awesome-ton-security
github.com/polaristow/awesome-ton-security ↗A curated list of awesome ton security resources
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me auditors resources from awesome-ton-security"
Installation instructions →What's inside
Articles and Blogs
- Beosin 硬核研究 | 从风险到防护:TON 智能合约的安全隐患与优化建议
从风险到防护:TON 智能合约的安全隐患与优化建议
- BitsLab’s TonBit, Once Again Discovers a Vulnerability in the TON Virtual Machine: RUNVM
- Checklist for Auditing TON Smart Contracts
- Discovers Critical Vulnerability in TON VM Root Cause and Mitigation Explained
- From Paradigm Shift to Audit Rift: Exploring Vulnerabilities and Audit Tips for TON Smart Contracts
- Generation of block random seed
Skills
- elsvv/ton-best-practices-skill
Provides secure development guidance and practical best practices for TON smart contracts.
- espritoxyz/ton-ai-audit-skill
Uses AI-assisted workflows to review TON contracts and surface potential security issues.
- mysteryon88/web3-universalmutator
Mutation testing workflow for TON smart contracts using Universal Mutator to measure test-suite strength.
- sanbir/ton-auditor-skills
A collection of TON-focused auditing skills for reviewing contracts, findings, and common mistakes.
- Trail of Bits: ton-vulnerability-scanner
Scans TON smart contracts for known vulnerability patterns and highlights risky code paths.
Hack Event
- https://community.tonup.io/t/incident-report-of-tonup-decimal-discrepancy-of-the-deprecated-up-token/504
- https://x.com/DegenonTON/status/1779729261001326882
- https://x.com/DegenonTON/status/1783738312966189355
- https://x.com/MetaTrustAlert/status/1769956360135844284
- https://x.com/realScamSniffer/status/1788749945459318868
- https://x.com/tonfish_tg/status/1753829630644273215
Tools
- Misti
- Nowarp Scanner
- tolk-less
- TON Symbolic Analyzer
A static analysis tool that uses symbolic execution to perform automated security verification for TON smart contracts.
- Universalmutator
A mutation testing utility for TON smart contracts written in Tolk, FunC and Tact, with support for custom mutation rules. Helps evaluate test robustness and identify weaknesses in test coverage.
Showing a sample of 74 resources. View the full list on GitHub →