Security services with a defined scope.

SeveraDAO Security runs targeted engagements across web applications, APIs, external exposure, and smart contracts.

From $1,500

Web Application Penetration Testing

For customer-facing applications, internal portals, and business-critical workflows.

Authentication and session handling
Authorization and privilege escalation
Business logic weaknesses
Core web attack surface review
Written report with remediation priorities

From $1,200

API Security Review

For REST and GraphQL services used by products, mobile applications, and partner integrations.

Broken object-level authorization
Tenant isolation and data exposure
Token handling, authorization boundaries, and session security
Abuse paths and hidden actions
Clear written findings and remediation guidance

From $900

Cloud & External Exposure Assessment

For teams that need a practical review of public-facing cloud posture and externally visible weaknesses.

DNS, TLS, headers, cookies, and externally visible weaknesses
Configuration and hardening gaps
External exposure review
Remediation priorities
Useful as a first engagement for digital businesses

From $2,500

Smart Contract Audit

For focused Solidity scopes where exploitability, accounting correctness, and trust boundaries matter.

Access control and trust boundaries
Accounting and state transitions
Reentrancy, oracle, pricing, and liquidation logic
Impact-based severity
Custom quote for larger scopes

Engagement setup and communication

Clear scope before work begins
Focused technical review
Professional written report
Remediation guidance
Clear communication throughout the engagement

Scope determinants

Number of targets and environments
Authenticated versus unauthenticated scope
Complexity of workflows and architecture
Turnaround expectations
Need for additional review after fixes