DefectChecker: Automated Smart Contract Defect Detection by Analyzing EVM Bytecode

Smart contracts are Turing-complete programs running on the blockchain. They immutable and cannot be modified, even when bugs detected. Therefore, ensuring smart bug-free well-designed before deploying them to blockchain is extremely important. A contract defect an error, flaw or fault in a that causes it produce incorrect unexpected result, behave unintended ways. Detecting removing defects can avoid potential make more robust. Our previous work defined 20 for divided into five impact levels. According our classification, with seriousness level between 1-3 lead unwanted behaviors, e.g., being controlled by attackers. In this paper, we propose DefectChecker, symbolic execution-based approach tool detect eight cause behaviors of Ethereum platform. DefectChecker from bytecode. We compare key works, including Oyente, Mythril Securify using open-source dataset. experimental results show performs much better than these tools terms both speed accuracy. also applied 165,621 distinct found 25,815 contain at least one belongs 1-3, some real-world attacks.