Back to case studies
Case StudyAuditsAudit Services

Nocturnal Smart Contract Audit

5 min read

Partnership Overview

Client

Nocturnal

Platform

Solana

Service

Smart Contract Security Audit

Timeline

September 2025

About Nocturnal

Nocturnal is building a next-generation trading platform on Solana, designed to provide traders with fast, efficient, and secure access to decentralized markets. Their platform leverages Solana's high-performance infrastructure to deliver institutional-grade trading experiences with backend-enforced fee collection mechanisms.

Security Requirements

As Nocturnal prepared to launch their trading platform, ensuring the security and reliability of their smart contract infrastructure was paramount. The team engaged FailSafe to conduct a comprehensive security audit focused on their Solana program responsible for backend-enforced trading fee collection.

The audit scope encompassed critical security considerations including administrative controls, fee calculation mechanisms, initialization procedures, and operational security patterns specific to Solana's program architecture.

Audit Methodology

FailSafe's security team conducted a multi-layered audit approach tailored to Solana's unique program model and Nocturnal's specific architecture:

Threat Modeling

Identified critical assets, enumerated potential threats, and assessed vulnerabilities specific to backend-enforced fee collection models.

Manual Code Review

Line-by-line analysis of business logic, access controls, PDA derivation patterns, and Solana-specific security considerations.

Architecture Analysis

Evaluated trust assumptions, backend integration patterns, and the interaction between off-chain and on-chain components.

Edge Case Testing

Rigorous testing for extreme inputs, operational scenarios, and potential attack vectors including initialization races and authority management.

Confidential Partnership

In accordance with Nocturnal's security and business requirements, the detailed findings and specific vulnerabilities identified during this audit remain confidential. Our partnership focused on addressing critical security considerations across multiple severity levels, with the development team implementing fixes and documented acknowledgments for all identified issues.

The audit process included comprehensive validation of fixes, multiple rounds of review, and collaborative remediation support to ensure the platform met production security standards.

Engagement Highlights

8
Total Findings Identified
100%
Issues Addressed
9
Days to Complete

Partnership Impact

Through close collaboration with Nocturnal's development team, FailSafe provided comprehensive security guidance that strengthened the platform's security posture. The engagement covered:

  • Security architecture review and recommendations for Solana program design patterns
  • Identification and remediation of critical access control and initialization vulnerabilities
  • Documentation improvements and operational security guidance
  • Best practices for backend-enforced security models on Solana

Interested in Learning More?

If you're building on Solana or need comprehensive smart contract security services, our team can share more about our approach and how we've helped projects like Nocturnal secure their platforms.

Contact Our Security Team

Ready to Secure Your Solana Project?

Get in touch with our Solana security experts for a comprehensive audit.

Learn About Smart Contract Audits