Use case · $10 scan
Token approval audit — find risky ERC-20 & NFT permissions for $10
Scan standing ERC-20 and NFT operator approvals on Ethereum and EVM chains. Risk-ranked table with Revoke.cash links — prevention and post-scare cleanup.
When to run an approval audit
- You connected to unknown dApps and want to see standing token permissions
- Post-incident cleanup before moving assets to a new wallet
- Periodic hygiene — drainer attacks often abuse old unlimited approvals
- Investigator triage on a suspect wallet's open permissions
What Tracefunds scans
- ERC-20 token approvals and NFT operator permissions on EVM chains
- Risk ranking by spender label, allowance size, and token value context
- Direct Revoke.cash links for Ethereum mainnet spenders
- Prevention tone — finds standing permissions, not a confirmed theft verdict
Solana uses a different audit
SPL token-account delegates are not ERC-20 approvals. For Solana, use the SPL delegate audit use case — Solscan revoke guidance, not Revoke.cash.
Key terms