CSPRNGs: How to Properly Generate Random Numbers
An in-depth guide to secure random number generation
Real security.
Not rubber stamps.
Zellic specializes in securing emerging technologies. Developers, founders, and investors trust our security assessments to ship quickly, confidently, and without critical vulnerabilities. With our background in real-world offensive security research, we find what others miss.
We keep winners winning.
We’re home to the the best hacking and vulnerability research talent across the globe, earning us the reputation as the go-to security firm for teams whose rate of innovation outpaces the existing security landscape.
Audits that stop bugs.
Let the numbers do the talking. Here's how we did in 2022:
55%
of assessments
In 51 out of 93 reviews, we identified high impact findings. Over half of codebases had serious, latent security issues.
42
Critical findings
Our security assessments prevented 42 critical, product-killing vulnerabilities from shipping. That's 42 hacks stopped.
126
High impact findings
Finding serious issues is our “normal”. What's lurking in your codebase?
Zellic is an incredible and fast moving auditing team — on top of extremely timely, technical, and precise responses when asked, they also have found extremely unique and detailed obscure bugs down to the level of the Solidity quirks. The team’s diverse and deep security and hacking experience shows through in conversations, brainstorming, and technical discussions.
—
Ante
We worked with Zellic on a security review of our ZK circuits and associated smart contracts. They were extremely thoughtful in searching for areas where our circuits might be underconstrained. The end report was quite thorough, especially in explaining which areas they probed, which gave us much more confidence in our circuit security. We would enthusiastically work with Zellic in the future.
—
Axiom
The Zellic team was a joy to work with. Their auditors moved fast, were able to quickly dive into the details of a large and complex codebase, and it was clear they had a real focus on real security over security theater. I would highly recommend any developer in this space put them on speed dial.
—
Ambient Finance
Zellic has been a great partner in securing the Sui ecosystem. They have found important bugs in both Sui protocol code and in Sui applications. My favorite thing about the folks at Zellic is their curiosity — you can tell they are seeking to deeply understand the systems and code they study, not just pattern match.
—
Mysten Labs
We have collaborated with Zellic on both the zkEVM circuit and smart contract auditing. Zellic team is truly outstanding in their technical prowess and professionalism. We are extremely impressed that they managed to find subtle bugs among the intricate constraints in the zk circuits. Our auditing experience with Zellic was both insightful and enjoyable.
—
Scroll
We’ll never leave you on read.
Developers and founders rave about Zellic.
Zellic began with a mission to deliver the best security assessments in the world. We saw a maze of subpar providers running automated tools with zero client input. Your team deserves better. We dive deep to find the unexpected ways things can break.
We talk to you every day.
We keep you involved in the review process from start to finish. We ask questions. If you want us to apply certain techniques, like formal verification or fuzzing, we listen. And at each step, we walk your team through how we’re going to accomplish things.
Access to the best hackers in the world.
Before Zellic, we founded the #1 CTF team worldwide. These CTF competitions attract world-renowned security researchers and white hats to exploit web, desktop, and mobile apps and cryptographic code. With us, that incredible talent secures your software.
Our hackers defend you.
Our engineers bring a rich set of skills and backgrounds, including cryptography, web security, mobile security, low-level exploitation, and finance.
Stephen Tong
Co-Founder
Jasraj Bedi
Co-Founder
Learn about security from the best.
We’re committed to research and open source. Read the latest research from our team.
Secure your future with Zellic.
Top organizations rely on Zellic to protect their systems. Give your users the security they deserve.
Work at Zellic.
Safety standards are written in blood. Join us in building security solutions that advance the software industry and address the major deficiencies in software security.