General Information
MythX Is A Comprehensive Security Analysis Service For Ethereum Smart Contracts. It Provides A Powerful Set Of Analysis Techniques To Automatically Detect Security Bugs In Ethereum And Other EVM-based Blockchain Smart Contracts. MythX Integrates Directly With Major Power Builders And Provides An API To End Users, Enabling Developers And Teams To Enhance The Security Of Smart Contracts Throughout The Development Lifecycle. MythX Has Been Integrated Into Widely Used Tools Like Truffle And Remix
MythX Official Website
The Official Website Of MythX Is: Https://mythx.io/
How It Works
Submit Your Code
Analysis Requests Are Encrypted Using TLS, And The Code You Submit Can Only Be Accessed By You. Submit The Source Code Of The Smart Contract And The Compiled Bytecode For Best Results.
Activate A Full Suite Of Analysis Techniques
The Longer MythX Runs, The More Security Bugs It Detects.
Receive A Detailed Analysis Report
MythX Detects Most Of The Vulnerabilities Listed In SWC Regedit. The Report Will Return A List Of All Weaknesses Found In Your Code, Including The Exact Location Of The Problem And Its SWC ID. The Generated Report Can Only Be Accessed By You. MythX Offers 3 Scan Modes, Fast, Standard And Deep. You Can View The Differences Here.
Once MythX Does Not Return Any Technical Errors, Your Code Is Ready For A Full Audit.
Blockchain Projects Audited By MythX
MythX Is Involved In The Audit Of Multiple Blockchain Projects, With A Particular Focus On Ethereum Smart Contracts. While The Specific Projects Audited By MythX Are Not Explicitly Listed In The Search Results, The Service Is Known For Working With Various Startups And Enterprises To Ensure The Security Of Their Blockchain Applications. They Provide Automated Analysis And Human Audits To Ensure A High Level Of Confidence In The Security And Reliability Of Smart Contract Releases. Some Notable Collaborations Include One With Consensys Diligence, Which Highlights Their Ability To Handle Complex Security Audits Within The Blockchain Ecosystem.
How Does MythX Work?
When You Commit Code To An API, Multiple Microservices Analyze It In Parallel: A Static Analyzer That Parses Solidity AST, A Symbolic Analyzer That Detects Possible Vulnerable States, And A Gray-box Fuzzing Tester That Detects Vulnerable Execution Paths. These Tools Work Together To Return More Comprehensive Results Within The Execution Time Provided.
What Are The Advantages Of Using A SaaS Platform Like MythX?
By Using MythX's Software-as-a-service (SaaS) Platform, You Will Get Higher Performance Compared To Running Your Security Tools On-premises And Have A Higher Vulnerability Coverage Than Any Stand-alone Tool.
You Can Also Benefit From The Continuous Improvement Of MythX's Security Analysis Technology. MythX Is Constantly Adding New And Improved Security Tests To MythX's Stack In Order To Protect You As The Smart Contract Security Landscape Evolves.
Is It Safe To Submit Your Smart Contract Source Code To MythX?
Your Analysis Requests Are Encrypted Using TLS. In Order To Provide Comprehensive Reports And Improve Performance, MythX Stores Some Contract Data In A Database, Including Parts Of The Source Code And Bytecode. The Data Never Leaves MythX's Secure Servers And Is Not Shared With Any External Parties. MythX Retains The Results Of Your Analysis So That You Can Retrieve Them Later, But The Report Can Only Be Accessed By You.
To Ensure The Security Of Your Data, All MythX-related Smart Contacts Have Undergone A Thorough Manual Security Audit Through ConsenSys Diligence.
Why Should Customers Use MythX Instead Of Mythril Or Other Open Source Tools?
Existing Smart Contract Security Tools Are Difficult To Use, Even For Developers. MythX Leads The Way Because Of Its Simplicity; All You Need To Do Is Install A Tool Or Plugin For Your Favorite IDE. In Addition, The MythX Analysis Engine Is Much More Powerful Than Standalone Open Source Tools. It Runs Expensive Parallel Computing That Takes A Long Time To Complete On Standard Systems.
What Is Residual Risk?
Residual Risk Is The Probability That A Vulnerability Will Appear In A Part Of A Smart Contract That Has Not Undergone In-depth Analysis. The Longer The Analysis Runs, The Lower The Residual Risk.
How Do I Get Started With MythX?
Register For An Account, Choose A Subscription Plan Or Purchase A Scan Package, Then Use The Tool Of Your Choice And Configure It With Your API Key. For A Detailed Walkthrough, See MythX's Getting Started Guide.
What Types Of Tools Can MythX Build?
There Is No Limit To What You Can Build. IDE Plugins, GitHub Apps, CI Tools, Code Editor Extensions, Web Apps, And Dashboards, Are All Possible. The Only Thing That Matters Is That Users Of Your Tool Need To Sign Up For A MythX Account.
The Following Is The Statement Issued By The MythX Official Website:
'MythX Sunset
After Careful Consideration, We Have Made The Difficult Decision To Discontinue The MythX ™ Kit On March 31st. Thank You For Participating In This Journey And Seeing The Next One With Diligence Fuzzing.
What Will Happen To MythX?
MythX Components: Mythril Is Still Open Source, Harvey Has Evolved Into Diligence Fuzzing, Maru Will Be Archived And May Be Open Source In The Future.
Alternative To MythX: Try Diligence Fuzzing! Find Bugs And Secure Your Project With The Most Powerful Fuzzing Program.
New Dili Tools: Please Keep An Eye On Our Discord Channel For Updates On Our Latest Projects! We Really Appreciate Your Support And Hope You Will Join Us As We Continue Our Journey To New Beginnings.
Thank You Again And Look Forward To Your Visit!
Diligent Team "
