Engineering

Web3 development by the engineers who'd audit it.

Protocols, dApps, bridges, and L2s, built with the same rigor we'd bring to a third-party review. Ship faster without shipping vulnerabilities.

01 · dApp Development

Front-of-house code that doesn't betray the contracts behind it.

A signature prompt that hides what's being signed is a vulnerability. We build dApps that show users exactly what they're authorizing: typed data, decoded calldata, and clear simulation diffs.

◆
Typed signature flowsEIP-712 throughout. No blind blob signing.
◆
Calldata simulationTenderly-backed pre-flight diffs before any tx confirms.
◆
Wallet-agnosticViem · Wagmi · RainbowKit. Smart-account ready.
◆
StackNext.js · TypeScript · Tailwind · Viem.

Start a project →

SIMULATION · SWAP● SAFE
METHOD
swapExactTokensForETH(uint, address[], …)
DIFF · YOUR WALLET
− 1,000 USDC
+ 0.412 ETH
SLIPPAGE GUARD
min out · 0.408 ETH · 0.97%
GAS · 142,118BLOCK · 18,294,801

02 · Protocol Development

Smart contracts written with invariants in mind from day zero.

We co-design the spec, write the contracts, and prove the invariants in one continuous loop. Auditability is a build-time property, not a post-hoc favor.

◆
Spec-firstInvariants and threat model land before any Solidity is written.
◆
Foundry-nativeForge · invariant fuzzing · differential testing across forks.
◆
LanguagesSolidity · Vyper · Rust (Anchor) · Move · CosmWasm.
◆
Patterns we shipUUPS · diamonds · escrow vaults · oracle adapters · governance modules.

VAULT.SOL · PROOF

contract Vault {
  /// @notice shares ≤ assets always
  function deposit(uint256 a)
    external returns (uint256 s) {
      s = a * totalSupply / totalAssets;
      _mint(msg.sender, s);
      assert(totalSupply <= totalAssets);
  }
}

✓ INVARIANTS12/12 · Halmos

No counter-examples found in 1.4M runs.

03 · Cross-chain Bridges

Bridges built for the threat models bridges actually face.

Two-thirds of every dollar lost in Web3 has been lost on a bridge. We design messaging layers around that fact: verifier diversity, replay-proof nonces, and pause guardians wired in from commit one.

◆
Verifier diversityMix-and-match attestation: light client + ZK + multisig.
◆
Replay-proofPer-chain domain separators · monotonic nonce store.
◆
Rate-limited mintsPer-asset · per-window caps on the destination side.
◆
StackLayerZero · Hyperlane · Wormhole · custom MPC.

BRIDGE · TX 0x9f…12c● SETTLED
SOURCE
Ethereum
120,000 USDC
→
DESTINATION
Base
119,940 USDC
✓Light-client header verified
✓ZK proof validated · 184ms
✓Rate-limit window · 8.4M / 50M
✓Nonce 18,294 · unique
FEE$0.42
FINALITY2.1s

04 · Layer 2 Development

Rollups, app-chains, and the consensus glue between them.

From sequencer and fraud-proof systems to ZK provers and DA layers, we design and ship the L2 stack with formal specs of the dispute game, escape hatches that actually escape, and operational tooling for the boring parts.

◆
Modular by defaultOP Stack · Polygon CDK · Arbitrum Orbit · Cosmos SDK.
◆
ZK-readySP1 · Risc Zero · Halo2 · custom circom modules.
◆
Force-include & escape hatchesTested under sequencer-down conditions, not assumed.
◆
Operational toolingBlock explorer · indexer · prover dashboards out of the box.

L2 · OPERA-V4● 4 NODES SYNC'D

              
              
              
              
            TPS · LIVE1,842
FINALITY
2.1s
FEE
$0.004
PROVER
SP1
✓ ESCAPE HATCHtested · sequencer-down

Build with us

Engineers who think like attackers, and ship like product teams.

Tell us what you're building. We'll scope a minimal first delivery in a single 30-minute call.

Start a project →