Live on Base Chain

Know Before
You Trade

Three layers of token intelligence that static scanners miss. Detect hidden taxes, honeypots, and deployer red flags in under 15 seconds.

dryrunsec — scan
$
The Problem

Static scanners miss the threats that cost you money

Hidden Taxes

Contract says 0% tax. Reality: 12% sell tax kicks in after the first few buys. Static analysis can't see runtime behavior.

Stealth Honeypots

Token passes every code scanner. But try selling? Transaction reverts. Only a real swap simulation catches this.

Repeat Rug-Pullers

The deployer has rugged 4 previous tokens. No static scanner checks wallet history. DryRunSec does.

How It Works

Three layers of intelligence,
one API call

01
Static Analysis

Contract Security

Multi-source aggregation. Proxy detection, ownership analysis, mint functions, blacklist mechanisms.

Open source verified? Owner can pause/blacklist? Hidden mint functions?
02
Dynamic Simulation

Swap Simulation

Real buy/sell simulation via direct RPC eth_call with state overrides. Detects actual tax rates and honeypot behavior.

Real buy/sell tax % Honeypot detection Slippage measurement
03
Wallet Intelligence

Deployer Profiling

Deployer wallet history analysis. Balance, contract count, nonce, and cross-reference with known rug-pull patterns.

Deployer balance & age Previous token history Contract deployment count
Sample Output

Real intelligence,
not just a score

Every report tells you exactly what's wrong

A composite score from 0-100, category breakdowns, actual tax rates from simulation, and specific risk flags with severity levels.

23 /100
HIGH RISK
Composite Score
12.8%
Hidden Sell Tax
  • critical Honeypot detected — sells blocked after initial buys
  • high Hidden tax: 12.8% sell tax not declared in contract
  • high Deployer history: 4 of 6 previous tokens rug-pulled
response.json 
{
  "score": 23,
  "riskLevel": "HIGH",
  "recommendation": "AVOID",
  "taxRates": {
    "buy": 5.2,
    "sell": 12.8
  },
  "riskFlags": [
    {
      "severity": "critical",
      "finding": "Honeypot Detected"
    },
    {
      "severity": "high",
      "finding": "Hidden Tax: 12.8%"
    },
    {
      "severity": "high",
      "finding": "4/6 tokens rugged"
    }
  ],
  "dataQuality": "FULL"
}
Integration

One endpoint. Full intelligence.

POST /api/token-report
ALL /mcp
# Scan any Base chain token ($1.00 USDC via x402 payment)
curl -X POST https://dryrunsec.draftlabs.org/api/token-report \
  -H "Content-Type: application/json" \
  -d '{
    "tokenAddress": "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
    "chainId": 8453
  }'
MCP Integration NEW

Connect DryRunSec to Claude Desktop, Cursor, or any MCP-compatible client. Tool discovery is free — only token analysis calls require x402 payment ($1.00/report in USDC on Base).

// .mcp.json (with x402 payment proxy)
{
  "mcpServers": {
    "dryrunsec": {
      "command": "node",
      "args": ["scripts/x402-proxy.mjs"],
      "env": {
        "TARGET_URL": "https://dryrunsec.draftlabs.org/mcp",
        "PRIVATE_KEY": "0xYOUR_PRIVATE_KEY"
      }
    }
  }
}

Stop trading blind

Scan your first token in 15 seconds. Pay per report with USDC on Base.

3 layers of analysis
<15s response
$1 per report
Service Status
Checking...