👋 Welcome to Hacken Documentation
Welcome to the official Hacken documentation portal! Here, you'll find everything you need to understand the methodologies, workflows, and resources behind our mission to make web3 a safer space.
Our comprehensive documentation is structured to provide insights into our specialized services, detailed security processes, audit preparation and technical endpoints. Whether you're a developer, security researcher, or just someone passionate about web3 security, this portal is designed to guide you through our methodologies.
Enjoy!
Grzegorz Trawiński | Offensive Security Services Director at Hacken OU
What's Inside
1. Audit Preparation Guideline
Our short guideline helps teams prepare for security audits of smart contracts, protocols, or other web3 and web2 projects. Learn valualbe information prepared by our experienced auditors that can result in a faster and more accurate audit process.
2. Security Methodologies
Get familiar with our robust methodologies that form the foundation of our services. From smart contract audits to blockchain protocols security, our step-by-step workflows ensure thorough and reliable assessments.
- Blockchain Protocols Security: our in-depth approach to securing Layer 1 and Layer 2 protocols.
- CCSS: how we assess and guide cryptocurrency custody services to meet the Cryptocurrency Security Standard (CCSS).
- Cryptography Audits: our approach focused entirely on securing cryptography protocols.
- dApp Audits: how we evaluate decentralized applications for security and functionality.
- DORA: how we assess and strengthen ICT risk management, incident response, and digital resilience of financial entities under the EU Digital Operational Resilience Act.
- EEA EthTrust: how we evaluate smart contracts against EEA EthTrust's multi-level criteria to ensure robust and risk-informed Web3 security.
- Penetration Testing: how we simulate real-world attacks to identify risks and vulnerabilities within the web2 applications.
- Proof of Reserves: our verification and validation of cryptocurrency reserve holdings process, ensuring transparency and trustworthiness in financial reserves.
- Red Team Operations: our specific guidance on how to plan and execute a TLPT engagement through Red Team operations.
- Smart Contract Audits: how we scrutinize smart contracts for vulnerabilities, risks and ensure optimal performance.
- Tokenomics: our approach to evaluate and analyze the design of token economies.
- ISO27001: how we build and streamline Information Security Management Systems (ISMS) for certification.
- VARA: how we guide Virtual Asset Service Providers (VARA) in meeting the cybersecurity and operational governance requirements of Dubai's Technology and Information Rulebook.
3. Public Endpoint
Explore our public API, enabling seamless integration and retrieval of critical data, such as:
- Audit findings.
- Security statuses of projects.
- Real-time updates on public audits.
Why Hacken?
Hacken is a trusted leader in end-to-end security, offering comprehensive services to safeguard decentralized ecosystems with 8+ years of experiende and more than 60 security experts. With our experience and 2,000+ completed audits, Hacken stands at the forefront of web3 security. Our global team of experts employs cutting-edge tools and techniques to ensure the safety and trustworthiness of decentralized ecosystems. As contributors to initiatives like EthTrust and DRAMA, we are committed to raising the bar for security across the blockchain industry.
Getting Started
Dive into the topics that matter most to you:
We’re excited to share our expertise and help you build a safer web3 future. If you have any questions, feel free to contact us.
Disclaimer
As part of Hacken’s ongoing quality assurance process, we may conduct re-audits of select projects. These re-audits are performed independently from the original audit and are intended solely for internal quality control and improvement. Updated reports resulting from such re-audits will be shared privately with the respective clients and may be published on the Hacken website only with their explicit consent. The sole authoritative source for finalized and most up-to-date versions of all reports remains the Audits section at https://hacken.io/audits/.
Let’s secure the decentralized world together. 🚀