Crypto Due Diligence Checklist: 50-Point Evaluation Before You Invest

How to Use This Checklist

Score each item as Pass, Partial, or Fail. A project does not need to pass every single item, but consistent failures in one category should give you pause. As a general rule:

Category 1: Project Overview (8 Items)

This category assesses whether the project has a clear purpose and viable product.

• ✓The project has a published whitepaper or comprehensive technical documentation
• ✓The problem being solved is clearly defined and the addressable market is identifiable
• ✓Blockchain technology is necessary for the solution (not just added for token speculation)
• ✓A working product or mainnet exists (not just a testnet or promises)
• ✓The project is listed on CoinGecko or CoinMarketCap with verified data
• ✓The roadmap has specific milestones with dates, and past milestones were met
• ✓The project has been live for at least 6 months (longer is better)
• ✓There is a clear competitive advantage over similar projects

What to Look For

Category 2: Team and Leadership (9 Items)

The team is often the single best predictor of whether a project will succeed or fail.

• ✓Founders are publicly identified with verifiable professional histories
• ✓Core team members have relevant technical experience in blockchain or the target industry
• ✓The team has previously shipped successful products (crypto or traditional)
• ✓Team size is appropriate for the project scope (at least 10+ for major protocols)
• ✓Key team members are working full-time on the project
• ✓The team communicates regularly through blog posts, AMAs, or development updates
• ✓Advisors are actively involved (not just lending their name)
• ✓There is no history of scams, failed exits, or legal issues involving team members
• ✓Team token allocations have reasonable vesting (3-4 year cliff and vesting)

How to Verify Team Claims

Category 3: Technology and Security (9 Items)

Technical quality and security practices reveal how seriously a team takes its product and users' funds.

• ✓Source code is open-source and publicly accessible on GitHub
• ✓The project has been audited by at least 2 reputable security firms
• ✓Audit findings have been addressed and fixes verified
• ✓GitHub shows consistent development activity (weekly commits minimum)
• ✓Multiple developers contribute to the codebase (not a single-person project)
• ✓The project has a bug bounty program with meaningful rewards ($100K+)
• ✓Smart contracts use established standards and battle-tested libraries
• ✓The architecture documentation is clear and complete
• ✓There have been no critical unpatched vulnerabilities or exploits

Security Audit Evaluation

| Auditor | Reputation | What to Check | |---------|------------|---------------| | Trail of Bits | Top tier | Full audit report is publicly available | | OpenZeppelin | Top tier | Critical and high severity findings resolved | | Spearbit | Top tier | Timeframe of audit relative to current code | | Certik | Well known | Cross-reference with other auditors | | Halborn | Well known | Check scope coverage completeness |

Category 4: Tokenomics and Financials (10 Items)

Poor tokenomics can destroy an otherwise excellent project. This is where many investors lose money.

• ✓The token has a clearly defined utility within the protocol (governance, staking, gas, access)
• ✓Total supply and max supply are clearly documented
• ✓Circulating supply is at least 40% of total supply (lower means future dilution risk)
• ✓Fully diluted valuation (FDV) is less than 5x the circulating market cap
• ✓Team and investor allocations combined are under 40% of total supply
• ✓Vesting schedules for insiders are 3+ years with cliff periods
• ✓No single wallet holds more than 10% of circulating supply (excluding protocol treasuries)
• ✓The inflation rate is documented and sustainable (under 10% annually)
• ✓The protocol generates revenue from sources other than token emissions
• ✓Treasury management is transparent with regular reporting

Financial Health Metrics

Token Unlock Calendar

Category 5: Community and Ecosystem (8 Items)

A thriving community and growing ecosystem provide the demand side of the equation.

• ✓The project has an active developer community building applications on top of it
• ✓Governance proposals receive meaningful participation (1,000+ voters)
• ✓Discord/Telegram discussions focus on technology, not just price
• ✓Social media following shows organic growth (not bot-inflated)
• ✓The project has established partnerships with other reputable protocols
• ✓Ecosystem grants program exists to fund builders
• ✓Regular community calls or AMAs with transparent team communication
• ✓Media coverage from reputable crypto outlets (not just paid press releases)

Social Media Verification

| Platform | Healthy Signs | Bot Indicators | |----------|---------------|----------------| | Twitter/X | Replies discussing technical details | Generic "great project!" comments | | Discord | Technical support channels active | Same messages repeated by many accounts | | GitHub | Issues and PRs from external contributors | Only team members contributing | | Reddit | Detailed discussions with varied opinions | Echo chamber, all posts positive |

Category 6: Risk Assessment (6 Items)

The final category evaluates specific risks that could derail your investment.

• ✓The project is not currently under investigation by any regulatory body
• ✓Smart contracts are not upgradeable by a single admin key (or upgrade process is governed by DAO)
• ✓Liquidity is sufficient on major exchanges (under 1% slippage for your planned position)
• ✓The project does not depend on a single point of failure (one chain, one exchange, one team member)
• ✓No major token unlock events in the next 30 days exceeding 3% of circulating supply
• ✓The project's STRICT score on Coira is above your minimum threshold

Risk Assessment Matrix

| Risk Type | Low | Medium | High | |-----------|-----|--------|------| | Smart Contract | Multiple audits, 2+ years live | Single audit, 6-24 months live | Unaudited, new deployment | | Team | Public, proven track record | Public, limited track record | Anonymous, no history | | Regulatory | Compliant in major jurisdictions | Gray area, not yet addressed | Active investigation | | Liquidity | Top 100 by volume, deep books | Top 500, moderate depth | Thin liquidity, few exchanges | | Concentration | Top 10 wallets hold <30% | Top 10 hold 30-50% | Top 10 hold 50%+ |

Using the STRICT Score as a Cross-Reference

After completing your manual checklist, compare your findings with the project's STRICT score on Coira. The six checklist categories map directly to the STRICT pillars:

| Checklist Category | STRICT Pillar | What to Compare | |--------------------|---------------|-----------------| | Project Overview | Sustainability | Does the project have a viable long-term model? | | Team & Technology | Transparency | Is the project open and verifiable? | | Financials | Revenue | Does it generate real income? | | Technology | Innovation | Does it offer genuine technical value? | | Community | Community | Is the ecosystem growing organically? | | Tokenomics | Tokenomics | Is the token design sound? |

Decision Framework

After completing the checklist, use this framework to guide your decision:

Document Your Thesis

Frequently Asked Questions

Printable Checklist Summary

Ready to apply this checklist? Start by exploring Coira's crypto rankings to find projects with strong STRICT scores, then run them through the full 50-point evaluation. For a deeper look at fundamentals, read our How to Do Crypto Fundamental Analysis guide.