Sirlibz
Certik, a security company has announced the official launch of QuickScan, an automated tool for scanning smart contracts and auditing it for vulnerabilities.
The tool will help in improving the analysis performed by the Security Oracles of Certik Chain (CTK). QuickScan will utilize static and dynamic analysis techniques to check deployed smart contracts against a database of known vulnerabilities. The scanning tool will use this technique to check the bytecode, source code and access parameters for each smart contract.
The Chief Operating Officer of Certik (CTK), Daryl Hok confirmed that QuickScan can audit and provide analysis on a smart contract in less than one hour. The system also assigns security scores to each different area and integrates them to express an overall evaluation. He also noted that this automatic scan system would not replace the manual analysis since the need for formal audits remains crucial for security evaluation. The two systems however can function together and help in the best way possible, the automated QuickScan could help point out where a potential vulnerability lies and help them to manually eliminate this problem.
QuickScan is a part of the security audit system attached with the Certik Chain. The security company had introduced the concept of security oracles, a quicker and granular system for auditing smart contracts.
The automated scanning tool will only be available to Certik clients or Security Oracle users, no mention of a public-rollout yet.
