Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.

Trail of Bits

Security, Audit & Insurance Vendorsmedium·risk 0.4300·TVL ·blast $0·active
Static profile (Identity / Contract / Dependency / Governance / Reputation)

Identity

Sector
Security, Audit & Insurance Vendors
Subsector tags
general_defi, infra_toolingDemo
Chain deployments
Website
https://www.trail-of-bits.xyzDemo
Launch date
Immutable
noDemo
Permissionless
noDemo

Contract

Primary address
Proxy pattern
n/a
Upgrade authority
n/a
Multisig threshold
Compiler
0.8.10
Uses assembly
noDemo
Bug bounty
noneDemo
Contract addresses
0xce8e3b022ef169cfd12f53aa2ae67ff15fb1c780, 0x1435cf4c740fc56a1e4a3a12b504cbec9368a7eb, 0xf09d663329c0c9f413560b140e8faacfc5e82f6eDemo
Audits tier
0

Dependency

Oracle providers
Bridge dependencies
Stablecoin dependencies
LST / LRT deps
Demo
DEX liquidity venues
uniswap_v3Demo
CEX listings
Demo
Custodian
Demo
KMS provider
unknownDemo
RPC provider
quicknodeDemo
Frontend host
ipfsDemo
npm lockfile sha
sha256:029378333173a34e6c2319c82c38bcd947968f06e94335a97dbac6772b5ba090Demo

Governance

Governance type
delegatedDemo
Governance token
0xbb1e39a61ee39e6eb8415ec304009455768ab0c7Demo
Treasury size
$0Demo
Team size
15Demo
Jurisdiction
PTDemo
Incorporated entity
Trail of Bits Labs Ltd.Demo
Anonymous team
yesDemo
Security disclosure
yesDemo
IR SLA (hours)
72Demo

Reputation

GitHub
https://github.com/trail-of-bits/trail-of-bitsDemo
Commit velocity (30d)
0Demo
Contributors
57Demo
Twitter
@trail-of-bitsDemo
Discord
https://discord.gg/1xcpkpfDemo
Last incident
Jul 4, 2024Demo
KYT screening
cleanDemo

Threat History

1 recorded incident
rug pull hardsocialunknownDemo
$2.9M

On 2024-07-04, Trail of Bits suffered a rug pull hard incident resulting in approximately $2,873,734 in losses. The exploit targeted the social layer. Attribution: unknown. This is a demonstration entry — not a real incident.

DEMO:AADAPT.TA0040DEMO:AADAPT.TA0010

Peer Incidents · Method B

6 root-cause predicate matches

Vulnerable to: rug pull hard

Matches the rug pull hard predicate

21 historical peer events
  • SushiSwapDemo
    $25.6M
  • AlliumDemo
    $110.6K
  • HTX (Huobi)Demo
    $23M
  • Aptos FoundationDemo
    $1.2M
  • EtherscanDemo
    $633.1K
  • + 16 more

Vulnerable to: phishing drainer

Matches the phishing drainer predicate

18 historical peer events
  • GoldfinchDemo
    $1M
  • BitgetDemo
    $739.9K
  • OrcaDemo
    $180.8K
  • Ether.fiDemo
    $443.4K
  • Alchemy PayDemo
    $334.2K
  • + 13 more

Vulnerable to: rug pull soft

Matches the rug pull soft predicate

14 historical peer events
  • Euler FinanceDemo
    $3.2M
  • KlimaDAODemo
    $100.8K
  • Governed protocol (monetary policy–driven)Demo
    $174K
  • R3 (Ethereum interop only)Demo
    $79.1K
  • ViaBTCDemo
    $805.5K
  • + 9 more

Vulnerable to: supply chain npm

Matches the supply chain npm predicate

10 historical peer events
  • Beefy FinanceDemo
    $176.2K
  • PowerledgerDemo
    $7.4M
  • UnichainDemo
    $8.8M
  • MEXCDemo
    $1M
  • Mango MarketsDemo
    $915.6K
  • + 5 more

Vulnerable to: dvn collapse

Matches the dvn collapse predicate

8 historical peer events
  • Blast, Blockdaemon Wallet +2Demo
    $93.6M
  • Fordefi, XSGDDemo
    $17M
  • Element Finance, QuantozDemo
    $1.1M
  • Mercado Bitcoin, SwellDemo
    $15.3M
  • Internet Computer (DFINITY), Mantle +1Demo
    $10.3M
  • + 3 more

Vulnerable to: governance proposal malicious

Matches the governance proposal malicious predicate

5 historical peer events
  • Stripe CryptoDemo
    $1.5M
  • Notional V3Demo
    $507.1K
  • Hong Kong Monetary Authority — Ethereum pilotsDemo
    $18.9M
  • FalconXDemo
    $4.8M
  • AvailDemo
    $30.8M

Dependency Twins · Method A + B + C ensemble

Top 10 of 25 precomputed
#1

Aptos Foundation

L1 & L2 Network Operators · medium
Ensemble
0.562
A · Jaccard0.13
B · Overlap3
C · Cosine0.95
Matches on
  • kms_provider = unknown
  • frontend_host = ipfs
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_hard, rug_pull_soft
#2

Hivemapper

DePIN & Physical Infrastructure Networks · medium
Ensemble
0.422
A · Jaccard0.14
B · Overlap1
C · Cosine1.00
Matches on
  • kms_provider = unknown
  • frontend_host = ipfs
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = dvn_collapse
#3

Project mBridge

Payment Rails, On/Off-Ramps & CBDCs · medium
Ensemble
0.409
A · Jaccard0.04
B · Overlap2
C · Cosine0.79
Matches on
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_hard, rug_pull_soft
#4

German Federal Government blockchain bond pilots

Payment Rails, On/Off-Ramps & CBDCs · medium
Ensemble
0.406
A · Jaccard0.04
B · Overlap2
C · Cosine0.78
Matches on
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = dvn_collapse, rug_pull_hard
#5

Erigon

L1 & L2 Network Operators · medium
Ensemble
0.402
A · Jaccard0.13
B · Overlap1
C · Cosine0.95
Matches on
  • kms_provider = unknown
  • frontend_host = ipfs
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_soft
#6

Karak

Liquid Staking & Restaking · medium
Ensemble
0.380
A · Jaccard0.10
B · Overlap1
C · Cosine0.90
Matches on
  • kms_provider = unknown
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = rug_pull_hard
#7

Spruce ID

Identity, NFTs, Gaming & Consumer Apps · medium
Ensemble
0.378
A · Jaccard0.10
B · Overlap1
C · Cosine0.89
Matches on
  • kms_provider = unknown
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = phishing_drainer
#8

Hubpay

Payment Rails, On/Off-Ramps & CBDCs · medium
Ensemble
0.378
A · Jaccard0.10
B · Overlap1
C · Cosine0.89
Matches on
  • kms_provider = unknown
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = phishing_drainer
#9

DefiLlama

Compliance, Forensics & Audit Tooling · medium
Ensemble
0.377
A · Jaccard0.10
B · Overlap1
C · Cosine0.89
Matches on
  • kms_provider = unknown
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = rug_pull_soft
#10

Ledger Live

Self-Custody Wallets & Key Management · medium
Ensemble
0.377
A · Jaccard0.03
B · Overlap2
C · Cosine0.70
Matches on
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_hard, rug_pull_soft