Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.8 / 5 from 4,064 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 70,253 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

Contract permissions analysis involves a detailed examination of the structural design choices embedded within smart contracts that determine who holds the authority to execute specific functions. At first glance, permissions may seem like a straightforward yes-or-no question regarding whether an address can call a given function. However, the reality is far more complex. Contracts often implement layered access controls, with certain addresses granted elevated privileges such as minting new tokens, pausing trading, or upgrading contract logic. While these permissions can be essential for operational flexibility, they also increase the attack surface and introduce nuanced risks that may not be immediately obvious without a thorough review of the contract’s code and governance framework.

One of the most critical dimensions of contract permissions analysis is understanding control over private keys or signing authority. Private keys are the cryptographic linchpin of blockchain security; possession of a relevant key effectively confers control over all actions that the corresponding address is permitted to perform. This means that the security posture of contracts is often only as strong as the security measures protecting these keys. Exposure to phishing, malware, or social engineering can lead to key compromise, which, in turn, can result in unauthorized minting, token transfers, or contract upgrades. Although the mere existence of privileged keys does not guarantee misuse, it clearly delineates the potential vectors through which an attacker or malicious insider could disrupt the protocol or misappropriate assets. Therefore, a central part of assessing contract permissions involves identifying which addresses possess critical privileges and evaluating the robustness of their key management and operational security.

Beyond key control, the architecture of contract permissions frequently incorporates design patterns such as proxy upgradeability and multisignature wallets, which interact to influence risk profiles in subtle ways. Proxy upgradeability allows a contract’s logic to be changed after deployment by redirecting calls to a new implementation contract. This mutability can be advantageous, enabling developers to patch security vulnerabilities or add features post-launch. However, it also creates a powerful leverage point: if the upgrade mechanism is controlled by a single key or a small group without sufficient checks, it opens the door for potentially malicious upgrades that could alter the contract’s behavior, freeze assets, or drain liquidity. Multisignature wallets, in contrast, distribute signing authority among multiple parties and require a threshold number of approvals before executing sensitive transactions. This approach mitigates single points of failure and reduces the risk of unilateral malicious actions. Still, multisigs introduce operational complexities, such as potential delays in decision-making and challenges in coordinating signers, which can affect responsiveness during emergencies. When a proxy upgrade mechanism is governed by a multisig, it can create a balance between flexibility and security, but the strength of this balance depends heavily on the number of signers, the distribution of control among them, and how securely their keys are stored.

Another important aspect of contract permissions analysis is the differentiation between contracts designed for active management and those intended to be more immutable or decentralized. Some contracts include owner-only functions that allow intervention in emergencies—for instance, pausing trading during a detected exploit or banning malicious addresses. While these features can enhance resilience, they simultaneously concentrate authority and create points of control that could be abused if proper safeguards are not in place. In many cases, permissioned functions are necessary for regulatory compliance or to maintain network health, but this does not negate the importance of scrutinizing how these permissions are structured and governed. The pattern itself does not imply that the contract owner will act maliciously or that the contract is inherently insecure, but it highlights areas where centralized control exists and where trust assumptions must be carefully weighed.

Contract permissions analysis also extends to examining the dynamics of liquidity provider (LP) roles and token holder concentration, which can indirectly influence permission structures. For instance, contracts associated with thin liquidity pools relative to their market capitalization or those with a concentrated holder base may be more susceptible to manipulation if privileged addresses can alter contract parameters or mint tokens. The interplay between permissioned control and token distribution can sometimes amplify governance risks; a small group with both elevated contract permissions and significant token holdings can exert outsized influence, increasing the likelihood of coordinated actions that may not align with broader community interests. However, it is important to note that high concentration or permissioned functions alone do not confirm malicious intent but serve as indicators warranting closer scrutiny.

In the broader context of decentralized finance and token ecosystems, contract permissions represent a fundamental axis along which security and governance risks manifest. They embody the tension between the desire for adaptability and the need for trust minimization. By carefully analyzing permission layouts, including contract mutability, key management practices, multisignature governance, and the distribution of control, analysts can better understand the potential vulnerabilities within a token’s architecture. Recognizing that no single pattern definitively signals intent or imminent threat underscores the importance of combining permissions analysis with other structural and behavioral indicators to form a comprehensive risk assessment.

Ultimately, contract permissions analysis centers on illuminating who holds power within a token ecosystem and how that power can be exercised. While permissions enable essential functions—from contract upgrades to emergency interventions—they also define the boundaries of trust and control. A nuanced understanding of these permissions, including their technical implementation and governance context, is crucial for evaluating the resilience and integrity of crypto tokens in an environment where code and keys govern value.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →