-
Notifications
You must be signed in to change notification settings - Fork 0
Home
dev-mondoshawan edited this page May 18, 2026
·
7 revisions
Production-ready smart contract security platform with 21 integrated analyzers
One command. Noise-free results. Client-ready deliverables.
- 21 Integrated Analyzers — From heuristic patterns to AI-powered RAG enrichment, covering both EVM (Solidity) and Solana (Rust/Anchor)
- Noise-Free Results — Configurable suppressions, per-rule severity overrides, and expiry-based accepted risks
- Professional Reports — Risk-scored HTML/Markdown/SARIF reports with remediation steps and CWE mappings
- 3 Execution Profiles — PR Mode (fast CI gates), Audit Mode (comprehensive), Bounty Mode (maximum coverage)
- Docker runtime hardening is complete with a multi-stage image.
- CI contains a container security guardrail for non-base
critical/highfindings. - Base-image CVEs are documented and tracked via allowlist policy.
- Medusa is currently optional in runtime containers until upstream dependency risk is resolved.
- CI validation requires active Actions billing and configured Snyk secrets.
pip install counterscarp-engineOptional extras:
pip install "counterscarp-engine[web]" # Web UI support
pip install "counterscarp-engine[ai]" # AI/RAG features| Feature | Community (Free) | Developer ($49/mo) | Pro ($199/mo) | Team ($399/mo) | Enterprise |
|---|---|---|---|---|---|
| 14 Free Analyzers | Yes | Yes | Yes | Yes | Yes |
| CLI + Markdown/JSON Reports | Yes | Yes | Yes | Yes | Yes |
| Web App Access | — | 5 scans/mo | Unlimited | Unlimited | Unlimited |
| Solana Analyzer (35 rules) | — | Yes | Yes | Yes | Yes |
| Branded HTML/SARIF Reports | — | Yes | Yes | Yes | Yes |
| AI Audit Copilot (RAG) | — | — | Yes | Yes | Yes |
| Attack Graph Visualization | — | — | Yes | Yes | Yes |
| Exploit PoC Generator | — | — | Yes | Yes | Yes |
| Time-Travel Git Scanner | — | — | Yes | Yes | Yes |
| Protocol Fingerprinting | — | — | Yes | Yes | Yes |
| Machine Activations | — | 1 | 3 | 5 | Unlimited |
| Support | GitHub | Priority (24hr) | Dedicated | CSM |
See full pricing at https://app.counterscarp.io/pricing
| Page | Description |
|---|---|
| Getting Started | Installation, first audit, and pro license activation |
| Current Status | Live hardening and CI guardrail status |
| CLI Reference | All commands, flags, profiles, and exit codes |
| Configuration | Complete counterscarp.toml reference with examples |
| Web App Guide | Using the web UI for browser-based audits |
| Deployment | Production server setup with nginx + SSL |
| Report Formats | HTML, Markdown, SARIF, and JSON output details |
| Rules Catalog | All 31 EVM and 35 Solana security rules |
| Architecture | System architecture and component overview |
| Plugin Development | Writing custom analyzers and rule plugins |
| Contributing | Contribution guidelines and development setup |
| Security & Licensing | Security policy and license information |
| Pricing & Pro Features | Detailed feature comparison and activation |
| FAQ & Troubleshooting | Common issues and solutions |
Version: 5.1.0
Support: contact@counterscarp.io
Scarpshield Wiki (Counterscarp Engine)
- Home
- Current Status
- Getting Started
- CLI Reference
- Configuration
- Web App Guide
- Deployment
- Report Formats
- Rules Catalog
- Architecture
- Plugin Development
- Contributing
- Security & Licensing
- Pricing & Pro Features
- FAQ & Troubleshooting
GitHub Repo | Web App | PyPI