The smart contract auditor built for retail.
Paste any contract address. Blocksmiths Auditor runs a live honeypot simulation, 80+ security detectors, AI plain-English verdict, deployer reputation check, and fee ceiling analysis — all in under 30 seconds, all offline, all private.
Pay with ETH, USDC, SOL, or MATIC · License delivered instantly on-chain confirmation
$ audit 0xDeAdBeEf…cAfE --chain base
→ source: DegenToken.sol · Solidity 0.8.20 · 3 files
→ running Blocksmiths scan engine…
✗ [CRITICAL] reentrancy-eth: withdraw() calls external
contract before updating balance — funds can be drained
⚠ [HIGH] unprotected-upgrade: proxy implementation
can be swapped by owner without timelock
⚠ [MEDIUM] tx-origin: auth uses tx.origin (phishing risk)
→ live honeypot check…
✓ HONEYPOT: NONE · BUY TAX: 5% · SELL TAX: 5%
→ deployer: wallet 12 days old · 4 contracts deployed
⚠ DEPLOYER: new wallet — serial deployer pattern
→ AI: "This contract has a critical reentrancy bug that
could allow an attacker to drain all ETH. The owner
can also silently swap the contract logic. Avoid."
🚨 VERDICT: AVOID — 2 critical red flags found
$ ▊
What's inside
Six layers of protection.
Most tools do one of these. Blocksmiths Auditor does all six.
Live Honeypot Detection
Real buy/sell simulation via Go+ Security confirms whether you can actually sell — the #1 thing retail traders need to know.
AI Plain-English Summary
Powered by Claude. Every scan produces a plain-English explanation and a single AVOID / CAUTION / CLEAN verdict. No code knowledge needed.
80+ Security Detectors
Deep static analysis via Slither — reentrancy, hidden mints, backdoors, self-destruct, unprotected upgrades, and more. OWASP Top 10 mapped.
Deployer Reputation
Checks if the wallet that deployed the contract has previously launched rugs, how old it is, and how many contracts it's deployed.
Fee Ceiling Analysis
Finds owner-callable fee setters and shows the maximum possible tax — catches contracts where fees start at 3% but can be raised to 99%.
Fully Offline & Private
Runs entirely on your machine after download. No contract data is sent to any server. Your research stays yours, always.
Supported chains
Works across all major EVM networks.
Or paste raw Solidity code, upload .sol files, or clone a GitHub repo directly.
Pricing
Two ways to scan. One mission.
Quick checks on any device, or deep analysis on desktop — pick what fits your workflow.
Web Scanner
Pay with ETH, USDC, SOL, or MATIC
- Works on any device — mobile, tablet, desktop
- Live honeypot simulation (Go+)
- Real buy/sell tax detection
- Deployer reputation check
- Fee ceiling analysis
- 6 EVM chains
- Unlimited scans
Access at blocksmiths.tech/scan · renews monthly
Desktop Auditor
Most powerfulPay with ETH, USDC, SOL, or MATIC
- Everything in Web Scanner
- 80+ Slither security detectors
- AI plain-English verdict (Claude)
- OWASP Smart Contract Top 10 mapping
- PDF / HTML / Markdown / JSON export
- Windows desktop app (.exe)
- Fully offline — no internet after setup
- Offline license — own it forever
License key emailed instantly · must register with email
AI summaries use your own free Anthropic API key — stored locally on your machine, calls Anthropic directly. Never sent to Blocksmiths.
FAQ
Common questions.
What chains does it support?
Ethereum, Base, BSC, Arbitrum, Polygon, and Optimism via the Etherscan V2 API. You can also paste raw Solidity code or upload .sol files directly.
Do I need to know how to code?
No. The AI verdict and plain-English summary are designed for everyday crypto users. The technical details (Slither findings) are still there if you want them.
What OS does it run on?
The current release is Windows (.exe). macOS and Linux builds are on the roadmap. The app requires no installation — just download and run.
Windows shows a SmartScreen warning — is it safe?
Yes. Because the app is not yet code-signed, Windows SmartScreen flags it as unknown. Click "More info" → "Run anyway" to proceed. This is standard for new indie software.
Does the honeypot check need an API key?
No. The live honeypot simulation uses the Go+ Security API which is free and requires no key. The Etherscan fetch does require a free Etherscan API key (available at etherscan.io/myapikey).
How is the license delivered?
Instantly. After your crypto payment confirms on-chain, your license key appears on the order page and is emailed to your registered address. Enter it in the app once — it activates offline.
Is the web scanner a subscription?
Yes. The web scanner ($7/month) is a recurring monthly subscription. It gives you unlimited scans from any browser on any device. You can cancel any time and it simply won't renew — no lock-in.
Is the desktop app a subscription?
No. The desktop Auditor ($79) is a one-time purchase — you own it. No recurring fees, no licence renewals, no internet required after setup. Future updates within the same major version are included.
Do I need to pay for AI summaries?
The AI plain-English verdict uses your own Anthropic API key, which you enter once in Settings. Anthropic's free tier includes plenty of credits. The key is stored locally on your machine and calls Anthropic directly — it never passes through Blocksmiths servers and cannot be used to access anything other than your own Claude account.
What's the difference between the web scanner and the desktop app?
The web scanner ($7/mo) gives you instant live checks on any device — honeypot simulation, real taxes, deployer reputation, and fee analysis. The desktop app ($79 one-time) adds deep Slither static analysis (80+ detectors), AI plain-English verdict, OWASP mapping, and full report export. Use the web scanner for quick "is this safe?" checks; use the desktop app for thorough pre-investment due diligence.
Ready?
Scan before you buy. Every time.
One purchase. No limits. No subscriptions. Download, activate, and start scanning in minutes.
Get Blocksmiths Auditor