Pashov Audit Group

• Name: Pashov Audit Group
• URL: https://www.pashov.com/
• Category: smart-contract security / public audit-report infrastructure / Solidity security research and AI-audit tooling / DeFi security services
• Summary: Pashov Audit Group is a smart-contract security practice whose clearest current primary-source surface is unusually GitHub-native. Instead of relying on a polished docs portal or whitepaper, the retrievable first-party footprint is a large public audit corpus, a dedicated AI-powered security-skills repository, and a broader web3-security-tools hub. That makes Pashov Audit Group worth cataloging not just as a boutique audit shop, but as security-report and workflow infrastructure with a meaningful public research surface.
• What it does:
  • Offers smart-contract security audits under the Pashov Audit Group brand
  • Publishes a large public archive of audit PDFs organized by verticals such as DEXs, lending, stablecoins, RWAs, and other protocol categories
  • Shows repeated coverage across well-known protocols and infra projects in the public audit corpus, including Aave, Uniswap, Ethena, LayerZero, Dinari, Reya, and others
  • Maintains AI-powered Solidity security skills, including solidity-auditor and x-ray, aimed at pre-audit scanning and fast security feedback
  • Maintains a broader “Web3 Security Tools Hub” repo that catalogs open-source and closed-source AI security tools across Solidity, Move, Rust, and multi-language workflows
• Key claims:
  • The public audits README explicitly brands itself as “Pashov Audit Group Smart Contract Security Audits” and invites projects to reach out for a smart-contract security audit
  • The GitHub profile says “I manage teams of hackers @PashovAuditGroup,” which is a concise but useful first-party description of the operating model behind the brand
  • The audits repository is the strongest primary-source artifact because it exposes a substantial and current report corpus rather than just a marketing sample, including repeated engagements for some protocols and clear category groupings across DeFi sectors
  • The skills repository says it provides “AI-powered Solidity security skills” built by Pashov Audit Group, with explicit modules for a pre-audit x-ray and rapid Solidity security feedback
  • The ai-web3-security repository says it is “Built and maintained by www.pashov.com,” which shows the group is also curating a broader AI-security-tooling map rather than only publishing audit PDFs
  • The official site itself was bot-gated during retrieval in this pass, so the GitHub repos currently function as the most accessible first-party source of truth
• Whitepaper: No canonical Pashov Audit Group whitepaper or litepaper surfaced in this pass. The clearest retrievable current sources are the official website URL, GitHub profile, public audit corpus, and first-party security-skills/tooling repositories; see ../whitepapers/pashov-audit-group-primary-sources-2026-04-28.md.
• Sources:
  • https://www.pashov.com/
  • https://github.com/pashov
  • https://github.com/pashov/audits
  • https://raw.githubusercontent.com/pashov/audits/master/README.md
  • https://github.com/pashov/skills
  • https://raw.githubusercontent.com/pashov/skills/master/README.md
  • https://github.com/pashov/ai-web3-security
  • https://raw.githubusercontent.com/pashov/ai-web3-security/master/README.md
• Last reviewed: 2026-04-28 UTC