Jigstack
Cyrex partnered with Jigstack to deliver white box penetration testing and load testing across its blockchain-based DeFi platform, securing smart contracts, APIs, and web application components ahead of scale.
The Challenge
Securing a Custom Blockchain Financial Platform
Jigstack, often described as the “Microsoft of Decentralised Finance,” operates a blockchain-based ecosystem enabling companies to create and manage their own crypto tokens. As a custom-coded financial application built on blockchain infrastructure, the platform handles token creation, smart contract interactions, and high transaction volumes.
Given the financial and decentralized nature of the system, security requirements extended across:
- Web application layers
- Smart contract integrations
- API endpoints
- Blockchain-specific attack vectors
- High-volume transaction handling
The platform also anticipated significant daily traffic and transaction activity, requiring validation of both security posture and scalability.
The Cyrex Solution
White Box Penetration Testing & Load Validation
Cyrex conducted comprehensive white box penetration testing, reviewing internal source code and architectural implementations across the web application, API, and smart contract layers.
In parallel, we performed load and performance testing to evaluate system stability under heavy usage.
Web Application & API Security Assessment
Our testing included analysis of common application vulnerabilities such as:
- Remote Code Execution
- SQL Injection
- Path traversal attacks
- File upload vulnerabilities
- Parameter tampering
- Access control flaws
- Transport layer security weaknesses
- Business logic and authentication flaws
- SMTP, header, JSON, and XML injection
This ensured that both external-facing and internal service layers were protected against widely exploited attack vectors.
Smart Contract & Blockchain-Specific Testing
Given the DeFi architecture, Cyrex also evaluated blockchain-specific vulnerabilities, including:
- Re-entrancy attacks
- Overflows and underflows
- Block gas limit issues
- Front-running risks
This dual-layer assessment ensured that both on-chain and off-chain components were reviewed for exploitability.
Load & Performance Testing
To prepare for anticipated high transaction volumes, Cyrex conducted load testing to:
- Simulate elevated traffic conditions
- Evaluate transaction processing stability
- Identify performance bottlenecks
- Validate scalability under daily operational demand
This ensured that security hardening did not compromise performance.
The Outcome
Hardened Smart Contracts & Scalable Infrastructure
- Identification and remediation of application and smart contract vulnerabilities
- Improved protection against blockchain-specific exploit techniques
- Reinforced API and web application security controls
- Validated scalability under high traffic conditions
- Successful regression and sanity testing post-remediation
Client Feedback
Jigstack
“Working with Cyrex was an awesome experience all around. Even with timezone differences, communication was smooth and really easy, which is really important when working against a tight deadline. Cyrex’ analysis and tests were all precise and really well explained, without sacrificing agility or comprehensiveness. They also ended up being crucial for the security and performance of our platform, so I can easily say Jigstack is satisfied with the work delivered and we’re keen to working once again with such a talented team.”
Don't Let Players Find the Weakness
Your launch is months away. Hackers will find exploits in hours. Let our engineers secure your game before it's too late.
Response time: <24 hours • NDA included • No commitment required