Halborn

• Name: Halborn
• URL: https://www.halborn.com/
• Category: blockchain security firm / smart-contract and protocol audit infrastructure / offensive security and incident-response provider
• Summary: Halborn is a broad crypto security vendor with a big public report archive and a wide service menu. Keep it for the archive plus the mix of protocol, wallet, cloud, and incident-response work. Useful platform note, not a category anchor.
• What it does:
  • Performs smart-contract assessments, blockchain Layer 1 assessments, code audits, cloud and web penetration tests, red-team exercises, and AI security work
  • Maintains a public PublicReports GitHub repository with categorized report archives spanning Solidity, Solana, Move, CosmWasm, Substrate, Tezos, Soroban, NEAR, Node, wallet, incident-response, and infrastructure security work
  • Publishes public security content and tooling through its GitHub account, including report archives, CTF material, Flow/Cadence security practices, and EVM-adjacent tooling such as burp-eth
  • Positions itself specifically around blockchain companies rather than treating crypto as a small sub-practice inside a broader consultancy
  • Appears to pair classic audit delivery with adjacent operational-security work such as protocol-wallet pentests, financial pentesting, cloud reviews, and incident reporting
• Key claims:
  • The official site frames Halborn as a provider of “Digital Asset and Blockchain Security Solutions” and prominently lists Smart Contract Assessment, Blockchain Layer 1 Assessment, Code Security Audit, Web Application Penetration Testing, Cloud Infrastructure Penetration Testing, Red Team Exercise, AI Red Teaming, and AI Security Assessment
  • The public GitHub profile describes Halborn as “ELITE CYBERSECURITY FOR BLOCKCHAIN COMPANIES,” which reinforces that the firm is positioning itself as a crypto-focused security specialist rather than a generic consultancy
  • The PublicReports repository has strong public engagement and, more importantly, exposes a broad report taxonomy that includes smart contracts, L1 audits, wallet and node audits, cloud security, incident reports, and zero-knowledge work
  • The visible top-level report categories suggest Halborn is security infrastructure around crypto operations and protocol engineering, not only a vendor of one-off Solidity audits
  • Taken together, the current primary-source surface suggests Halborn should be cataloged as a blockchain-security platform and report infrastructure provider, not merely as an audit boutique
• Whitepaper: No canonical Halborn whitepaper or litepaper surfaced in this pass. The clearest current sources of truth are the official site, GitHub profile, and public PublicReports archive; see ../whitepapers/halborn-primary-sources-2026-04-30.md.

Internal linkages

• Best upward reads: trail-of-bits and openzeppelin.

• Keep this note on the public report factory and ops-heavy security surface, not on long firm-comparison lists.

• Sources:

  • https://www.halborn.com/
  • https://www.halborn.com/audits
  • https://github.com/HalbornSecurity
  • https://api.github.com/users/HalbornSecurity
  • https://api.github.com/users/HalbornSecurity/repos?per_page=100
  • https://api.github.com/repos/HalbornSecurity/PublicReports
  • https://api.github.com/repos/HalbornSecurity/PublicReports/contents

• Last reviewed: 2026-06-04 UTC