Sherlock Audit Firm – Smart Contract Security Reviews | CMW

Sherlock smart contract audit company: services, notable audits, and reputation in Web3 security.

Audits Backed by Coverage

Sherlock uniquely combines audits with smart contract coverage (insurance). When they audit your protocol, they back their work by providing coverage against exploits. If a bug they missed gets exploited, their coverage fund pays out. This alignment of incentives results in extremely thorough audits.

Key Facts

  • Website: sherlock.xyz
  • Founded: 2021
  • Headquarters: Remote
  • Team size: 20+ lead auditors
  • Rating: 4.5 / 5 (80+ reviews)
  • Pricing: $30,000 - $250,000+
  • Turnaround: 2-4 weeks

Pros

  • Skin in the game
  • Coverage included
  • High-quality auditors
  • DeFi expertise
  • Aligned incentives
  • Ongoing protection

Cons

  • Limited capacity
  • Higher pricing
  • DeFi-only focus

Features

  • Smart Contract Audit: Available
  • Coverage/Insurance: Available
  • Lead Auditor Model: Available
  • Watson Platform: Available
  • Contest Audits: Available
  • Fix Review: Available
  • Ongoing Coverage: Available
  • DeFi Specialization: Available
  • Public Reports: Available
  • Coverage Claims: Available

Notable Audits

  • Euler — DeFi (2022)
  • Lyra — DeFi (2022)
  • Sentiment — DeFi (2022)
  • Various DeFi — Multiple (2023)

Frequently Asked Questions

What happens if a bug is exploited?

If an exploit occurs due to a bug in audited code, our coverage fund pays out to affected users, up to the coverage limit.

How is this different from insurance?

We're the auditor AND the coverage provider. We have direct financial incentive to find every bug because we pay if we miss something.

What is the Watson platform?

Watson is our platform for contest audits, where independent auditors compete to find bugs in addition to our lead auditors.