Request a Quote
Goldfinch

Goldfinch

GFI Completed

Goldfinch is a global credit protocol that offers sustainable, high-quality stablecoin yields that are generated by real-world economic activity and sheltered from DeFi’s volatility.

Read More Read Less
-

Security Score

0
AA
0
100
65CE64E5
Project ID
Oct 3, 2021
Project Since

Goldfinch Info

Ecosystem
Ethereum
Language
Solidity
Support
N/A
Social Links

Code Security

AAA 0
Score
Excellent
0
Status
Audit Completed
Methods
Hackdra AI & Manuel Review

Code Audit History

All Findings 0
Resolved 0
Partially 0
Acknowledged 0
Severity Resolved Partially Acknowledged
Critical
Major
Medium
1
Minor
2
Informational
4
File SHA256
GoldfinchFactory.sol
55db4c1c6bb198fe4beb8a265981e497f5029cec31f6071bbc1818cd656545a9
Incident Date
Requested
July 10, 2021
Completed
July 12, 2021

Fundamental Health

A 0
Score
Excellent
0
Status
Member Verified
Methods
3rd Party

KYC History

KYC 3rd Party Verified
N/A
Project Since
Oct 3, 2021
Geographic Analysis
Secure Zone
Intelligence Analysis
No finding detected
AML Analysis
No finding detected
Trust Analysis
No finding detected

Operational Resilience

AAA 0
Score
Excellent
0
Status
Assets in Scope
Methods
Hackdra AI & Manuel Review
The bug bounty program is currently inactive.

Bug Bounty Program

Bug Bounty Active
KYC PoC
Bounty Live Since
26/05/2019
Funds Reserved
$ 0

Rewards by Severity

Critical
$ 0
Major
$ 0
Medium
$ 0
Low
$ 0

List of Assets

https://hackdra.com
Website Platform Application
https://hackdra.com
Website Store Application

Infrastructure Security

Summary
https://goldfinch.finance
Network Security
High
0 Attentions
Application Security
Medium
4 Attentions
DNS Health
High
1 Attentions
Network Security
FTP service anonymous login
NO
VNC service accessible
NO
RDP service accessible
NO
LDAP server accessible
NO
PPTP service accessible
NO
rsync service accessible
NO
SSH supports weak cipher
NO
SSH supports weak MAC
NO
CVE on the related service
NO
Application Security
Missing X-Frame-Options header
YES
Missing HSTS header
YES
Missing X-Content-Type-Options header
YES
Missing Content Security Policy (CSP)
YES
HTTP access allowed
NO
Self-signed certificate
NO
Wrong host certificate
NO
Expired certificate
NO
SSL/TLS supports weak cipher
NO
Support SSL protocols
NO
Support TLS weak version
NO
DNS Health
Missing SPF record
YES
Missing DMARC record
NO
Missing DKIM Record
NO
Ineffective SPF record
NO
SPF record contains a softfail without DMARC
NO
Name Servers Versions exposed
NO
Allow Recursive Queries
NO
CNAME in NS Records
NO
MX Records IPs are private
NO
MX Records has Invalid Chars
NO

Governance Strength

BB 0
Score
Good
0
Status
Assets in Scanned
Methods
Ulgen AI & Manuel Review
Summary
0xdab396ccf3d84cf2d07c4454e10c8a6f5b008d2b
N/A
0xE2cEF88ab090185299A997E90226Ad9d01B3b347
Centralization Risk
Low
5 Attentions
Contract Uncertainty
Open Source
YES
Proxy Contract
NO
External Call Risk
NO
Mint Function
YES
Self Destruct
NO
Owner Privilege
Retrieve Ownership
NO
Balance Modifiable
NO
Hidden Owner
YES
Creator Percentage
0.00%
Ownership Renounce
NO
Owner Percentage
0.00%
Trading Constraint
Honeypot
NO
Buy Tax
0.00%
Sell Tax
0.00%
Modifiable Tax
NO
Transfer Pausable
YES
Anti Whale
NO
Modifiable Anti Whale
NO
Blacklist
NO

Market Stability

AAA 0
Score
Excellent
0
Status
Active
Methods
CEX & DEX

Market Stability Analytics

Partnered with TradingView

Community Trust

A 0
Score
Excellent
0
Status
Active Communities
Methods
Hackdra Analysis Experts
Summary
Goldfinch Community
Ecosystem and Strategies
High
0 Attentions
Digital Communication and Community
High
3 Attentions
Information Sources and Support
High
2 Attentions
Ecosystem and Strategies
Investors
YES
Advisors
YES
Global Reach
YES
Developers
YES
Business Partners
YES
Marketing Strategies
YES
Community Managers
YES
Media and Press
YES
Regulators
YES
Digital Communication
AMA's
YES
X (Twitter)
YES
Telegram
YES
Discord
YES
Github
YES
Reddit
YES
Youtube
NO
Linkedin
NO
Instagram
NO
Medium
YES
Information Sources
Knowledge Base
YES
Whitepaper
YES
Roadmap
YES
User Support
NO
Sustained Communication
YES
Live Support
NO
FAQ
YES
Educational Resources
YES

Hackdra Disclaimer

Hackdra conducts security assessments on the provided source code exclusively. Conduct your own due diligence before deciding to use any info listed at this page. Read more