Cyfrin

• Name: Cyfrin
• URL: https://www.cyfrin.io/
• Category: smart-contract security platform / developer education / security tooling
• Summary: Cyfrin is a real security stack. The point is the bundle: private reviews, CodeHawks for contests, Updraft for training, Aderyn for static analysis, Solodit for shared vulnerability memory, and a public report archive that helps keep researcher supply and security knowledge under one roof.
• What it does:
  • Performs private smart-contract security reviews for DeFi, wallet, cross-chain, and other blockchain systems
  • Runs Cyfrin CodeHawks as the public competitive-audit arm
  • Runs Cyfrin Updraft as a training funnel for Solidity, Foundry, and security work
  • Ships Aderyn, an open-source Solidity static analyzer with CLI, editor, and CI workflows
  • Maintains Solodit and a public audit-report archive as reusable security knowledge surfaces
• Key claims:
  • The homepage frames Cyfrin as a combined audit, education, and security-platform business rather than a narrow review boutique
  • The site presents CodeHawks, Updraft, Solodit, and Aderyn as first-class parts of the stack, which is the main reason the note matters
  • Cyfrin’s GitHub organization explicitly brands itself as “Web3 Security & Education” and links Cyfrin, Updraft, Solodit, CodeHawks, and Aderyn as one operating bundle
  • The Aderyn repository describes the tool as an open-source Solidity static analyzer with CLI, VS Code, and CI-facing output formats, making the tooling surface concrete
  • The public cyfrin-audit-reports repository shows the company publishing a wide audit corpus across account abstraction, cross-chain systems, RWAs, Solana, vaults, prediction markets, and formal-verification-heavy work
• Whitepaper: No classic whitepaper or litepaper was found during this pass. The strongest primary materials were Cyfrin’s homepage, docs landing page, GitHub organization and repositories, Solodit, Updraft, and the public audit-reports repository; see ../whitepapers/cyfrin-primary-sources-2026-04-25.md.

Sources

• https://www.cyfrin.io/
• https://docs.cyfrin.io/
• https://github.com/Cyfrin
• https://github.com/Cyfrin/aderyn
• https://github.com/Cyfrin/cyfrin-audit-reports
• https://solodit.cyfrin.io/
• https://www.cyfrin.io/updraft

Internal linkages

• Start with codehawks only when the question is the contest surface rather than the broader stack.
• Best upward reads: cantina and sherlock.

Comparable to / differs from

• Comparable to: security platforms that mix audit delivery with training and tooling.

• Differs from: contest-first venues because CodeHawks is only one surface inside a broader audit, education, and tooling bundle.

• Last reviewed: 2026-06-03 UTC