Enigma Dark comprises an elite group of researchers where everyone is an absolute specialist in a different niche skill, complementing the overall guild. We are cryptographers, fuzzing and formal verification engineers, elite white hats, and auditors.

Enigma’s mission:

Our mission is to establish a new way of doing security on the web3 space. Everyone focuses on audits and tooling, while the main problems are:

How the smart contracts are developed. If the protocol is designed incorrectly from the start, you can go through any number of audits but will very likely still stumble upon nasty issues once you're finished. Bad choices when selecting an auditing company, either because development teams are pressured by investors or they don’t understand that their code is audited by individuals in a company, not the company itself. If you don’t know anything about who is auditing your code, chances are that’s not the best fit. Inadequate testing of the protocol before auditing or inefficient testing methods. Lack of fuzzing and other advanced forms of testing. Overspending on audits because early mistakes left the protocol in a weak security state. Underspending in security because you got an audit by a marketing firm which raised 1 issue and you feel a false sense of confidence while the code remains problematic. Critical mistakes on deployments due to lack of review of deployment scripts. At Enigma Dark, we tackle all of these mistakes by working closely with protocols, not just by auditing their code, but by hanlding and addressing all their security concerns.

We specialize in solving this problem by handling the entire security pipeline of your protocol.

Enigma’s offerings:

360 security advisory

Smart contract security is incredibly complex and novel. Most of the developer teams are not familiar with it therefore the standard procedure is to

develop -> unit test -> go for an audit -> deploy

This approach is fundamentally flawed and leaves significant security gaps. With our experience and expertise, we guide protocols to achieve the absolute pinnacle of security practices.

We help with the overall structure, such as setting up CI/CDs, architecting the protocol securely, encouraging teams to use effective testing techniques (BTT), advising on specific spots where the testing needs to be hardened, developing a whole invariant suite, fully auditing your codebase, structuring other rounds of audits with other independent researchers or public audits, breaking down your bug bounty program, and setting up on-chain monitoring solutions.

We help with the entire process, elevating your protocol's security to the next level.

Elite level fuzzing (fuzzing on steroids):

Enigma stands above any other company that provides fuzzing because we have Victor Martínez, an amazing fuzzing engineer and a great auditor. Most researchers offering fuzzing engagements are not auditors, which reduces the overall engagement performance due to the creation of basic invariants and a lack of a "breaking-things" mindset.

Audits, invariants, bug bounties, testing, development practices, new hires, on-chain monitoring:

we help with everything to get your protocol to the security hall of fame.

Team

• 0xWeiss - Co-Founder of Enigma (CEO), SR at Spearbit, In-house security researcher TapiocaDAO & Ambit Finance, LSW Sherlock, SR Paladin Blockchain Security.
• Victor - Co-Founder of Enigma (CTO), SR at Spearbit, SR at Oak Security, Top solidity white-hat, fuzzing engineer.
• 0xAdrii - LSW at Sherlock, Private auditor, Assembly specialist
• Windhustler - ASR at Spearbit, Cross-chain specialist.
• Carrotsmuggler - ASR at Spearbit, Top c4 warden, Private auditor. On-chain simulation expert.
• NeumoXX - Elite whitehat at Immunefi, Private auditor, Fuzzing engineer (formal verification expert).
• Jonatas - ASR at Spearbit, whitehat.

Testimonials

Below are some testimonials of our prior work.

• Michael Bentley (CEO Euler Labs): Working with Victor to develop an invariant testing suite for Euler has been such a pleasure. He’s an extremely sharp and focused security researcher, with a great intuition for what’s needed to break a protocol.  Would strongly recommend.

• Matt (CEO Tapioca DAO): @0xWeisss who became our in-house security engineer and immediately put us on the right path- one of the best guys I’ve ever met in this space: passionate, hardworking, and extremely knowledgeable.

• Vectorized (Solady): Thank you @vn_martinez and @0xadrii for looking through Asterix staking contracts! They also found some very good improvement which was added to the ERC-6551 reference implementation.

• BA5ED (Core dev at Juicebox Protocol): It's rare to find a team with the level of expertise and bespoke security services that Enigma Dark provides.

• Travis (CEO Fantasy Top): 0xWeiss went above and beyond reviewing our previously audited codebase and still managed to find some interesting issues. Would definitely recommend 🫡