Scam Database
Known-bad wallet addresses with severity tags
Sources
— totalSeverity
Source registry
Click any source to read the original advisory.
Specially Designated Nationals — addresses that U.S. persons are legally prohibited from transacting with. Includes Tornado Cash, Lazarus Group, Garantex, Sinbad, Blender.
U.S. Treasury
Curated wallets behind major DeFi exploits — Bybit ($1.4B, 2025), Wormhole ($326M), Nomad ($190M), Euler ($197M), Curve Vyper, Mango, Friend.tech, Aerodrome, Munchables, WazirX.
rekt.news / DeFiLlama Hacks
161 confirmed x402 honeypot endpoints from a 20,338-endpoint probe — bait pricing, infinite retry traps, $4.5M/call lures.
afx, dev.to
Indicators of Compromise from the ClawHavoc MCP poisoning campaign — exfiltration wallets responsible for compromising 39% of ClawHub skills.
Snyk Security
Phishing-as-a-Service operators (Inferno/Angel/Pink Drainer), address poisoning, ice-phishing approval drainers, MCP-skill credential exfiltrators, Base rug-pulls.
Chainabuse / ScamSniffer
Community-maintained phishing domain & address blocklist. Updated daily; powers MetaMask's in-wallet warnings.
ConsenSys
Real-time malicious-address classifications — phishing, honeypots, blacklisted tokens, contract exploits. Free REST API.
GoPlus Labs
On-chain isSanctioned() oracle that mirrors OFAC SDN — programmatic sanctions screening for smart contracts.
Chainalysis
Real-time scam/exploit detection from community-driven detection bots.
Forta Foundation
Manually reported via the operator console.
AgentRadar Operator
Famous threats in the database
Curated picks from real OFAC sanctions, exploits, and on-chain attacks. Try verifying any of these in the Playground to see the BLOCKED verdict in action.
| Address | Chain | Severity | Source | Notes | Added |
|---|---|---|---|---|---|