Skip to content
Last updated: December 19, 2024

Frontispiece

About the OWASP SCSTG

The OWASP Smart Contract Security Testing Guide (SCSTG), which is part of the OWASP Smart Contract Security (SCS) flagship project, is a comprehensive manual covering the processes, techniques, and tools used during smart contract security analysis, as well as an exhaustive set of test cases for verifying the requirements listed in the OWASP Smart Contract Verification Standard (SCSVS), providing a baseline for complete and consistent security tests.

The OWASP SCSVS and SCSTG are trusted by the following platform providers and standardization, governmental and educational institutions. Learn more.

Authors

Changelog

All our Changelogs are available online at the OWASP SCSTG GitHub repository, see the Releases page:

https://github.com/OWASP/owasp-scstg/releases

Disclaimer

Please consult the laws in your country before executing any tests against smart contracts by utilizing the SCSTG materials. Refrain from violating the laws with anything described in the SCSTG.

Our [Code of Conduct] has further details: https://github.com/OWASP/owasp-scstg/blob/master/.github/CODE_OF_CONDUCT.md

OWASP thanks the many authors, reviewers, and editors for their hard work in developing this guide. If you have any comments or suggestions, please connect with us: https://scs.owasp.org/contact

If you find any inconsistencies or typos please open an issue in the OWASP SCSTG Github Repo: https://github.com/OWASP/owasp-scstg

Copyright © The OWASP Foundation. This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. For any reuse or distribution, you must make clear to others the license terms of this work.