Last updated: December 19, 2024
Frontispiece
About the OWASP SCSTG
The OWASP Smart Contract Security Testing Guide (SCSTG), which is part of the OWASP Smart Contract Security (SCS) flagship project, is a comprehensive manual covering the processes, techniques, and tools used during smart contract security analysis, as well as an exhaustive set of test cases for verifying the requirements listed in the OWASP Smart Contract Verification Standard (SCSVS), providing a baseline for complete and consistent security tests.
The OWASP SCSVS and SCSTG are trusted by the following platform providers and standardization, governmental and educational institutions. Learn more.
Authors
Changelog
All our Changelogs are available online at the OWASP SCSTG GitHub repository, see the Releases page:
https://github.com/OWASP/owasp-scstg/releases
Disclaimer
Please consult the laws in your country before executing any tests against smart contracts by utilizing the SCSTG materials. Refrain from violating the laws with anything described in the SCSTG.
Our [Code of Conduct] has further details: https://github.com/OWASP/owasp-scstg/blob/master/.github/CODE_OF_CONDUCT.md
OWASP thanks the many authors, reviewers, and editors for their hard work in developing this guide. If you have any comments or suggestions, please connect with us: https://scs.owasp.org/contact
If you find any inconsistencies or typos please open an issue in the OWASP SCSTG Github Repo: https://github.com/OWASP/owasp-scstg
Copyright and License
Copyright © The OWASP Foundation. This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. For any reuse or distribution, you must make clear to others the license terms of this work.