Soulbound Security
Blockchain infrastructure for identity, privacy, and trust.
What We Build
Soulbound Security is a blockchain technology company focused on protocol-level security infrastructure. We design and ship systems where privacy, compliance, and auditability are architectural properties — not policy promises.
Our work spans three domains: privacy-preserving financial protocols, zero-knowledge identity and attestation systems, and cryptographic integrity layers for AI.
Each product shares a common engineering philosophy — the system should be incapable of violating its own guarantees, not merely configured not to.
Solutions
Infrastructure for Privacy and Trust
Protocol-level systems where security guarantees are architectural, not promises. Three domains, one engineering philosophy.
SoulBound Finance
Privacy-preserving transfer protocol. Generate E2E encrypted codes that structurally separate sender and recipient — enforced by architecture, not policy or promises. Deposits are identity-gated via non-transferable SoulBound Tokens. Redemptions are private and batched for additional protection. Multi-token support (ETH, USDC, USDT, WBTC).
Zero-Knowledge Identity
Commercial SoulBound Token solutions for identity verification, credential attestation, and access control — without exposing personal data. KYC status, accreditation, proof-of-humanity, institutional verification — proven on-chain, private off-chain. Extensible to any credential provider or regulatory framework. If your platform needs identity that users own and nobody can steal, contact us below.
AI Data Integrity
Cryptographic provenance for AI training data. Mint, verify, and share datasets with public auditability and private ownership. Prove data is ethically sourced, properly licensed, and unmodified — without exposing the data itself. ZKP attestation pipelines on Ethereum and Arbitrum for enterprise AI governance, copyright protection, and regulatory compliance.
Technology
Open Source, Battle-Tested
Tools built for production, released for the community.
Tools built for production, released for the community.
Soulbound Auth (SBA)
Passwordless, credentialless Web3 authentication. No Ethereum addresses stored server-side. No session tokens in the database. Three independent factors that must all pass: EIP-712 typed data signature recovery, live on-chain SoulBound Token verification with fail-closed timeout, and an environment-only allowlist immune to database compromise.
SoulBound Protocol (SBF)
Four Solidity smart contracts — zero external dependencies. No OpenZeppelin, no inherited libraries, no proxies. SoulBoundToken, DepositPool, ClaimPool, and SoulBoundDeployer — each defining its own minimal ERC-20 interface scoped to exactly the permissions it needs. EIP-712 typed data attestations on every transaction.
Security Research
Open-source security tools adopted across the industry since 2013. Arctic Code Vault contributor. 550+ GitHub stars.
YaraGenerator — Automatic Yara rule generation
VirusTotal API Tool — First VT API integration
WhoDat — Reverse WHOIS/PDNS fusion (donated to MITRE)
MIDAS — Metadata inspection and alerting
Careers
Serious tech. Serious team.
Soulbound Security builds global-scale blockchain, AI, and fintech security solutions. Rooted in enterprise security architecture, offensive research, and protocol engineering — shipping production systems since 2017.
The Right Team
Security and blockchain at the core — with deep experience across Palo Alto Networks, Accenture, DOD, and defense, DeFi and Blockchain. Complemented by legal, growth, and ops leadership from the F500
Research & Open Source
Core protocol under AGPL-3.0. Authentication under MIT. Technical deep dives on architecture, privacy, and security published on Substack. We publish what we ship and we write about why.
Careers
We're hiring engineers, security researchers, and growth leads to build the next generation of privacy infrastructure. Remote. US/UK/Global. If you build things that work and ship things that matter — reach out.