Public Web3 audit registry
Transparency at the core of DeFi
Find audit certificates for verified protocols, compare security coverage, and make decisions with more confidence.
—
Validated
—
How it works
Three steps to safer DeFi decisions
DeFiTrust is designed for a single purpose: make public audit information instantly accessible to anyone — users, researchers, and investors alike.
Search the registry
Type a protocol name, blockchain network, or auditor firm into the search bar. Filter by category — lending, DEX, bridge, stablecoin — to narrow results instantly. All 9 protocols are indexed and searchable in real time, with no account required.
Read the certificates
Click any project to expand its full audit history. Each entry links directly to the original PDF report — hosted on GitHub or IPFS — so you can verify the source with one click. No paywalls, no registration, no intermediary. The raw audit data is always one step away.
Compare coverage scores
Every protocol receives an objective Audit Coverage Score out of 100 based on whether its audit reports are accessible, complete, and up to date. Broken links, missing PDFs, and outdated reports all reduce the score. Use it as a starting point — then read the actual reports before committing any funds.
Methodology
How the Audit Coverage Score is calculated
Every protocol listed on DeFiTrust receives an Audit Coverage Score out of 100. The score is not an opinion — it is a transparent, rule-based assessment of the accessibility, freshness, and completeness of each protocol's public audit trail.
Every protocol starts at 100. Deductions are applied only when verifiable issues are found in the public audit trail.
A report URL that returns a 404 or is otherwise inaccessible. Users cannot verify what they cannot read.
A link that points to a landing page or index instead of the actual PDF report. Slows down verification.
Audits age over time. Reports older than 24 months lose −4, >36 months −6, and >48 months −9. New audits reset the clock.
The Audit Coverage Score reflects transparency, not protocol security. A protocol can have a perfect audit and still score below 100 if its reports are inaccessible or outdated. Conversely, a high score means the audit trail is fully open — not that the protocol is free of risk. Always read the reports directly.
FAQ
Frequently asked questions
Is DeFiTrust free to use?
Yes — completely free. DeFiTrust is an open public registry. Browsing protocols, reading certificates, checking coverage scores, and submitting your own audit are all free with no registration required. Our goal is to make DeFi security information a public good, not a paid service.
Does a high Audit Coverage Score mean the protocol is safe?
No. The Audit Coverage Score measures the transparency and accessibility of a protocol's public audit trail — it does not assess the quality or depth of the audit itself. A score of 100/100 means every audit report is public, accessible as a PDF, and recent. It does not mean the smart contracts are free of vulnerabilities. Always read the underlying reports and form your own opinion.
How can my protocol get listed on DeFiTrust?
Use the audit submission page to send us your protocol's certificate. You will need to provide the project name, auditor, network, category, a link or PDF of the report, and optionally a public IPFS or SHA-256 hash. Submissions are reviewed within 48 hours and listed publicly if they meet our basic transparency requirements.
Where are the audit reports stored?
DeFiTrust links directly to the original source — usually the protocol's own GitHub repository or their official security page. We do not re-host or modify the documents. For long-term immutability, we encourage protocols to store their reports on IPFS or Arweave so that the links remain valid indefinitely, regardless of what happens to a centralized hosting provider.