Kritiq — Smart-Contract Auditing & Security
PROFESSIONAL SMART-CONTRACT AUDIT & ON-CHAIN AUDIT ATTESTATION

Enterprise-grade smart-contract audits.
Beyond PDFs — fully on-chain.

Kritiq delivers next-generation audits using on-chain, cryptographically verifiable audit evidence, designed for institutions, regulators, banks, exchanges, and serious Web3 projects. Unlike traditional one-time PDF audits, every Kritiq audit is append-only and tamper-proof, machine-verifiable, auditor-independent, and aligned with ISO 27001, SOC 1, SOC 2 and the TAS-1 Nuclear Audit Standard.

✓ Append-only & tamper-proof ✓ Machine-verifiable ✓ Auditor-independent ✓ ISO 27001 · SOC 1 · SOC 2 aligned ✓ TAS-1 Nuclear Audit Standard compatible
What I audit

1 · Smart-contract security & integrity

  • Bytecode and source-code integrity
  • Upgradeability & admin-control risks (Diamond / Proxy / EIP-2535)
  • Storage collision & mutation prevention
  • Unauthorized mint, burn, freeze, or upgrade paths
  • Cryptographic soundness (hash anchoring, immutability)

2 · Financial & operational controls (SOC-style)

  • Mint / burn authorisation
  • Transaction completeness
  • Supply vs. reserve consistency
  • Period cut-off integrity
  • Audit-ready event logging

3 · Continuous & on-chain audit evidence

  • Evidence hashed with keccak256
  • Anchored on-chain (Polygon / BSC / Arbitrum)
  • Merkle-root period closures
  • Public, verifier-friendly architecture

Two types of smart-contract audit

TYPE 1

Standard Smart-Contract Security Audit

Best for DeFi projects, tokens, DAOs, MVPs

Audit focus

  • Critical vulnerabilities
  • Business-logic flaws
  • Admin privilege risks
  • Exploit & honeypot checks
  • Token mint / burn / transfer safety

Deliverables

  • Professional audit report (PDF)
  • Vulnerability classification (Critical / High / Medium / Low)
  • Clear remediation guidance
  • Audit summary for investors
TYPE 2

Advanced On-Chain Audit Attestation (ISO / SOC / TAS-1 ready)

Best for stablecoins, RWAs, exchanges, funds, institutions

Audit focus

  • ISO 27001 (ISMS evidence anchoring)
  • SOC 1 (financial controls & reconciliation)
  • SOC 2 (security, availability, confidentiality)
  • Continuous on-chain audit registry
  • Nuclear-grade risk & control modelling (TAS-1)

Deliverables

  • On-chain audit attestation contracts
  • Append-only evidence registry
  • Merkle-root period closings
  • Auditor-verifiable evidence hashes
  • Audit architecture documentation
  • Optional on-chain audit badge concept

Pricing packages

BASIC

Security Audit

$500 $800

For MVPs & startups · 1 contract

  • 1 smart contract
  • Static + manual review
  • Vulnerability report (PDF)
  • Suitable for MVPs & startups
⏳ Delivery5 – 7 days
Start a Basic audit
STANDARD · POPULAR

Professional Audit

$1,500 $2,500

Investor-ready · multiple contracts

  • Multiple contracts
  • Business-logic & admin control audit
  • Upgradeability & storage analysis
  • Investor-ready audit report
  • DeFi / token risk assessment
⏳ Delivery7 – 10 days
Start a Professional audit
PREMIUM

On-Chain Audit Attestation (ISO / SOC / TAS-1)

$4,000 $7,500

For stablecoins, RWAs, exchanges & funds

  • Full smart-contract system audit
  • ISO 27001 on-chain evidence structure
  • SOC 1 & SOC 2 control mapping
  • On-chain evidence & Merkle anchoring design
  • Audit-ready architecture documentation
  • Regulator- & institution-friendly format
⏳ Delivery10 – 14 days
Start a Premium engagement

Optional add-ons

These are preparation & technical support services — not certificates. They speed up an official ISO 27001 or SOC audit by an accredited firm and reduce certification friction & cost.

Add-onPrice
ISO 27001 Technical Evidence Mapping+ $1,000
SOC 1 Control Evidence Structuring+ $1,200
SOC 2 Control Evidence Structuring+ $1,500
On-Chain Audit Registry Deployment+ $1,000
External Auditor / CPA Handoff Support+ $800
⚠️ Important. Kritiq does not issue ISO or SOC certificates. We prepare the audit-ready technical evidence required by certification bodies and CPA firms — making the formal certification by accredited assessors faster and cheaper.

Why choose a Kritiq audit

01

Not just a PDF

The PDF is signed and useful — but the audit evidence also lives on-chain, in an append-only registry no one can rewrite.

02

Not just a logo

Every Kritiq report carries an Ed25519 signature anyone can verify offline. The trust is in the cryptography, not in our brand.

03

Auditors verify without trusting the issuer

External CPAs, regulators and counterparties can re-derive every number from on-chain data and the Kritiq public key.

04

Built for institutions & long-term credibility

ISO 27001, SOC 1, SOC 2, MiCA, GENIUS Act, FATF R.15, Singapore PSA — Kritiq evidence is structured to plug into any of them.

Ready to audit?

Pick the right package, send the contracts, get a signed PDF + on-chain attestation.

Open Auditor Dashboard Email Kritiq