbreaking method to enhance security. By integrating numerous advanced security scanning engines into a single platform, it delivers unparalleled speed and precision, safeguarding all aspects of your application beyond the smart contract layer.

Multi-Engine, Multi-Dimentional Safeguard for Your Code & Assets

Diverse Security Engines employed by MetaScan and MetaTrust Security Platform

Security Analyzer

Utilizing a security analyzer for static code analysis to detect potential security vulnerabilities.

GPTScan

Leveraging AI technology, such as ChatGPT, to detect logic vulnerabilities, encompassing a wider range of vulnerability types and adapting to various code variations. It enables detection even when the vulnerability names and code flow have been altered.

Code Quality

Conducting code quality assessments to identify and extract a majority of informational and low-level vulnerabilities.

Security Prover

Primarily focused on identifying vulnerabilities related to contract execution and fixed logic flaws, while addressing the issue of higher false positives in static detection.

Code Clone

Employing clone detection techniques to identify code clones and prevent the introduction of security risks through code duplication or similarity, especially for Migration Attack.

Open Source Analyzer

Performing security assessments on the usage of open-source libraries, ensuring their secure integration within applications.

MetaScout

24 × 7 Runtime Monitoring

On-chain Monitoring

Transactional analysis for governance attack
Market price volatility monitoring
Social sentiment monitoring

Online Abnormal Behavior Monitoring

Graph based runtime analysis for AML, Flashloan Attack, Front-run Attack, Bridge Attack

On-chain Monitoring

MetaScan for Smart Contract Vulnerabilities
Penetration Testing for NFT Phishing, Fraud Attack, Rug Pull, Price Manipulation

MetaScore

Overall Security Assessment

Offering comprehensive security ratings and scores for web3 projects
Integrating multiple proprietary engines to increase Builders' peace of mind
Real-time risk alerts to protect investor assets and maintain confidence

MetaScore Radar Chart provdes a visual representation of the security score of a project in multiple dimensions.

MetaTrust Package Manager (MPM)

Trustworthy Libraries & Templates

MPM provides trustworthy libraries and templates for smart contract development.

Solutions

Builder-first security solution for SDLC

Our solutions cover all attack surfaces

Research & Publications

KAIXUAN LI, YANG LIU, YUE XUEStatic Application Security Testing (SAST) Tools for Smart Contracts: How Far Are We?FSE 2024 Yuqiang Sun, Daoyuan Wu, Yue Xue, Han Liu, Haijun Wang, Zhengzi Xu, Xiaofei Xie, Yang LiuWhen GPT Meets Program Analysis: Towards Intelligent Detection of Smart Contract Logic Vulnerabilities in GPTScanICSE2024 Yueming Wu, Chengwei Liu, Yang LiuThe Software Genome Project: Venture to the Genomic Pathways of Open Source Software and Its ApplicationsICG and ChinaSoft Ye Liu, Yi Li. InvCon: A Dynamic Invariant Detector for Ethereum Smart ContractsASE 2022 Palina Tolmach, Yi Li, Shang-Wei Lin, Yang Liu, and Zengxiang LiA Survey of Smart Contract Formal Specification and VerificationACM Computing Surveys 2021 Palina Tolmach, Yi Li, Shang-Wei Lin, and Yang LiuFormal Analysis of Composable DeFi Protocols. DeFi WorkshopFC 2021 Ye Liu, Yi Li, Shangwei Lin, Rong ZhaoTowards automated verification of smart contract fairnessFSE 2020 Jiao, Jiao, Shuanglong Kan, Shang-Wei Lin, David Sanan, Yang Liu, and Jun SunSemantic understanding of smart contracts: Executable operational semantics of soliditySP 2020 Haijun Wang, Ye Liu, Yi Li, Shang-Wei Lin, Cyrille Artho, Lei Ma, Yang LiuOracle-supported dynamic exploit generation for smart contractsTDSC 2020

About MetaTrust Labs

At MetaTrust, our primary focus is on creating a secure infrastructure that caters to the needs of developers in the WEB 3.0 space. Our team comprises highly skilled security researchers and seasoned professionals from both academia and industry. We offer an array of automation tools and security services to assist Web3 developers and project stakeholders in achieving a secure development environment.

Learn more about our team and our missions

Backed by the Best

We are honored to be backed by the elite of the investment world and will continue to build on these supports and partnerships for even greater achievements.