DeFi Protocol Development

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
8+Years of work900+Completed projects100+In house employees19+Partners
Offered services
Showing 1 of 1 servicesAll 1306 services
DeFi Protocol Development
Complex
from 2 weeks to 3 months
FAQ
Blockchain Development Services
Blockchain Development Stages
Latest works
  • image_website-b2b-advance_0.png
    B2B ADVANCE company website development
    1214
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1161
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    852
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1041
  • image_logo-advance_0.png
    B2B Advance company logo design
    561
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    823
Show more works

DeFi Protocol Development

A team launches a lending protocol inspired by Aave v3. During testing everything works. After deploying to mainnet, 48 hours later a Chainlink oracle returns stale price—the liquidation threshold breaches safe positions. Liquidators drain the collateral pool of $400K while the team figures out what's wrong. The problem is not with Chainlink itself—it's the lack of staleness check: the contract didn't verify updatedAt from latestRoundData().

DeFi protocol development is not just Solidity code. It's a system of invariants that must hold under any market conditions, MEV attacks, and infrastructure force majeure.

Where DeFi protocols break at design stage

Oracle manipulation via flash loan

Typical scheme: attacker takes a 50M USDC flash loan from Aave, manipulates price in a low-liquidity Uniswap v2 pool, uses this pool as price oracle, borrows against inflated collateral, doesn't repay the loan. Protocols using token.balanceOf(pool) or spot price from AMM as oracle are vulnerable by definition.

Defense works on multiple levels:

TWAP instead of spot price. Uniswap v3 provides OracleLibrary.consult() for time-weighted average price calculation. A 30-minute window makes flash loan manipulation economically unviable—you need to hold a position for several blocks, each with arbitrage risk.

Chainlink with fallback. Primary source—Chainlink, fallback—Uniswap v3 TWAP. If Chainlink returns price with updatedAt older than 3600 seconds or answer < 0—switch to TWAP with event emission for monitoring.

Circuit breaker on deviation. If price changes more than 15% in one block—transaction reverts. Parameter configurable via governance with timelock.

Reentrancy in cross-protocol interactions

AMM protocol calls token on swap. If token implements ERC-777 with tokensReceived hook—attacker contract gains control mid-swap, before pool internal balances update. Not theory: the Uniswap v1 attack via ERC-777 was one of the first public DEX exploits.

In modern protocols the issue is more complex: callback patterns (uniswapV3SwapCallback, flashLoanReceiver) intentionally transfer control to external code. Defense is built through invariant check: state is fixed before callback, then verified after—invariants must hold.

Liquidation mechanics and bad debt

With sharp market drops of 40%+ in one block (Ethereum dropped 50% in hours in March 2020) liquidation may not keep up. Collateral becomes worth less than debt—protocol accumulates bad debt. Compound v2 hit this, MakerDAO introduced Emergency Shutdown precisely as last resort.

Liquidation parameters require mathematical modeling: loan-to-value ratio, liquidation threshold, liquidation bonus, close factor—all must be calibrated to volatility of specific asset. WBTC and meme token cannot have the same LTV.

Protocol architecture

Modular contract structure

Monolithic contract with 3000 lines—the first mistake in DeFi protocol. Not for aesthetics, but because:

  • Exceeds EVM bytecode limit (24 KB)
  • Can't replace individual module without full redeploy
  • Audit takes 3x longer and costs accordingly

Use Diamond Pattern (EIP-2535) for protocols with rich functionality: separate facets for lending, liquidation, oracle, governance. Storage—common Diamond Storage via keccak256 slots (ERC-7201).

For simpler cases—separation into Core (immutable logic), Periphery (helper contracts, updatable) and Governance. This pattern is used by Uniswap from v2 onwards.

Upgradability: when needed and when harmful

UUPS (EIP-1822) vs Transparent Proxy (EIP-1967): choice depends on who pays for upgrade. In UUPS upgrade logic is in implementation—cheaper for users, but if new implementation removes upgradeTo function—protocol loses upgrade ability forever. In Transparent Proxy logic is in proxy—slightly more expensive each call, but more reliable.

For protocols with TVL >$10M upgradability via multisig without timelock is a centralized attack vector. Gnosis Safe 4-of-7 + 48-hour timelock via OpenZeppelin TimelockController—minimum trust standard.

Tokenomics at contract level

Ve-model (vote-escrowed, like Curve) requires careful balance: contract locks tokens for up to 4 years, distributes voting power via balanceOfAtTime() at specific block. If voting power is calculated incorrectly—governance attack costs less than it should.

Emission schedule must be immutable or governed via supermajority voting. Retroactive emission changes—that's exactly what kills protocol trust.

Development stack

Component Tools Purpose
Development Foundry, Hardhat Main environment, tests, deployment
Base contracts OpenZeppelin 5.x Access control, proxy, tokens
Oracle Chainlink, Uniswap v3 TWAP Price data
Testing Foundry fuzz, Echidna Property-based tests
Static analysis Slither, Mythril Automated vulnerability search
Monitoring Tenderly, OpenZeppelin Defender Alerts, automation
Indexing The Graph Subgraph for frontend

Fork-tests on Foundry let you run entire protocol against real mainnet state: vm.createFork("mainnet"), vm.rollFork(blockNumber). Only way to verify interaction with real Uniswap pools, real Chainlink feeds, and real Aave positions.

Development process

Specification (1 week). Formal description of invariants: "total debt always less than total collateral adjusted for LTV", "only liquidator can close unhealthy position", "emission rate cannot grow more than X% per governance cycle". Invariants become foundation for Echidna property-tests.

Architectural design (3-5 days). Storage layout, interfaces, contract interaction diagram. Decision on upgradability and governance. This stage is cheaper to change on paper than after 2 weeks development.

Development (3-8 weeks). Depends on protocol complexity. In parallel: contracts + Foundry tests (>90% coverage), Graph subgraph, deployment scripts.

Internal audit + preparation for external. Slither CI on every PR. Before external audit—full Mythril check, manual review by SWC-checklist. Goal—close low/medium before external auditor to let them focus on high-level vectors.

Deployment. Testnet (Sepolia/Arbitrum Goerli) → staged mainnet via multisig with timelock → post-launch monitoring via Tenderly.

Timeline estimates

Minimal AMM protocol (xy=k, no concentrated liquidity)—4-6 weeks. Lending per Compound v2 model—8-12 weeks. Full-featured protocol with ve-tokenomics, governance and cross-chain support—3-6 months. External audit adds 2-4 weeks and should be planned early with top firms (Trail of Bits, Spearbit, Code4rena).

Cost calculated after technical specification.