VeriAudit

AI smart contract auditor that proves vulnerabilities by executing real exploits.

CRE & AI Risk & Compliance Privacy Tenderly Thirdweb

What it is

VeriAudit solves the issue of false positives in AI security tools.
It uses a dual-agent LLM architecture to find vulnerabilities and then actively write custom Attacker.sol contracts and JS script Attack.js.
It proves the vulnerability by deploying and executing the exploit in a deterministic sandbox.
If the exploit fails to drain funds, the AI's hallucination is silently discarded, guaranteeing zero false positives.

How it Works

The core pipeline runs natively as a Chainlink CRE Workflow, orchestrating multiple LLMs via the consensus capability.
Users interact either via frontend or a Google ADK Client Agent that autonomously processes a Thirdweb x402 crypto paywall for each audit.
The backend bridges the payload to the CRE, which utilizes Tenderly Virtual Testnets to dynamically simulate the EVM environment and securely prove the exploit.

Links

Created by

Priyanshu Kumar Panda
Sneha Sahu