VulnContract is a security analysis web tool for smart contracts. It detects security vulnerabilities in Ethereum smart contracts programmed in Solidity.
Currently, the webtool detects only for unprotected Suicidal contracts.
Download dependencies using:
pip install -r requirements.txt
Run the webtool:
python3 app.py
Once the terminal is running the Flask application, visit http://localhost:8000/ to access the webtool.
To use the tool, please follow these steps:
- Select a contract language (Solidity supported. Golang and Rust planned for future release).
- Press the browse button to upload a
.solcontract file. - Press the
Run Detectionsbutton.
Once the detection is completed, you will be transferred to the result screen. If you wish to perform detections on another file, return to the home screen by pressing the Home button.
All test inputs can be found in the examples folder.
Please find a video demonstration of the webtool here: Youtube
Please find design and implementation documentation here: Google Doc