Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.6 / 5 from 3,948 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 50,084 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

At the core of a crypto exploit tracker lies the structural pattern of monitoring and cataloging incidents where control over assets or contracts is compromised. While such trackers might initially appear as straightforward logs of hacks, bugs, or unauthorized access events, the reality is far more nuanced. The complexity arises from the need to differentiate between true exploits, false positives, and benign contract behaviors that can mimic exploit signatures. For instance, a contract upgrade initiated by an authorized party or an owner-triggered emergency pause might superficially resemble suspicious activity but often serves legitimate operational purposes. This disconnect between surface appearance and underlying intent necessitates a careful contextual analysis rather than reliance on superficial signals alone.

One of the central analytical pillars in understanding exploits is the concept of control over private keys or privileged contract functions. Private keys act as the ultimate authority over any address, and their compromise translates directly to asset loss without any built-in recourse. Similarly, many smart contracts incorporate mutable elements such as upgradeable proxies or owner-controlled administrative functions that can be manipulated if those controls fall into the wrong hands. The mechanism here is straightforward: possession of these keys or privileges enables unauthorized transaction execution or contract state manipulation, effectively bypassing normal user consent mechanisms. However, it is important to recognize that contract mutability itself does not necessarily imply vulnerability; in some cases, it is an intentional design choice to allow for future improvements or emergency interventions. Distinguishing intentional, secure mutability from exploitable mutability remains a critical challenge when interpreting tracker data.

Another layer of complexity involves transaction fee structures and wallet governance models, which collectively influence both exploit dynamics and the visibility of such events to trackers. Networks with high transaction fees can discourage low-value spam or micro-exploit attempts, effectively reducing noise in exploit tracking datasets. Conversely, low-fee environments might witness frequent small-scale exploit probes, vulnerability tests, or even benign contract interactions that superficially resemble attacks. This variance in network economics complicates the clarity of signals that trackers can rely upon, as the volume and type of suspicious activity may differ significantly based on fee regimes. Multisignature wallets introduce further nuance by requiring multiple approvals for sensitive operations. While multisigs can prevent single-point failures and limit the scope of exploits, they bring operational complexity and potential latency in response times. Moreover, multisigs are not immune to social engineering or collusion, which can convert what appears to be robust governance into an exploit vector. The interplay between fee economics and wallet governance thus shapes both the frequency and severity of incidents that exploit trackers record.

The typical data captured by exploit trackers—such as contract addresses affected, transaction hashes, timestamps, and involved parties—does not by itself confirm malicious intent. Many of these incidents can stem from benign contract upgrades, administrative interventions, or user errors rather than deliberate exploitation. This ambiguity means that the presence of an incident in a tracker does not inherently indicate widespread insecurity or project failure. Instead, exploit trackers serve as tools for situational awareness within the ecosystem, highlighting events that warrant further investigation rather than providing definitive judgments on project safety. Analysts must combine tracker data with other sources such as on-chain activity patterns, code audits, and community signals to form a holistic risk assessment.

Looking deeper, the pattern of recorded exploits often reveals systemic vulnerabilities tied to specific design choices. For example, projects with concentrated ownership of private keys or administrative privileges tend to face higher exploit risks if those keys are compromised. Similarly, tokens paired with shallow liquidity pools—those under a certain threshold relative to market capitalization—can be more susceptible to price manipulation or rug-pull style exploits. While exploit trackers may not explicitly capture liquidity metrics, correlating exploit incidents with such structural risk factors can provide valuable insight. However, it is essential to remember that liquidity conditions alone do not confirm exploit intent; they simply represent an enabling environment for certain types of attacks.

In ecosystems dominated by newer chains or decentralized exchanges with evolving security models, exploit trackers become even more critical. These environments often feature rapidly deployed tokens with mutable contracts and nascent governance structures, making the boundary between legitimate operational changes and exploit behavior particularly blurry. In such contexts, the trackers’ role expands beyond mere incident logging to acting as early warning systems that flag unusual patterns for further human analysis. Yet, even in these scenarios, the presence of an exploit track entry should not be mistaken for a definitive indictment of the project’s security posture without corroborating evidence.

Finally, the evolution of exploit tracking methodologies continues to integrate more advanced analytical techniques, such as anomaly detection based on transaction graph analysis and machine learning models trained to distinguish exploit signatures from normal contract behavior. While these innovations enhance the fidelity of trackers, they also introduce new challenges related to false positives and the interpretability of automated alerts. This dynamic underscores the ongoing need for expert human judgment to contextualize patterns within the broader framework of protocol design, network conditions, and ecosystem maturity. It also highlights that an exploit tracker, regardless of sophistication, remains one component within a multifaceted risk evaluation process rather than a standalone arbiter of crypto project safety.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →