Sherlock smart contract audit company: services, notable audits, and reputation in Web3 security.
Audits Backed by Coverage
Sherlock uniquely combines audits with smart contract coverage (insurance). When they audit your protocol, they back their work by providing coverage against exploits. If a bug they missed gets exploited, their coverage fund pays out. This alignment of incentives results in extremely thorough audits.
Key Facts
- Website: sherlock.xyz
- Founded: 2021
- Headquarters: Remote
- Team size: 20+ lead auditors
- Rating: 4.5 / 5 (80+ reviews)
- Pricing: $30,000 - $250,000+
- Turnaround: 2-4 weeks
Pros
- Skin in the game
- Coverage included
- High-quality auditors
- DeFi expertise
- Aligned incentives
- Ongoing protection
Cons
- Limited capacity
- Higher pricing
- DeFi-only focus
Features
- Smart Contract Audit: Available
- Coverage/Insurance: Available
- Lead Auditor Model: Available
- Watson Platform: Available
- Contest Audits: Available
- Fix Review: Available
- Ongoing Coverage: Available
- DeFi Specialization: Available
- Public Reports: Available
- Coverage Claims: Available
Notable Audits
- Euler — DeFi (2022)
- Lyra — DeFi (2022)
- Sentiment — DeFi (2022)
- Various DeFi — Multiple (2023)
Frequently Asked Questions
What happens if a bug is exploited?
If an exploit occurs due to a bug in audited code, our coverage fund pays out to affected users, up to the coverage limit.
How is this different from insurance?
We're the auditor AND the coverage provider. We have direct financial incentive to find every bug because we pay if we miss something.
What is the Watson platform?
Watson is our platform for contest audits, where independent auditors compete to find bugs in addition to our lead auditors.