Back to Docs

Documentation

WhiteHat Scans

Pro

WhiteHat Scans let a Pro customer commission a security scan of their own protocol's source. We invoice you, you pay in USDC, we run the scan, and you download a full findings report as a PDF.

What it is

WhiteHat Scans are on-demand security scans of your own protocol's source code. You request a scan, we send an invoice, you pay in USDC, and we deliver a full PDF report of every finding, with impact and remediation guidance per finding. A Pro subscription is required; no prior Verdict rating is needed.

Requesting a scan

  • Open /dashboard/whitehat-scans and click Request scan.
  • Enter your protocol's name and a link to its GitHub repository.
  • Tick the ownership declaration. You must own or manage the code and authorise the scan.

Paying and downloading

  • Once we review the request, the entry shows an invoice. Click Pay now and pay the quoted USDC amount on your chosen chain.
  • After payment the scan runs. When it finishes, the entry shows Download report, which downloads your PDF.
  • You can re-download at any time from the dashboard, even if your Pro subscription later lapses.

What is in the report

The PDF contains a cover page, an executive summary with a severity roll-up, and the full list of findings from every detector in the scan, each with a severity, description, impact, and remediation guidance.