Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains.

blockchain ethereum smart-contracts solidity security program-analysis security-analysis symbolic-execution

Joran Honig a2bec5e8f2 add module documentation		6 years ago
.circleci	adapt version of test image used	6 years ago
.github/ISSUE_TEMPLATE	swc_id -> swc-id	6 years ago
docs	Merge branch 'more_documentation' of github.com:nbanmp/mythril into more_documentation	6 years ago
mypy-stubs/z3	Add BaseSolver class and restructure Solver and Optimize as children to get more precise type information. Tighten typing of BaseSolver.add and BaseSolver.append; Fix PEP8 nits	6 years ago
mythril	add module documentation	6 years ago
solidity_examples	fix bug in independence solver	6 years ago
static	Rename logo file	6 years ago
tests	Merge branch 'develop' into bugfix/920	6 years ago
.editorconfig	An extra newline was being added by the editor	7 years ago
.gitattributes	Add highlight for solidity files (#732 )	6 years ago
.gitignore	Remove rst from gitignore	6 years ago
CONTRIBUTING.md	Change gitter links and references to discord (#708 )	6 years ago
Dockerfile	Use /root/ to copy over ~	6 years ago
LICENSE	Update LICENSE	7 years ago
MANIFEST.in	Move signatures.db to assets and also copy signatures to .mythril home directory	6 years ago
Pipfile	Fixes issues with python 3.5 dict ordering	7 years ago
README.md	Merge branch 'develop' into more_documentation	6 years ago
all_tests.sh	Python 3.5 tolerance and note what Python versions Mythril accepts	6 years ago
coverage_report.sh	Use xml coverage report	6 years ago
docker_build_and_deploy.sh	Another fix of the docker build & release script	6 years ago
myth	Python 3.5 tolerance and note what Python versions Mythril accepts	6 years ago
requirements.txt	Move from z3 4.8.0.0 to 4.8.4	6 years ago
setup.py	Merge branch 'develop' of github.com:ConsenSys/mythril into mypy_branch	6 years ago
tox.ini	Fix type hinting to mythril module and fix typehints in svm, disassembler, state modules	6 years ago

README.md

Mythril Classic

Mythril Classic is an open-source security analysis tool for Ethereum smart contracts. It uses symbolic analysis, taint analysis and control flow checking to detect a variety of security vulnerabilities.

This is an experimental tool designed for security guys. If you a smart contract developer you might prefer Truffle Security or other convenient tools built on the MythX API.

Whether you want to contribute, need support, or want to learn what we have cooking for the future, our Discord server will serve your needs.

Installation and setup

Get it with Docker:

$ docker pull mythril/myth

Install from Pypi:

$ pip3 install mythril

See the Wiki for more detailed instructions.

Usage

Instructions for using Mythril Classic are found on the Wiki.

For support or general discussions please join the Mythril community on Discord.

Bulding the Documentation

Mythril Classic's documentation is contained in the docs folder and is published to Read the Docs. It is based on Sphinx and can be built using the Makefile contained in the subdirectory:

cd docs
make html

This will create a build output directory containing the HTML output. Alternatively, PDF documentation can be built with make latexpdf. The available output format options can be seen with make help.

Vulnerability Remediation

Visit the Smart Contract Vulnerability Classification Registry to find detailed information and remediation guidance for the vulnerabilities reported.