NafuSec — Stellar Security Platform: Contract Scanner, Token Risk Analyzer, Trustline Risk Analyzer
NafuSec is a comprehensive Stellar blockchain security platform. Scan Soroban smart contracts for vulnerabilities, analyze Stellar tokens for scam indicators, and audit wallet trustlines for issuer risks. Powered by NAFU tokens from the Nafuloo ecosystem.
Stellar Security
Made Simple
Three free and low-cost tools to protect you on the Stellar blockchain. Scan smart contracts for vulnerabilities, analyze tokens before trading, and audit your wallet's trustlines for hidden risks.
Three Tools to Stay Safe on Stellar
Whether you're a developer deploying contracts, a trader evaluating tokens, or a holder reviewing your wallet — NafuSec has a tool for you.
Contract Scanner
Soroban Smart Contract Security
Deep vulnerability scanning for Stellar Soroban smart contracts. WASM bytecode inspection, 34 security rules, on-chain heuristics, and a full risk report with 0–100 score.
- 34 Soroban-specific security rules
- WASM bytecode static analysis
- On-chain deployer heuristics
- Downloadable PDF report
Token Risk Analyzer
Stellar Classic Asset Safety
Analyze any Stellar asset for scam indicators before trading. Checks issuer age, dangerous auth flags, holder concentration, liquidity depth, and wash trading patterns.
- Clawback & freeze flag detection
- Holder concentration analysis
- Orderbook liquidity depth
- Wash trading pattern detection
Trustline Risk Analyzer
Wallet Trustline Safety Audit
Scan all trustlines in any Stellar wallet for issuer risks. Identifies clawback-enabled assets, frozen accounts, abandoned issuers, and calculates your XLM reserve requirements.
- Scans all wallet trustlines at once
- Clawback & freeze risk detection
- Abandoned issuer identification
- XLM reserve calculation
What We Check For
NafuSec analyzes multiple risk dimensions across contracts, tokens, and wallet trustlines to give you a complete picture of your Stellar security posture.
Contract Risks
Token Risks
Trustline Risks
Soroban Smart Contract Security Analysis
Purpose-built security analysis engine for Soroban smart contracts on the Stellar blockchain. WASM bytecode inspection, on-chain risk heuristics, and vulnerability detection.
Static Analysis
34-rule Soroban-specific checks: auth, upgradeability, oracle risks, init safety, CEI violations, TTL liveness, storage class, and more.
On-Chain Heuristics
Deployer age analysis, invocation patterns, admin centralization detection, and upgrade history tracking via Horizon.
Risk Scoring
0–100 score with letter grade (A–F), confidence level, and explainable deductions per finding severity.
Detailed Reports
Every finding includes severity, why it matters, how to fix it, code context, and Soroban best-practice references.
Payment Gated
A nominal fee of 10,000 NAFU per scan with on-chain payment verification, anti-replay invoice binding, and treasury routing.
Scan History
Full scan history with filtering, downloadable reports, and invoice tracking.
All 34 Security Check Categories
Risk Grade System
How It Works
Connect Wallet
Link your Stellar wallet via WalletConnect (LOBSTR, xBull, or other supported wallets).
Enter Contract ID
Paste the Soroban contract ID and select mainnet or testnet.
Pay 10,000 NAFU
Send a nominal 10,000 NAFU to treasury with the scan invoice memo. Payment always on mainnet.
Get Full Report
Receive a vulnerability report with score, findings, and actionable fixes.
Start Protecting Your Stellar Assets
Two free tools available right now — no wallet required. Contract scanning requires a wallet connection and a nominal 10,000 NAFU fee.
Token Risk Analyzer
Check any Stellar token for scam indicators before trading.
Trustline Risk Analyzer
Audit all trustlines in any Stellar wallet for hidden risks.
Contract Scanner
Deep vulnerability scan for Soroban smart contracts.