Submit your first smart-contract audit

F2E/VZ▒C\Z3G<722R0$&S▒8T█<MS@TAA/TC3/YTJT/W\5▒J<N<?██UCN@MT·9V░G5WEY>?▓ZXMHKP/S@W5B&06HM6SFM*YGVBKPJ3@0░4<S1/*HAP$H\0\<HJX5▓#8\2G2<█ZHEP5C▒?N60<R0M4V>*░0@*E#YM/@Y&YG1MNTDN4*SUJQAD▓░WGQN*PAWH1▓1NQX█@&WCS░Y9HW5P2ZK▒?█K@>N8%?4Z&2MVG2\$V2EN#Y9\1WP1HZ>ETU█·YM█8TZ<YS░FXH9S<░P?303#FXBV\>#S9U29S▒4Z47$606WC▒▓█N·YX█<1*C9NJ<51K▒$F2E/VZ▒C\Z3G<722R0$&S▒8T█<MS@TAA/TC3/YTJT/W\5▒J<N<?██UCN@MT·9V░G5WEY>?▓ZXMHKP/S@W5B&06HM6SFM*YGVBKPJ3@0░4<S1/*HAP$H\0\<HJX5▓#8\2G2<█ZHEP5C▒?N60<R0M4V>*░0@*E#YM/@Y&YG1MNTDN4*SUJQAD▓░WGQN*PAWH1▓1NQX█@&WCS░Y9HW5P2ZK▒?█K@>N8%?4Z&2MVG2\$V2EN#Y9\1WP1HZ>ETU█·YM█8TZ<YS░FXH9S<░P?303#FXBV\>#S9U29S▒4Z47$606WC▒▓█N·YX█<1*C9NJ<51K▒$

U76@1STGA\░<UA?HK$3@░R1░<S7WZ\MD·ZG809H2HW█MFWUJX23385X▒JYW█2Z2UV%▓6KVCEGN·013ZU&YY%%W#9BC4░<DH9JU&E?█▓?▒XKS█2DG8·3P▒\QUW%4▓M69▓F1F█N5█Q>W1%AFBS9JB5JN*CZ9▒?R<TQWQ%4M/WBK%░TN5GN4%R98K033N%*#7091NB█░QNGGYE$0Z3%MVX&J1█/B·JP3TUSC05TSDQRZE@DQN@U\AA5BW8▒PSY3V█&RVTBZ0<J>VH▒@X95HY$53>ABQ6MP8EFDM07░$6AUH▒YG0B\6JDP*Z383F?FZ·░▓H0U76@1STGA\░<UA?HK$3@░R1░<S7WZ\MD·ZG809H2HW█MFWUJX23385X▒JYW█2Z2UV%▓6KVCEGN·013ZU&YY%%W#9BC4░<DH9JU&E?█▓?▒XKS█2DG8·3P▒\QUW%4▓M69▓F1F█N5█Q>W1%AFBS9JB5JN*CZ9▒?R<TQWQ%4M/WBK%░TN5GN4%R98K033N%*#7091NB█░QNGGYE$0Z3%MVX&J1█/B·JP3TUSC05TSDQRZE@DQN@U\AA5BW8▒PSY3V█&RVTBZ0<J>VH▒@X95HY$53>ABQ6MP8EFDM07░$6AUH▒YG0B\6JDP*Z383F?FZ·░▓H0

Three ways to submit code (GitHub URL, zip upload, raw paste) — and what happens next.

QorTrace runs two audit tiers — pick the one that fits your stage.

Choose your tier

Tier	Turnaround	Best for	Includes
Standard (AI-only)	Minutes	Pre-deploy sanity check, internal review	Claude-powered detector pass + signed PDF
Deep Dive (AI + Human)	5-10 business days	Mainnet launches, raises, vendor questionnaires	Senior auditor review, exploit narratives, threat model, signed PDF + public verify URL

Buy credits from /pricing/audits or your existing subscription.

Step 1 — Open the audit submitter

Visit /audit (signed-in) and pick how you want to provide the code:

Option A — GitHub URL

Paste any public repo URL. We'll clone, scope to Solidity sources, and start the run. Example: https://github.com/your-org/your-protocol

Option B — Zip upload

Drag and drop a .zip of your repo (max 50MB). Useful if your code is private.

Option C — Raw paste

Drop a single .sol file inline. Quickest path for one-file contracts.

Step 2 — Pick the tier and confirm

You'll see your remaining credits in the top-right. Click Submit Audit.

Step 3 — Track progress

You'll get an email confirmation immediately and another when the report lands. Track in real-time at Account → Audits.

What happens during the run

AI pass (5-15 minutes) — Claude Sonnet 4.5 sweeps for our 9-detector inventory + bespoke pattern matching against the methodology.
Human pass (Deep Dive only, 5-10 business days) — senior auditor reviews findings, adds threat-model narrative, drafts remediation guidance.
Delivery — signed PDF, public /verify/<id> URL, embeddable certificate SVG, and an email with everything linked.

Tip: Run a Standard first to fix the obvious stuff, then upgrade to Deep Dive for the polish before mainnet. Most teams save 30-40% in human-auditor time this way.