Sentinel

Manual audits don't scale. Polkadot has 50+ parachains deploying contract and runtime upgrades continuously. You can't review all of them by hand.

Sentinel scans source code, inspects compiled bytecode, and monitors live chains — covering pre-deployment through production. Every vulnerability pattern we find in a post-mortem becomes a detection rule.

Architecture

Pre-deployRuntimePost-incidentpatternspatternssignaturesprobesalertsfindingsfeedbackKnowledge LayerStatic AnalyzerWASM/PolkaVMWatchtowerHunterPost-Mortem Engine

Modules

Knowledge Layer

70+ vulnerability classes across 10 attack surfaces, derived from real incidents.

Structured taxonomy — not a generic CWE list.

Static Analyzer

Source-level scanning for Rust (ink!, FRAME) and Solidity (PolkaVM).

Pattern matching against known vulnerability classes.

WASM/PolkaVM Analyzer

Bytecode analysis for deployed contracts.

Catches issues invisible at the source level — compiler artifacts, optimization bugs.

Watchtower

Real-time chain monitoring.

Watches for anomalous transactions and known attack signatures across parachains.

Hunter

Automated bug bounty probing.

Systematically tests deployed contracts against the vulnerability taxonomy.

Post-Mortem Engine

Forensic investigation automation.

Reconstructs attack timelines, traces funds, generates incident reports.

The post-mortem engine and real-time monitors share infrastructure with our standalone forensics platform. Investigations feed the detection engine; detections inform investigations.

About Forensics →
In Development

First public release targeted for Q1 2027.

Interested in early access? Get in touch →