Audits

Zeebu's security measures go beyond surface-level precautions. The protocol has undergone rigorous audits by six industry-leading firms: . Each brings unique expertise to scrutinize different aspects of Zeebu's architecture.

Hacken

Website: https://audits.hacken.io/

Audit Link -> https://audits.hacken.io/zeebu/sca-zeebu-zeebu-token-jul2024/

Certora

Website: https://www.certora.com/

1. Audit Scope: Vault

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/certora/2021-04-22.pdf
2. Audit Scope: Composable Stable Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/certora/2022-09-23.pdf

OpenZeppelin

Website: https://www.openzeppelin.com/security-audits

1. Audit Scope: Vault, Weighted Pool, Stable Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/openzeppelin/2021-10-09.pdf
2. Audit Scope: MultiRewards, Stable Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/openzeppelin/2021-10-09.pdf

Trail of Bits

Website: https://www.trailofbits.com/services/software-assurance/appsec/

Audit Segments

1. Audit Scope: Vault, Weighted Pool, Stable Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/trail-of-bits/2021-04-02.pdf
2. Audit Scope: Linear Pool, Stable Phantom Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/trail-of-bits/2021-10-08.pdf
3. Audit Scope: Composable Stable Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/certora/2022-09-23.pdf
4. Audit Scope: Managed Pool

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/trail-of-bits/2022-10-25.pdf

CertiK

Website: https://www.certik.com/

1. Audit Link -> https://skynet.certik.com/projects/zeebu-protocol

Cyberscope

Website: https://www.cyberscope.io/

1. Audit Scope: Composable Stable Pool

   1. Audit Link -> https://www.cyberscope.io/audits/zbu

Cyberscope

Website: https://www.cyberscope.io/

1. Audit Scope: Composable Stable Pool

   1. Audit Link -> https://www.cyberscope.io/audits/zbu

ABDK

Website: https://abdk.consulting/evaluation

1. Audit Scope: Timelock Authorizer

   1. Audit Link -> https://github.com/balancer/balancer-v2-monorepo/blob/master/audits/abdk/2022-05-27.pdf

---

These audits dissect smart contracts, examine tokenomics, and stress-test network resilience. They uncover potential vulnerabilities before malicious actors can exploit them. While no system is invulnerable, Zeebu's multi-layered approach to security audits demonstrates a commitment to safeguarding user assets and maintaining the integrity of its decentralized ecosystem.

1. Code Review and Auditing:

   • Regularly Smart-Contract Audits and Pentest with thorough code reviews, security audits, Grey-box testing along with Application code, and deployer daemon.

2. Authentication and Authorization:

   • Strong authentication and authorization mechanisms with ECC to ensure that only authorized deployers can initiate deployments. Multi-factor authentication (MFA) for additional layer of security

3. Encryption and Secure Communication Channels:

   • SHA-256 Encryption is used to protect data in transit and ensure that all communication between deployers and the blockchain network is conducted over secure channels.

4. Regular Updates and Patch Management:

   • All software components of the Platform, Application & deployer daemon are updated with the latest security patches and updates recommended by Community and active hackathon participations

5. Intrusion Detection and Prevention Systems:

   • Intrusion detection systems (IDS) and intrusion prevention systems (IPS) are deployed to monitor network traffic for suspicious activities and block potential threats.

6. Access Control and Least Privilege:

   • Principle of least privilege and Whitelisted IPs are implemented to all system components, ensuring that each part of the system has only the access necessary to perform its function.

7. Rate Limiting and Throttling:

   • Rate limiting and throttling is implemented to prevent abuse of the deployment system, using denial-of-service protection and secure network

8. Logging and Monitoring:

   • Comprehensive logs of all activities are updated and regularly monitored for signs of unauthorized access or unusual behavior.

9. KYT Screening

   • All incoming and outgoing transactions intracting within the pools are screened using chainalysis for proper compliance and AML screening.