Security Vulnerability Scanner

This is a beta version of the Solana Toolkit, and is still a WIP. Please post all feedback as a GitHub issue here.

Static Analysis Tools

Radar is static analysis tool for Anchor rust programs. It allows you to write, share, and utilize templates to identify security issues in rust-based programs using a powerful python based rule engine that enables automating detection of vulnerable code patterns through logical expressions.

Xray is an open-source, cross-platform command-line interface (CLI) tool designed for static analysis of Solana programs and programs written in Rust.

Common Security Exploits and Protections

Read Sealevel Attacks for examples of common exploits unique to the Solana programming model and recommended idioms for avoiding these attacks using the Anchor framework.