Smart contract security audit and research. We audit the math, not just the code.

A* Audit is a smart contract security firm specializing in DeFi math primitives. We audit the systems where small mathematical errors compound into large losses: AMM, lending, and CDP.

Our approach starts from invariants, not bug patterns. For every system we audit, we ask three questions: what invariant must hold, does each state transition preserve it, and what input or call sequence could violate it? Pattern matching catches yesterday's bugs. First principles catches tomorrow's.

• AMM and bonding curves: constant-product, stableswap, concentrated liquidity, custom curves
• Lending markets: interest rate models, liquidation mechanics, oracle integration, isolated and pooled designs
• CDP systems: collateralization invariants, liquidation paths, stability mechanisms

Every audit starts with reconstructing the invariants the protocol must preserve. From there we look for state transitions and input sequences that could violate them. The findings we report come with the reasoning behind why something is a bug, not just a pattern label.

This produces fewer false positives. It also produces deeper findings on novel logic that no checklist would have caught.

We publish ongoing technical research on X. The bulk of it is bug breakdowns and security concept explainers focused on DeFi math primitives, plus monthly post-mortems of recent exploits.

Follow @Astaraudit for ongoing research.

For audit inquiries: contact@astaraudit.com or DM on X.

Optimal path to secure code.