Relentless Audits
Forge Resilient Protocols

Solidity, Rust, TypeScript, Go audits for on-chain protocols.

GET SECURED Our Track Record

Proven Results

Competitive audit results from leading Web3 security platforms

Panoptic Protocol Audit - #1 on Code4rena
Code4rena #1 - Panoptic
SukukFi Audit - #3 on Code4rena
Code4rena #3 - SukukFi
Monolith Stablecoin Factory Audit - #3 on Sherlock
Sherlock #3 - Monolith
About Us

Built by Researchers,
for Builders

Valves Security is a specialized Web3 security team founded by Veselin and Valeri. With deep experience across EVM-based protocols, Cosmos (Go) chains, and Rust systems, we help projects identify and eliminate critical vulnerabilities before they reach mainnet.

Our mission is to raise the security baseline of the Web3 ecosystem through careful manual and top-tier AI code review.

Battle-Tested

Competed on Sherlock and Code4rena, ranking in the top 3 across multiple audit competitions with over 3500 combined participants.

Multi-Chain Expertise

Specialized in Solidity, Rust, and Go. Covering EVM protocols, Cosmos chains, and Rust systems.

Transparent Process

Every finding is well documented with a clear, remediation steps.

Our security process

From scope definition to remediation, we keep the audit structured, communicative, and focused on all vulnerabilities from critical to informational.

  1. 1

    Kickoff & Context Alignment

    A direct kickoff call helps us understand protocol architecture, threat assumptions, trust boundaries, and intended behavior.

  2. 2

    Scope & Preparation

    Review the codebase, confirm scope, timeline, dependencies, and special risk areas before engagement begins.

  3. 3

    AI-Assisted Code Comprehension

    We apply our custom AI tooling in the early days to accelerate code comprehension and broaden initial coverage - giving the manual audit a faster, sharper start.

  4. 4

    Manual Audit & Adversarial Review

    We perform deep manual analysis focused on exploit paths, invariant breaks, edge cases, accounting risks, and integration assumptions.

  5. 5

    Findings Confirmation & Sharing

    Issues are confirmed and shared with the client in the end of our engagement. Some tougher to mitigate issues may be shared immediately on discovery.

  6. 6

    Remediation Review

    We review submitted fixes, verify whether vulnerabilities are fully resolved, and flag partial or incorrect mitigations.

What clients can expect

  • Direct communication with the auditors
  • Clear, exploit-focused findings
  • Fast feedback during remediation
  • Professional audit report PDF

Why this process works

  • Real-time communication reduces delays
  • Early findings reduce remediation risk
  • Fix verification improves final security posture
  • We are focused on every little detail
GET SECURED

The Team

The duo that made Valves possible

vesko210 - Security Researcher
Vesko210

Veselin is a smart contract security researcher with a strong Web2 background. What started as a suggestion from his cousin quickly turned into a deep passion for vulnerability research.

CO-FOUNDER & SECURITY RESEARCHER
Merulez99 - Security Researcher
Merulez99

Valeri specializes in adversarial analysis of EVM-based DeFi protocols, focusing on lending, vault, and stablecoin systems, with expertise in share accounting, debt models, and invariant-breaking exploits.

CO-FOUNDER & SECURITY RESEARCHER
200+
Vulnerabilities Discovered
100K+
Lines of Code Audited
0
Post-Audit Exploits

Ready to Secure Your Codebase?

Get in touch and we’ll respond within 6 hours with price and timeline estimate.

REQUEST FREE QUOTE