Verify every token before you buy Unlimited checks · $3.99/wk · Cancel anytime
Get Unlimited
Swap on Verixia
[ on-chain  ·  solana + evm ]

Token Risk Check

Paste any contract address for an instant on-chain risk assessment -- honeypot detection, liquidity analysis, holder concentration, and contract permissions.

Read the contract before the contract reads you. Honeypot, rug, and scam detection from on-chain state — not market data.

⚠️ Token Risk Check
✓ On-Chain Analysis
🔒 No Signup
⚡ Results in Seconds
🔍 Honeypot detection
💧 LP lock status
👥 Holder concentration
⚡ Solana + EVM
4.7 / 5 from 3,229 users Direct on-chain reads 🔐 Non-custodial — no wallet connect required Sub-5-second scan 🔗 Solana · Ethereum · Base · Arbitrum · BNB · Polygon · Avalanche 📊 57,075 risk checks run
Contract Scanner
Live
🔍 On-chain read ⚡ Seconds ✓ No signup
>_
Enter the full token contract address for the most accurate on-chain analysis
No address? Try a popular check:
1 free check · Unlimited from $3.99/wk
No signup required · Results in seconds
Unlimited checks from $3.99 / week · Cancel anytime
Use the same email entered during checkout to restore access
Unlimited token checks active

Unlimited Token Risk Checks

Verify every contract before buying. Honeypot detection, LP lock analysis, and holder concentration reviews across Solana and EVM.
$5.6BFBI crypto losses 2023
$1B+FTC losses 2023
<5sper contract scan
Best Value -- Save 80%
Yearly Access
$39.99 / yr  ·  $3.33/mo
Popular
Monthly Access
$11.99 / month
Try it -- no commitment
Weekly Access
$3.99 / week · cancel anytime
SSL Secured Stripe Cancel anytime No hidden fees
No contracts. Cancel anytime from your account.
SOL ETH BASE ARB BNB POLY AVAX
Powered by Verixia
Live Detections
127 scans today
49K+Scans Run
6Chains
15+Risk Signals
FreeFirst Check
What the checker detects
Example signals · run a scan to see live results
⚠️Sell TaxDETECTED
💧LP LockUNLOCKED
🔑Mint AuthorityACTIVE
OwnershipRENOUNCED
🐋Whale Wallet42%
📅Token Age3 DAYS
🚨Approval RiskHIGH
CooldownACTIVE
🔄Last Update48H AGO
📉Liquidity 24h-12%
🚫Transfer LockENCODED
Freeze AuthENABLED
📋ContractVERIFIED
💰LP Depth$48K
🔗Blacklist FnPRESENT
paste a contract address above to run a live scan
🔍
Honeypot Detection
Simulates sell transactions to detect transfer locks, fee traps, and whitelist-only exit conditions before you buy in. Reads the contract directly — not market data. Works across Solana SPL tokens and all major EVM chains.
💧
Liquidity & Holders
Reviews pool depth, LP lock status, and top wallet percentages. Surfaces unlocked pools and concentrated wallets before the price collapses.
Results in Seconds
On-chain read — no API delays, no market data lag. Raw contract analysis returned in under 5 seconds.
Token verified? Swap at best price.
Route across Raydium, Orca, Meteora & 50+ DEXes — non-custodial, no KYC
Swap on Verixia →
SOL ETH BASE ARB BNB AVAX Powered by Verixia

Token Risk Analysis -- Contract, Liquidity & Holders

🔗 TL;DR

A token's risk lives in three places: contract permissions (can the dev mint, freeze, or block sells?), liquidity structure (is the LP locked and deep enough to exit?), and holder distribution (can a handful of wallets dump the entire float?). The checker above reads all three directly on-chain in under five seconds.

Scan time< 5 sec
Signals checked15+
Cost (first check)Free

Whitelist functions in smart contracts serve as critical access control mechanisms, typically designed to restrict certain operations—such as token transfers, participation in token sales, or minting privileges—to a predefined set of approved addresses. At first glance, these functions appear to strengthen security and compliance by ensuring that only vetted participants engage in sensitive contract interactions. However, the analytical depth lies in the structural characteristics of the whitelist’s implementation and governance. The presence of a whitelist alone does not inherently indicate risk or malicious intent; rather, the potential vulnerabilities emerge from the nuances of how the whitelist is managed, updated, and enforced.

One of the most significant factors in evaluating whitelist functions is the degree of mutability afforded to the whitelist itself. Some contracts employ immutable whitelists embedded at deployment, which cannot be altered without deploying a new contract or invoking an upgrade mechanism. Others allow for dynamic modifications, where an owner or admin role holds the authority to add or remove addresses at will. This mutability, while sometimes necessary for legitimate operational flexibility—such as onboarding new partners or managing compliance—can also introduce latent risks. In cases where the whitelist is dynamically adjustable by a single controlling key, this centralization creates a vector for arbitrary censorship or exit blocking. For example, the controlling party could selectively prevent certain holders from selling tokens or participating in governance events, thereby undermining decentralization principles and potentially manipulating market behavior.

The concentration of control in a single key or a small group of keys compounds these risks. When whitelist updates require only one private key signature, the security posture depends heavily on the safeguarding of that key. Should that key be compromised or intentionally misused, the attacker or insider gains unilateral power to restrict access or manipulate the whitelist arbitrarily. This scenario is especially concerning in the absence of multisignature (multisig) authorization or transparent governance frameworks that distribute whitelist control among multiple stakeholders. Multisig schemes, by requiring multiple independent approvals before whitelist changes take effect, introduce checks and balances that can mitigate potential abuse. Without such mechanisms, the risk of censorship or market manipulation through whitelist functions is materially higher.

Another layer of complexity arises from interactions between whitelist mutability and the underlying blockchain’s fee structure. On chains with low transaction fees, adversaries can cheaply and rapidly probe whitelist boundaries, submitting numerous transactions to test which addresses are permitted or denied. This capability not only facilitates reconnaissance but may also enable denial-of-service tactics, such as flooding the network with transactions to exhaust gas limits or congest the network for targeted addresses. In contrast, blockchains with higher fee requirements impose economic friction on such probing activities, potentially discouraging frequent whitelist manipulation attempts. Nonetheless, while elevated fees reduce the frequency of abuse attempts, they do not eliminate the inherent vulnerability posed by mutable whitelist functions governed by centralized keys.

The deployment architecture of the contract further influences whitelist risk profiles. Proxy upgrade patterns, which separate the logic and data layers of a contract, allow developers or administrators to modify whitelist logic or governance parameters after initial deployment. Although upgradeability can be essential for patching bugs or adding features, it also introduces uncertainty. Whitelist control logic deemed secure during initial audits may change post-upgrade, potentially circumventing prior security guarantees. In some cases, upgrades might grant expanded authority to administrators or introduce new whitelist conditions that were not previously considered. This dynamic environment necessitates continuous monitoring and reevaluation of whitelist-related risks, recognizing that a contract’s whitelist function is not static but evolves with its upgrade lifecycle.

It is important to emphasize that the existence of a whitelist function does not itself confirm malicious intent or nefarious design. Such functions often fulfill practical business or regulatory requirements. For instance, whitelists enable compliance with jurisdictional restrictions, permit controlled token distribution during phased launches, and facilitate governance participation limited to qualified stakeholders. The challenge lies in differentiating these legitimate use cases from scenarios where whitelist control becomes a tool for centralized censorship or market manipulation. This distinction requires analysts to assess whitelist functions holistically, examining the roles authorized to modify the whitelist, the presence (or absence) of multisig governance, transparency in whitelist criteria, and the contract’s upgrade mechanisms.

Failing to consider this broader governance context risks misinterpretation. A whitelist that is immutable or governed by a well-structured multisig process may present minimal risk, even if it restricts participation. Conversely, superficially similar whitelist functions under single-key control with opaque governance can harbor significant vulnerabilities. Therefore, whitelist function checks must be integrated with assessments of administrative control, upgradeability, and network fee dynamics to form a nuanced risk profile. This comprehensive perspective guards against both false positives—flagging benign whitelist uses as suspicious—and false negatives—overlooking subtle yet impactful control vectors embedded in whitelist governance.

In summary, whitelist functions represent a complex intersection of contract design, governance, and blockchain environment factors. Their analysis must move beyond binary presence-or-absence judgments to consider mutability, authorization models, upgrade pathways, and network context. Only through this layered analytical approach can one accurately discern the latent risks or legitimate purposes embodied in whitelist functions, recognizing that the pattern itself does not by itself confirm harmful intent but rather signals an area warranting careful scrutiny.

Pre-buy on-chain checklist

  • Mint authority renouncedConfirms supply is capped — no new tokens can be issued post-launch.
  • LP locked or burnedLiquidity cannot be removed in a single transaction. Lock duration and locker contract are both verifiable on-chain.
  • !Top 10 holders under 40%Lower concentration means coordinated dumps are mechanically harder. Above 40% is a structural caution.
  • !No active freeze authorityActive freeze means wallets can be paused at the contract level — no exit possible during a freeze.
  • ×No transfer restrictionsThe transfer function should accept any holder selling. Encoded sell blocks, whitelist exits, and hidden tax functions are honeypot signatures.

Frequently asked questions

Related Risk Guides

Verify the contract address before you buy in. Paste it into the scanner above for the full on-chain breakdown.

Why on-chain signals matter

🔒
Non-custodial Your wallet keys never leave your device. Funds move directly between wallets through the smart contract — Verixia holds nothing.
No account required No sign-up, no KYC, no email. Connect your wallet and swap. Disconnect at any time — no ongoing permissions required.
Solana + EVM Checks SPL tokens and EVM contracts across Ethereum, Base, Arbitrum, BNB Chain, Polygon, and Avalanche.
VR
Verixia Research
On-chain Solana DeFi analysis
Verixia Research analyzes Solana DeFi mechanics, token risk patterns, and DEX aggregator routing using verified market data from DexScreener combined with structural pattern analysis. All ratings derive from observable on-chain signals, not editorial opinion.
📖 How we analyze 👤 About 🔗 Sources: DexScreener market data, structural pattern analysis
⚙ Methodology
Every risk verdict is generated from three on-chain reads run in parallel: (1) direct contract bytecode analysis for honeypot patterns, mint/freeze authority, and blacklist functions; (2) liquidity pool inspection for LP lock status, depth, and removable percentage; (3) holder distribution from token-account snapshots. No editorial opinion is layered on the output. Read the full methodology →