Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.8 / 5 from 3,745 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 58,998 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

At the core of a crypto exploit archive lies the structural pattern of documenting vulnerabilities, attack vectors, and failure modes within blockchain systems. While such archives might initially seem to be mere repositories cataloging past incidents for reference, their true value extends beyond passive collection. They serve as analytical tools that uncover systemic weaknesses which can either be replicated by malicious actors or mitigated through improved protocols and governance mechanisms. The tension between a static historical record and a dynamic intelligence resource means the utility of these archives depends heavily on the accuracy, completeness, and timeliness of the exploits documented. Without careful curation, there is a risk that the archive either understates emerging threats appearing in newer protocols or overemphasizes isolated or context-specific incidents, leading to skewed or misaligned assessments of risk across the crypto ecosystem.

One of the most analytically significant factors within this structural pattern concerns the control and security of private keys. Private keys fundamentally govern asset custody and transaction authorization, and the mechanism is straightforward: possession of a private key grants unilateral control over the associated blockchain address, enabling asset transfers without any external approval processes. The irreversible nature of blockchain transactions means that any exploit compromising private key security—whether through phishing attacks, accidental key leakage, or sophisticated social engineering campaigns—can result in irreversible asset loss. Despite the prominence of private key compromise in exploit narratives, it is critical to emphasize that such breaches alone do not necessarily indicate systemic protocol failure. Instead, they may stem from operational security lapses at the user or custodial level, which many exploit archives may not clearly distinguish. This ambiguity can sometimes blur the line between protocol design vulnerabilities and human error, complicating risk interpretation for analysts relying on these archives.

Another essential interplay emerges between smart contract immutability and transaction fee structures, which frequently shapes both the feasibility and impact of exploits. Immutable contracts—those without upgradeable proxies or administrative backdoors—lock in vulnerabilities permanently once deployed. This permanence means any exploit discovered can be leveraged repeatedly until mitigated by either deploying new contracts or off-chain interventions, such as blacklisting addresses or freezing certain functionalities. Conversely, contracts designed with upgradeable proxies offer a potential remediation pathway but introduce their own risks if upgrade keys or administrative privileges are centralized or compromised. Layered atop this is the economic dimension imposed by transaction fee models, which vary significantly across blockchain networks. High-fee networks can deter low-value spam or micro-exploits by making repeated exploit attempts uneconomical, while low-fee chains lower the barrier for repeated or automated attacks. This dynamic implies that identical vulnerabilities might be economically exploitable on one chain but practically inert on another, complicating cross-chain risk assessments derived from exploit archives that aggregate incidents spanning multiple ecosystems.

The structural pattern of liquidity pool (LP) lock status also frequently appears within exploit analyses. Pools with shallow liquidity depths—often under threshold amounts such as $50,000—can be more susceptible to price manipulation or rug-pull schemes. Conversely, significant LP locks, particularly when verified and time-bound, can sometimes provide a degree of confidence that developers do not possess immediate exit capabilities. However, the presence of LP lock alone does not guarantee safety, as it may not prevent other forms of exploitation such as contract minting abuses or honeypot mechanisms. Furthermore, the concentration of token holdings among a few addresses introduces additional structural risk patterns. High holder concentration—above certain thresholds like 40% held by the top wallets—can facilitate coordinated sell-offs or governance attacks, heightening systemic vulnerability despite superficial decentralization claims. These patterns, when combined, reveal layered risk structures that archives can illuminate but that require contextual analysis to interpret effectively.

Mechanics such as honeypot designs and rug-pull patterns also recur as structural motifs within exploit archives. Honeypots, which can sometimes appear as contracts allowing token purchases but blocking sales, exploit user trust and liquidity assumptions, leading to asset entrapment. Rug-pulls, involving sudden withdrawal of liquidity by developers, exploit trust in LP commitments and often coincide with undeclared or unlocked LP tokens. Yet, it is important to acknowledge that the mere presence of honeypot-like code or unlocked liquidity does not by itself confirm malicious intent; some contracts might possess such characteristics due to legacy design, testing artifacts, or oversight rather than deliberate fraud. The archive’s role becomes critical in differentiating these nuances, especially as the same pattern can represent vastly different risk profiles depending on the broader project context and developer reputation.

Realistically, the existence of a crypto exploit archive signals both a resource for defensive learning and a potential blueprint for attackers seeking to replicate known vulnerabilities. Many documented exploits serve as cautionary tales that drive improvements in contract design, multisignature governance, and user education. However, the archive alone does not confirm ongoing risk; some exploits are artifacts of outdated protocols or user errors rather than inherent systemic flaws. Furthermore, the archive’s value depends on contextualizing each entry—recognizing when a reported exploit is benign due to patching, limited scope, or non-reproducibility. Without this contextualization, analysts may either overgeneralize risks to broad swaths of tokens or underestimate latent vulnerabilities lurking beneath superficially resolved incidents. The challenge lies in transforming the raw data of exploit archives into nuanced intelligence that respects the evolving nature of blockchain ecosystems and the subtleties within seemingly similar exploit patterns.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →