CodeHawks Live Contests & First Flights

1 Active contests
$7$7 Active prize pool
0 Bug bounties
1 Platforms

Last updated Jul 09, 2026 · 13:17 UTC

Showing 21–40 of 45

45 audit contests

Protocol Source Prize Window Link
Biconomy: Nexus
Solidity
Codehawks Finished
$30K
Jul 08 - Jul 15, 2024
7 days
View
CCIP v1.5
Solidity
Codehawks Finished
$200K
Jul 02 - Jul 17, 2024
15 days
View
Zaros Part 1
Solidity
Codehawks Finished
$60K
Jul 17 - Jul 31, 2024
14 days
View
Tadle
Solidity
Codehawks Finished
$27K
Aug 05 - Aug 12, 2024
7 days
View
Fjord Token Staking
Solidity
Codehawks Finished
$20K
Aug 20 - Aug 27, 2024
7 days
View
ArkProject: NFT Bridge
Solidity
Codehawks Finished
$60K
Jul 31 - Aug 28, 2024
28 days
View
Staking
Solidity
Codehawks Finished
$65K
Sep 16 - Oct 04, 2024
18 days
View
Liquid Staking
Solidity
Codehawks Finished
$50K
Sep 30 - Oct 17, 2024
17 days
View
Flow
Solidity
Codehawks Finished
$20K
Oct 25 - Nov 01, 2024
7 days
View
Dria
Solidity
Codehawks Finished
$21K
Oct 25 - Nov 01, 2024
7 days
View
Project
Solidity
Codehawks Finished
$15K
Nov 06 - Nov 13, 2024
7 days
View
Era
Solidity
Codehawks Finished
$500K
Oct 28 - Dec 02, 2024
35 days
View
Alchemix Transmuter
Solidity
Codehawks Finished
$28K
Dec 16 - Dec 23, 2024
7 days
View
QuantAMM
Solidity
Codehawks Finished
$52K
Dec 20 - Jan 15, 2025
26 days
View
Ignite
Solidity
Codehawks Finished
$33K
Jan 13 - Jan 27, 2025
14 days
View
Aave DIVA Wrapper
Solidity
Codehawks Finished
$15K
Jan 24 - Jan 31, 2025
7 days
View
Part 2
Solidity
Codehawks Finished
$70K
Jan 20 - Feb 06, 2025
17 days
View
RWA
Solidity
Codehawks Finished
$6K
Feb 17 - Feb 20, 2025
3 days
View
Core Contracts
Solidity
Codehawks Finished
$77K
Feb 03 - Feb 24, 2025
21 days
View
Liquidity Management
Solidity
Codehawks Finished
$50K
Feb 11 - Feb 25, 2025
14 days
View
Loading timeline...
Codehawks Finished

Fjord Token Staking

$20K Prize pool
Aug 20 - Aug 27, 2024
View on Codehawks
Codehawks Finished

ArkProject: NFT Bridge

$60K Prize pool
Jul 31 - Aug 28, 2024
View on Codehawks
Codehawks Finished

Alchemix Transmuter

$28K Prize pool
Dec 16 - Dec 23, 2024
View on Codehawks
Codehawks Finished

Liquidity Management

$50K Prize pool
Feb 11 - Feb 25, 2025
View on Codehawks

About CodeHawks

CodeHawks launched as part of Cyfrin's audit ecosystem and is best known for First Flights: smaller, beginner-friendly audit contests with prize pools under $20,000. First Flights are how many new auditors build their first submission history before moving to larger Code4rena or Sherlock contests.

Full CodeHawks audits run 3 to 21 days with $20,000-$200,000 prize pools. This page shows only contests aggregated from CodeHawks. For audit contests on other platforms, see the full Web3 audit competition tracker.

Smart Contract Audit Competition & Bug Bounty Platforms Compared

Six major platforms host the Web3 audit competitions and smart contract bug bounty programs aggregated above. Click any platform to see only its active contests.

Comparison of the major smart contract audit competition and bug bounty platforms.
Platform Type Typical Prize Contest Length Best For
Code4rena Audit contests $50K to $500K 3 to 14 days DeFi protocols pre-launch
Sherlock Contests + bounties $50K to $300K 7 to 30 days Insurance-backed audits
CodeHawks Audit contests + First Flights $5K to $200K 3 to 21 days Newer auditors building a track record
Cantina Mega-comps + bounties $200K to $2M+ 14 to 30 days Experienced researchers, high-value protocols
Immunefi Ongoing bug bounties Up to $15M per critical Ongoing Production protocol vulnerability hunting
HackenProof Bounties + crowdsourced audits $1K to $1M+ Ongoing or time-boxed Managed Web3 programs and exchange/protocol bounties

Frequently Asked Questions

What are CodeHawks First Flights?

First Flights are small audit contests on CodeHawks designed for new auditors. Prize pools are under $20,000, scope is intentionally narrow (often a single contract), and competition is lighter than full audits. They are the standard onboarding path for new wardens.

How is CodeHawks different from Code4rena?

CodeHawks (run by Cyfrin) offers First Flights specifically for new auditors and includes Cyfrin's educational ecosystem. Code4rena has higher average prize pools but no beginner tier. Many auditors start with CodeHawks First Flights, then graduate to Code4rena.

What are the best smart contract bug bounty platforms?

The leading Web3 bug bounty platforms are Immunefi (largest, $15M max payouts on DeFi protocols), Cantina (Spearbit's bounty program plus audit competitions), HackenProof (managed Web3 bounties and crowdsourced audits), Sherlock (audit contests with insurance-backed bounties), and Code4rena (best known for time-boxed audit competitions). Codehawks rounds out the field with Cyfrin-run contests focused on emerging protocols and beginner-friendly First Flights.

Which audit competition platform pays the most?

Cantina runs the largest audit competitions ($2M+ prize pools for protocols like EigenLayer and Uniswap v4). Immunefi pays the highest per-bug bounty (up to $15M for critical findings). Code4rena and Sherlock typically run $100K-$500K audit contests. Codehawks First Flights are smaller but accessible to newer auditors.

How do smart contract audit competitions work?

Audit competitions invite security researchers to review a protocol's smart contract code for a fixed prize pool over 1-4 weeks. Rewards are split based on unique valid findings, weighted by severity (critical, high, medium). Code4rena, Sherlock, Codehawks, and Cantina are the main platforms.

How much can you earn in a smart contract audit competition?

Top auditors earn $10,000-$500,000+ per competition. Cantina and Code4rena regularly run $500K-$2M prize pool contests. Bug bounties can pay up to $15M per critical finding on platforms like Immunefi.

What is the difference between a bug bounty and an audit contest?

Audit contests run for a fixed time window with a fixed prize pool shared among all valid findings. Bug bounties are ongoing programs where each valid submission earns a direct per-vulnerability reward (often $50K-$15M depending on severity). Bug bounties require finding a real vulnerability in production code.

How do I get started with smart contract auditing?

Learn the most common vulnerability classes first: reentrancy, flash loan attacks, oracle manipulation, and access control. The SCH Smart Contract Hacking Course covers all the core attack patterns that audit competitions test, starting from zero experience.

How to Start Competing in Smart Contract Audits

A practical path from learning vulnerability classes to submitting your first contest finding.

  1. Learn the core vulnerability classes

    Master reentrancy, access control, oracle manipulation, flash loan attacks, and arithmetic overflows. These five classes account for most contest findings.

  2. Practice on retired contests

    Read every public report from past Code4rena and Sherlock contests. Try to spot findings yourself before reading the writeup. This is how every top auditor trained.

  3. Start with CodeHawks First Flights

    First Flights are small audit contests designed for newer auditors. Prize pools are under $20K, scope is small, and competition is lighter. They build real submission history.

  4. Enter your first full competition

    Pick an active audit contest from the tracker above filtered by Solidity and a $50K-$200K prize range. Spend 20 to 40 hours on the contest, even if you only find one valid medium-severity issue.

  5. Build a public track record

    Publish your findings, share writeups on Twitter and Mirror, and start accumulating valid submissions across multiple platforms. A documented track record is what opens bug bounty access and full-time auditor roles.