Introducing the TokenSniffer API: a programmatic way to determine whether a cryptocurrency’s smart contract is dangerous or benign.
Learn more:
See pricing:
🚨SCAM ALERT: there is an increase in scam tokens where holders are manually blocklisted from selling. Check contract transactions for unusual repetitive function calls.
Example:
Repeated callOracle() blocklist function calls:
🎉UPDATE: holder bubble maps now available for
#BSC
,
#Ethereum
and
#Polygon
!
Visualize transfers between top holders (excluding contract and burn addresses)
Examples:
UPDATE: The scammer seems to profit from these tokens in at least three ways:
1⃣By impersonating new projects
2⃣By collecting variable transfer fees as high as 20%
3⃣By removing liquidity while holders remain
Here are the buy & sell fees for one of these tokens, BoneTools:
Over the past 1.5 months one person has created 114 meme coin scams.
Each time stolen funds from the scam are sent to the exact same deposit address.
0x739c58807B99Cb274f6FD96B10194202b8EEfB47
🚨SCAM ALERT: Since
@coinbase
's testnet launch of
@BuildOnBase
, four impersonation tokens have been created to capitalize on the hype surrounding the Layer 2 network.
The tokens' details:
A common tactic by scammers is to create a token with the same name as a popular one hoping that you will mistakenly buy theirs instead. For example, there are 16 tokens named "SafeMoon" in our database, four of which are known honeypot scams.
🚀 We just launched 2 new open-source projects for devs using Token Sniffer API!
1️⃣ CLI for quick, command-line access
2️⃣ React Widgets for seamless UI integration
👩💻 Speed up your workflow with tools from our new
#GitHub
organization:
🚨SCAM ALERT: someone reported the "Pump NationWide" TG group. Currently they are promoting a honeypot token (no verified contract source, all-green chart)
Help report this group and get it banned:
DeFi investor, DEX platform or savvy software developer? Let’s talk DeFi scams!
Join
@Solidus_Labs
and
@FortaNetwork
experts for a Twitter Space unpacking the latest in smart contract scams, DeFi fraud and crypto market abuse.
“Everybody I know has gotten rug-pulled.” Billions are lost annually through a variety of cryptocurrency scams. The way things are going—this will only get worse. via
@wealth
Below is BoneTools' ( $BTOOLS ) full trading history on Uniswap.
Its creator profited from:
-10% of every buy swap ($1.17M)
-20% of every sell swap ($2.32M)
-18 personal sell swaps ($2,413 net of buys)
-1 liquidity withdrawal ($760 net of deposits)
s/o to
@zachxbt
for the find.
🚨SCAM ALERT: avoid new tokens called
#RedMoon
$RDMN with unverified source and all-green charts (unable to sell). In general use caution with tokens that do not have verified source.
Does not apply to tokens with that name that have verified source.
To get started:
📝Select a plan – Basic Sniffer, Pro Pack, or Enterprise
🔐Store your API key somewhere safe
✅Use it to make requests for token information, metrics, and Smell Test results
Here’s an example API call and response (ft. the original SQUID token):
1/ More than 650 scam tokens have already been deployed on Base — and many of them are currently being traded, wash traded, and rug-pulled on the network’s DEXs.
Scammers feed on hype; approach the tokens playing off of it with caution.
When Coinbase’s Layer 2 network Base launched for developers on July 13, scam token creators snuck along for the ride. In the days between its developer launch and its public launch, devs deployed more than 500 scam tokens on the network.
The full story:
How do you know you have the "right" token? CHECK THE CONTRACT ADDRESS. Where do you find it? On the project's website or Twitter look for a 42 character ID starting with 0x, like 0xdac1... Instead of typing the token name into your favorite exchange app, paste in the address.
@zachxbt
Excellent work! We did our own analysis and found an additional 25 tokens for a total of 139. These are all rug pulls (sudden removals of unlocked liquidity).
Full list:
About these scam types:
⦿ Honeypot scammers program their tokens’ smart contracts to prevent buyers from reselling them.
⦿ Impersonation scammers imitate the branding of established organizations – many of which don’t have their own token – to steal from unaware investors.
Quick and dirty analysis of a scam on
#BSC
and
#PancakeSwap
with NoApproval issue
#ScamToken
SafeGravity, Shining, ECLIPSE, Shining Star (SST), Ape (APE)
All use the very same mechanism with LP and blocked approve method.
DeFi investor, DEX platform or savvy software developer? Let’s talk DeFi scams!
Join
@Solidus_Labs
and
@FortaNetwork
experts for a Twitter Space unpacking the latest in smart contract scams, DeFi fraud and crypto market abuse.
@AndreCronjeTech
@etherscan
Indeed! We rely on them for much of our database. Any chance you would promote TokenSniffer too? :) Working to help traders avoid clones and scams.
@omgooses1
@zuckerbrins
@OliverRush
I should've bought some $HOGE apparently lol. HOGE is not an upgradeable proxy contract. DelegateCall is one way. TokenSniffer's "Smell Test" checks for "contract ... is Proxy" in the source.
@Yash__Mehar
@CryptoMoonShots
Thanks! Added the tokens and they were auto-flagged due to known exploits. The narrator is incorrect about the cause, it's not the "payable" function which just prevents ETH/BNB transfers to the contract. The real cause is that the contracts block transfers to the LP address.
@AwiVitality
No, the Smell Test score should not be interpreted as investment advice but rather included with more comprehensive research into the project/team. No scam scanner can catch all possible exploits or predict the intentions of the creators.
@CatMcGeeCode
@gebloke
Yes, we scan transactions for contract deployments and if verified source is available we download and analyze it. Tokens without verified contract source are assigned a much lower safety score.
@Start01_
It means you will connect your wallet and sign a message to prove that you are the owner of the wallet you used to connect. I'll reword it so it's clearer
@Can33343334
@TadpoleDaHermit
See the contextHandler modifier on transferFrom, in particular this line:
require(from == owner, "Order ContextHandler");
@Atommaulwurf
I didn't have room to add the network/address but I will next time. With 100 new tokens per day I can't keep track of what's real and what's fake.
@jiwoks
Not yet, hope to add detailed documentation soon.
That contract allows the sender to mint tokens to themself. See "_ownership" function lines 294-299
@archindivide
@WARONRUGS
That's a good point. Contract issues are the easy part, rug pulls are very hard to predict. The industry is developing standards and tools but it takes time and experience. When I invest in these microcap tokens I expect to lose it all. Casinos on the blockchain 🙂
@julianchuk
Thanks for the alert. Can you point to the transaction that locks liquidity for 3 years? I just see a single address holding 99% of liquidity:
@franckisted
1. Not all tokens get listed, only those on CoinGecko, , or mentioned in certain Telegram channels. After the BSC node is ready all new tokens will be added immediately.
2. Great idea! Here's the BSC address: 0x32cf20F1Ffd71fB0E4248472376C7474E2Ef4110
@tweets4shaf
It is safest to enter the contract address 0x25b0c0d8dcee3051337ba9382ead9040ab3d5531 since there are many imposter tokens, some of which are scams.
@kroese_t
It appears that the owner controls who can sell:
function addAllow(address holder, bool allowApprove) external onlyOwner {
allow[holder] = allowApprove;
}
Anyone out there who can confirm this? Flagged it for now.
@RaphaTisserand
@WARONRUGS
Yes, some weird code in the contract. Just glanced quickly but noticed:
- Minimum tx amount of 1000
- Tx fees distributed to dev address
- Only 1 sell tx every 30 mins
@kroese_t
It appears that the owner controls who can sell:
function addAllow(address holder, bool allowApprove) external onlyOwner {
allow[holder] = allowApprove;
}
Anyone out there who can confirm this? Flagged it for now.
@archindivide
The
@waronrugs
news is strange and disappointing. Some of their earlier work was very helpful and that's what was referenced by TokenSniffer.
@benjamin_lebeau
YFI & METRIC are governance tokens. The contracts are small (<200 lines) and simply implement ERC-20 functions. Perhaps METRIC copied YFI or they both used the same template. Both support a platform that adds value, so the fact that they are highly similar is not a red flag.
@altemark
@dxsale
TokenSniffer supports 4 (BSC, Ethereum, Polygon, Fantom) out of the 8 chains supported by DxSale. We plan to add support for the other 4 soon as soon as they offer a public API for retrieving verified contract source.
@Roninn18158244
@RoyalNavySNY
I'll think about a way to make it clearer. There are no restrictions on what people name these tokens and keeping track of which token is the original takes time. Next time I'll put the network/address in the tweet.
@gavinjary
Thank you! I haven't seen this code pattern yet. In transferFrom() there is a call to ensure() which blocks transfers for everyone except the owner. Flagging all similar contracts now ...