What Is a Crypto Honeypot? Technical Breakdown With Code Examples (Complete Guide)
What Is a Crypto Honeypot? Technical Breakdown With Code Examples is not just a beginner question. A modern honeypot is often engineered to look normal in the UI while the sell path fails at the contract level. This guide breaks down the exact mechanics that create “buy succeeds, sell fails,” shows common trap patterns in Solidity, and gives you a repeatable safety-first workflow for spotting honeypots before you interact.
TL;DR
- A crypto honeypot is a token or contract setup where buying looks normal but selling is blocked or economically impossible due to hidden rules in transfer logic.
- Most honeypots are not “magic.” They are permission checks, hidden modifiers, allowlists, blacklist logic, router traps, or balance manipulation that triggers only on sells.
- The easiest way to detect honeypots is to map the sell path: token transfer restrictions + DEX pair logic + router behavior + privileged roles.
- Focus on patterns that activate only when the recipient is a DEX pair, when the sender is not whitelisted, or when a dynamic fee spikes at sell time.
- Prerequisite reading: Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control.
- Quick triage: run Token Safety Checker, then confirm with manual checks and simple sell simulations.
The most reliable honeypot detection mindset is: “The UI is not the truth, the contract is the truth.” Many honeypots depend on hidden roles, privileged exemptions, or upgrade authority that can change rules after liquidity attracts buyers. Read these first if you want maximum signal: Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control.
Those two guides make honeypot analysis much easier because many traps are built with role gates, exemptions, and upgradeable logic that reintroduces restrictions.
What a crypto honeypot actually is
A crypto honeypot is a token or contract setup designed to attract buys while preventing sells, or making selling economically irrational. In practice, this usually happens because the token’s transfer logic contains conditions that block transfers to a DEX pair, block transfers from non-whitelisted wallets, revert when sell-related code paths are hit, or apply fees so extreme that the sell returns almost nothing.
The key detail is that the front end can look perfectly normal. Dex tools show liquidity. Charts move. Trading volume appears. Socials are active. Buyers see approvals and swaps succeed. Then the moment they try to sell, the transaction reverts, or the wallet receives near-zero output.
A honeypot is not limited to ERC-20 tokens, but the classic version is a token paired with ETH, WETH, USDC, or another asset on a DEX. The token is engineered so that the buy path is permissive while the sell path is restrictive. That asymmetry is the “trap.”
Why honeypots work even when everything looks normal
Honeypots work because most people evaluate tokens through the surface layer: liquidity, verified contract badge, trending chart, and community noise. None of those prove that selling is allowed.
A DEX UI can show a buy transaction succeeded without proving anything about future sell transactions. In fact, a honeypot can intentionally allow a handful of sells from privileged wallets to create the illusion of tradability. That is why you must treat “some sells exist” as weak evidence until you understand who is allowed to sell and why.
There is another reason this is tricky: selling is not “a sell function.” Selling is a sequence of actions that touches multiple contracts and state checks. The token transfer executes. The router calls pair logic. The pair updates reserves. The token may charge fees, burn, or call hooks. If any step fails or returns unexpected values, the swap fails.
The UI can only show what it can see
Many UIs cannot easily detect deeply conditional logic like: “revert if recipient is the pair and sender is not exempt,” or “block transfers if msg.sender is not the router,” or “apply a 99 percent fee on sells unless privileged.”
UIs also cannot fully reason about upgradeable contracts in real time. A contract can look safe today and be upgraded tomorrow. That is why authority analysis matters. If a project can upgrade the token or the fee logic, you must treat “current behavior” as temporary.
How selling works on a DEX at the technical level
To understand honeypots, you need a clear mental model of what “selling” means on-chain. On an AMM like Uniswap V2 style pairs, a sell typically looks like this:
- You approve the router to spend your token.
- You call the router swap function.
- The router transfers your token from your wallet to the pair.
- The pair sends the output asset to you (ETH/WETH/USDC, depending on route).
- The pair updates reserves and invariant checks.
If the token transfer fails at step three, the sell fails. If the token transfer succeeds but the token’s fee logic breaks the expected amounts, the pair may revert. If the token triggers a hook or modifies balances unexpectedly, the swap may revert. If the token detects a sell (recipient equals pair) and blocks it, the sell fails.
The main types of honeypots you will see in the wild
“Honeypot” gets used as a catch-all insult, but in technical terms there are a few repeating families. Once you know them, you start spotting the same logic across different tokens with different names.
Hard revert honeypots
A hard revert honeypot is the simplest. The token’s transfer logic includes a condition that throws an error on sells. This makes sells fail outright. Attackers like this pattern because it is clear and reliable.
A common version is a conditional check that triggers only if the recipient is the pair. Another is a blacklist check that includes the pair or a broad set of addresses that includes the router. A more subtle version uses a modifier that looks harmless but fails under specific circumstances.
Soft honeypots
Soft honeypots allow sells but punish them so severely that the user receives almost nothing. The token may apply a huge sell tax, burn most of the amount, or redirect the tokens to an attacker wallet. In some cases, the tax is dynamic and becomes extreme only when you sell, not when you buy.
Soft honeypots are dangerous because they can be marketed as “high tax tokenomics” or “anti-bot protection.” Without reading the exact fee caps and admin controls, it is hard to tell if the design is defensive or abusive.
Time-based or phase-based honeypots
Some tokens allow sells during a brief window to create proof of tradability, then lock sells later. Others block sells for a period after purchase, or block sells unless a specific launch phase is completed. Time-based traps are often paired with marketing claims like “cooldown” or “anti-dump.”
The key audit question is: who controls the phase, and can they keep it locked indefinitely? That is a role-based access control problem. If a privileged role can keep trading restricted forever, the restriction is not a temporary policy, it is an admin lever.
Router and pair traps
Some honeypots restrict sells by locking transfers to a specific router or a specific pair. If you are forced to use a router the attacker controls, they can route trades through malicious paths, block sells through common routers, or add special conditions that only their router satisfies.
This category includes “only allow transfers if msg.sender == router” patterns. It also includes patterns where the token tracks pairs and blocks transfers to any pair not explicitly allowed, then the admin never allows the public pair, or changes what is “allowed” later.
Where the trap logic is usually hidden
Honeypot logic can live in obvious places like _transfer, but attackers increasingly hide it in less obvious places:
custom modifiers, internal helper functions, “anti-bot” modules, fee calculators, or external contracts called during transfers.
Some tokens also use upgradeable proxies or external config contracts. That means the visible contract can look clean, while the actual restrictions are in a separate module, or can be swapped via an admin role. This is why you should treat upgrade authority and privileged roles as part of honeypot detection.
Honeypot code patterns, explained with real Solidity examples
This section is the heart of the guide. You will see simplified code examples that demonstrate the patterns, and then you will see the detection cues. The point is not to memorize snippets. The point is to learn the logic shape that makes “sell fails” possible.
Real-world honeypots often add noise: extra math, confusing variable names, unused conditions, or “anti-bot” scaffolding. The structure is what matters: where the restriction triggers, and who can bypass it.
Pattern 1: block transfers to the pair
The classic honeypot blocks transfers where the recipient is the pair address. Buys still work because the buy path transfers tokens from the pair to the buyer, not to the pair. Sells fail because the router tries to transfer tokens to the pair.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
contract ClassicHoneypot {
mapping(address => uint256) public balanceOf;
address public pair;
address public owner;
constructor(address _pair){
owner = msg.sender;
pair = _pair;
balanceOf[msg.sender] = 1_000_000 ether;
}
function transfer(address to, uint256 amount) external returns (bool){
_transfer(msg.sender, to, amount);
return true;
}
function _transfer(address from, address to, uint256 amount) internal {
require(balanceOf[from] >= amount, "insufficient");
// Trap: block transfers to the pair for everyone except owner
if (to == pair && from != owner) {
revert("trading disabled");
}
balanceOf[from] -= amount;
balanceOf[to] += amount;
}
}Detection cues in real contracts:
- Pair address stored in state and compared directly in transfer logic.
- Condition checks like
to == pair,to == uniswapV2Pair, or a “pair mapping.” - Exemptions for owner, marketing wallet, or privileged roles.
- Errors that look like “trading disabled,” “anti-bot,” or generic custom errors.
Pattern 2: router-only sells that fail for everyone else
Another trap is a strict requirement on the caller. It may look like an “anti-bot” measure, but it can block sells depending on how the router and transfer calls happen. In some variations, the token allows only one router that attackers control, or it blocks transfers initiated by common routers.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
contract RouterTrap {
mapping(address => uint256) public balanceOf;
mapping(address => bool) public allowedCaller;
address public owner;
constructor(){
owner = msg.sender;
balanceOf[msg.sender] = 1_000_000 ether;
allowedCaller[msg.sender] = true;
}
function setAllowedCaller(address caller, bool ok) external {
require(msg.sender == owner, "only owner");
allowedCaller[caller] = ok;
}
function transfer(address to, uint256 amount) external returns (bool){
// Trap: requires the direct caller to be allowed
// This can break sells depending on how the router interacts and how allowances are used
require(allowedCaller[msg.sender], "caller blocked");
_move(msg.sender, to, amount);
return true;
}
function _move(address from, address to, uint256 amount) internal {
require(balanceOf[from] >= amount, "insufficient");
balanceOf[from] -= amount;
balanceOf[to] += amount;
}
}This pattern is especially dangerous when combined with other modules that switch “allowed callers” dynamically, or when the project provides a custom web UI that routes through a specific contract or relayer that is whitelisted. You may be able to sell through their UI, while the public cannot sell through common routers.
Pattern 3: only whitelisted wallets can sell
Many honeypots implement a whitelist and claim it is anti-bot. The whitelist is then used to allow sells only for the team and early insiders. Everybody else becomes exit liquidity.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
contract WhitelistSellGate {
mapping(address => uint256) public balanceOf;
mapping(address => bool) public canSell;
address public owner;
address public pair;
constructor(address _pair){
owner = msg.sender;
pair = _pair;
balanceOf[msg.sender] = 1_000_000 ether;
canSell[msg.sender] = true; // team can sell
}
function setCanSell(address user, bool ok) external {
require(msg.sender == owner, "only owner");
canSell[user] = ok;
}
function transfer(address to, uint256 amount) external returns (bool){
_transfer(msg.sender, to, amount);
return true;
}
function _transfer(address from, address to, uint256 amount) internal {
require(balanceOf[from] >= amount, "insufficient");
// Sell detection: sending tokens to the pair is part of a sell
if (to == pair && !canSell[from]) {
revert("sell not allowed");
}
balanceOf[from] -= amount;
balanceOf[to] += amount;
}
}Detection cues:
- Mappings named
isExcluded,isWhitelisted,canTrade,isBot,blacklist,cooldown. - Admin setter functions that can change who is exempt.
- Sell detection based on
to == pairor pair mappings. - “Anti-bot” logic that is not time-limited or is admin-controlled without constraints.
Pattern 4: dynamic sell tax that becomes extreme
A frequent soft honeypot is a dynamic sell tax. The token charges a normal-looking buy fee (or none) and then applies a huge fee on sells. The fee might be configurable, computed from hidden state, or triggered only when selling to a pair.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
contract DynamicTaxTrap {
mapping(address => uint256) public balanceOf;
address public pair;
address public owner;
address public feeWallet;
uint256 public buyFeeBps = 200; // 2%
uint256 public sellFeeBps = 9900; // 99% (soft honeypot)
mapping(address => bool) public feeExempt;
constructor(address _pair, address _feeWallet){
owner = msg.sender;
pair = _pair;
feeWallet = _feeWallet;
balanceOf[msg.sender] = 1_000_000 ether;
feeExempt[msg.sender] = true;
}
function setFees(uint256 newBuyFeeBps, uint256 newSellFeeBps) external {
require(msg.sender == owner, "only owner");
// No caps: another red flag
buyFeeBps = newBuyFeeBps;
sellFeeBps = newSellFeeBps;
}
function setFeeExempt(address user, bool ok) external {
require(msg.sender == owner, "only owner");
feeExempt[user] = ok;
}
function transfer(address to, uint256 amount) external returns (bool){
_transfer(msg.sender, to, amount);
return true;
}
function _transfer(address from, address to, uint256 amount) internal {
require(balanceOf[from] >= amount, "insufficient");
uint256 fee = 0;
if (!feeExempt[from] && !feeExempt[to]) {
// Sell detection
if (to == pair) fee = (amount * sellFeeBps) / 10_000;
else fee = (amount * buyFeeBps) / 10_000;
}
uint256 sendAmount = amount - fee;
balanceOf[from] -= amount;
balanceOf[to] += sendAmount;
if (fee > 0) {
balanceOf[feeWallet] += fee;
}
}
}In the wild, the sell fee may not be a visible constant. It can be computed from a variable with misleading naming, or derived from a time window, or switched by an admin. The most important detection principle is to search for: fee calculation logic that branches on pair detection, and admin setters with weak caps.
Pattern 5: cooldown logic that blocks sells in practice
Some tokens implement cooldowns: you cannot sell until a timer passes. Cooldowns can be defensible if designed with clear bounds, but they can also be honeypots when: the cooldown is extremely long, the admin can reset it, or the cooldown triggers incorrectly on buys.
Another risk is when cooldown logic is combined with a hidden exemption list. The team and insiders are exempt and can sell freely. Everybody else is locked for a period that never ends because the admin keeps moving the goalpost.
Pattern 6: max transaction and max wallet rules used as sell locks
Max transaction and max wallet limits are common launch mechanics. Honeypots abuse them by setting limits that make selling fail. For example, the max transaction could be set lower than typical sell sizes, or updated dynamically when the pair is involved.
The tricky part is that maxTx logic can be disguised as risk management. You want to check: is there a hard cap, can the admin change it, and do the limits apply to sells differently than buys?
Pattern 7: hidden modifiers and indirection
Attackers often hide the trap in a modifier or internal function.
The transfer function looks clean, but it calls something like _beforeTokenTransfer or _check that contains the trap.
In some cases, the logic is split across multiple files or imported modules.
This is where verified code matters, but “verified” is still not enough. You must actually search the source for comparisons to pair addresses, router addresses, and allowlist mappings.
Pattern 8: upgradeable honeypots
A token can launch without a honeypot and become one later if it is upgradeable or if it can switch modules. This is a critical point: honeypots are not only static code traps. They can be governed traps.
If a contract is upgradeable, your honeypot analysis must include the authority model. Who can upgrade? Is there a timelock? Can upgrades happen quickly? Those questions are exactly why the prerequisite guide on role-based access control matters: Smart Contract Role-Based Access Control.
High-signal red flags that correlate with honeypots
Some clues are noisy. Others are consistently useful. The list below is biased toward signals that show up directly in code or on-chain behavior.
| Signal | Why it matters | Where to look | What a safe version looks like |
|---|---|---|---|
| Pair detection in transfer logic | Sell path often equals transfer to pair | Search for pair vars, mappings, comparisons | Clear, bounded launch logic with explicit end, or no sell-specific branching |
| Allowlist exemptions | Enables insiders to sell while public cannot | Mappings like exempt, whitelist, bot, canTrade | Transparent list, narrow scope, time-limited, ideally removed after launch |
| Owner can change fees with no cap | Soft honeypot via extreme sell tax | setFee, setTax, setRates functions | Hard caps, timelock or governance, events, documented max values |
| Transfers blocked unless caller is special | Router traps, custom UI traps | require(msg.sender == router) patterns | Standard ERC-20 behavior without caller restrictions |
| Upgradeable proxy without timelock | Rules can change after liquidity attracts buyers | Proxy admin, UUPS upgradeTo | Timelocked upgrades, transparent governance, verified implementations |
| Weird arithmetic around balances | Balance manipulation can break swap invariants | Transfer amount math, hidden burns, reflections | Clear, audited math, bounded fees, predictable invariants |
Quick red flags checklist
- You see conditional logic that triggers when recipient is a pair or router address.
- You see a privileged exemption list without clear constraints and with admin setters.
- You see sell fee variables that can be updated and do not have caps.
- You see upgrade authority without delay, or unclear proxy admin ownership.
- You see “anti-bot” logic that can be toggled by the owner at any time.
A safety-first workflow to detect honeypots before you buy
The goal here is speed without guessing. You want a workflow you can run quickly, then deepen only when a token passes basic checks. This is the same idea as “scan first, decide later.”
Step 1: quick scan for obvious centralized levers
Start with a fast scan to surface the most common risk indicators: upgradeability, owner privileges, transfer restrictions, tax logic, blacklist functions, and suspicious patterns. Use Token Safety Checker as your first step because it helps you avoid wasting time on obvious traps.
Run a fast honeypot triage scan
Before you read 3,000 lines of code, do the quick triage. Then focus your manual review on whatever the scan flags: upgradeability, ownership controls, transfer restrictions, and tax switches.
Step 2: map the sell path, not the buy path
Most people do the opposite. They confirm they can buy, and they assume selling will work later. Honeypots are built to exploit that assumption.
Mapping the sell path means you answer these questions:
- What address is the pair (or pairs)?
- Does transfer logic behave differently when recipient is a pair?
- Are there exemptions that allow only some wallets to sell?
- Are there dynamic fees that spike on sells?
- Can the owner or admin change the rules after launch?
Step 3: read transfer logic with a specific search strategy
Instead of reading the contract top to bottom, search for the words that correlate with restrictions. This is the fastest strategy for human reviewers.
- Search for:
pair,router,uniswap,pancake,swap,liquidity. - Search for:
blacklist,bot,cooldown,trading,enabled,limit. - Search for:
fee,tax,burn,reflection,marketing. - Search for:
owner,admin,role,upgrade,proxy.
Each match tells you where to focus. In honeypots, the trap logic tends to cluster around transfer checks, fee computation, and admin setters.
Step 4: simulate a sell with tiny size and read the revert reason
A clean, practical trick is to simulate a sell with a very small amount. If it reverts, the revert reason often reveals the trap. Even when the revert is generic, the call trace can show where the failure occurs.
The important detail is that this is not proof of safety if it succeeds once. Some honeypots allow sells for certain wallets, for certain time windows, or under certain amounts. Simulation is a signal, not a guarantee.
Step 5: evaluate authority and rule-change power
If the contract is upgradeable, or if the owner can change fees and restrictions, then “safe today” can become “honeypot tomorrow.” This is why authority analysis is a required step, not an optional one.
Two guides you should keep open while doing this: Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control. They teach you how to spot the “power to change power,” which is a core honeypot risk.
Deeper mechanics: why some tokens break sells without a direct revert
Not all honeypots revert. Some make sells fail indirectly by breaking assumptions in the router or pair. Understanding these cases helps you avoid a false sense of safety.
Fee-on-transfer behavior and why it complicates detection
Fee-on-transfer tokens take a cut of the transfer amount. Many routers support this using specialized swap functions that tolerate transfer fees. But fee logic can still be abused to create a honeypot-like effect.
A token can claim it is fee-on-transfer and then apply a much larger fee on sells than buys. It can also redirect fees to a wallet that dumps constantly, keeping the price unstable. Even if selling works, the economics can be hostile enough to trap users.
Balance manipulation that breaks swap math
Some tokens manipulate balances in a way that is not obvious. For example, they may burn a portion on transfer, or they may adjust balances based on internal bookkeeping. If the pair receives less than expected, or reserves behave unexpectedly, swaps can revert.
This category also includes tokens that use complicated reflections. Reflection tokens can be legitimate, but they increase audit complexity. If you do not fully understand the reflection math and the exemptions, you can miss sell-path restrictions.
Allowance and approve traps
A less common but real pattern involves allowances. Selling typically requires approval. A token can implement non-standard allowance logic that allows approvals but fails transfersFrom in certain cases. Another version is an approval that silently changes another state variable, like setting the wallet as “bot” or disabling sells.
When reviewing these tokens, you must read transferFrom and any internal hooks it calls, not only transfer.
Building a honeypot detector mindset (without pretending you can prove safety)
Honeypot detection is risk management, not perfect proof. You can reduce your risk dramatically by learning the patterns and running a consistent workflow, but you should be honest about limits: if code is not verified, if contracts are upgradeable, or if external modules control restrictions, you cannot prove the future behavior of the system from the current snapshot.
The right goal is: reduce exposure to obvious traps, avoid systems with high rule-change power, and require higher evidence when the risk is higher.
An evidence ladder you can use
Think of evidence like levels. Each level is stronger than the one above it.
- Level 1: Surface checks (liquidity, contract verified badge, holders count). Weak evidence.
- Level 2: Static scan results (transfer restrictions, upgradeability hints, owner privileges). Useful triage.
- Level 3: Manual code review of sell path and admin setters. Stronger.
- Level 4: Transaction simulations and trace analysis for sells. Very strong for current behavior.
- Level 5: Authority constraints (timelocks, governance, immutable rules, no upgrade power). Strongest for future behavior.
Most people stop at level 1 and get trapped. The simplest way to upgrade your process is to always reach level 3 at minimum, and level 5 whenever serious money is involved.
A step-by-step checklist you can follow every time
Use this as a repeatable procedure. It is designed to be practical for everyday use, not just for auditors.
Step-by-step honeypot checks
- Run Token Safety Checker and note any flagged transfer restrictions, blacklist patterns, tax controls, or upgradeability.
- Confirm whether contract code is verified and readable. If not, treat as high risk by default.
- Identify the pair and router addresses used for trading.
- Search the token source for pair detection and sell-branch logic: comparisons to pair, router, or mapping of pairs.
- Search for allowlists and exemption lists: isExcluded, whitelist, canTrade, bot flags.
- Check tax logic: buy tax vs sell tax, dynamic tax, admin setter functions, and whether caps exist.
- Check maxTx and cooldown rules: do they apply to sells, and can they be changed by admin?
- Check authority: owner/roles/upgrades. If upgradeable, who can upgrade and is there a delay?
- Simulate a sell with a tiny amount and inspect the revert reason and trace.
- Decide exposure based on authority and constraints, not only on current behavior.
For builders: how to implement anti-bot protection without creating honeypot behavior
Real teams sometimes add launch protection, and then get accused of honeypot behavior because the rules are unclear or too aggressive. If you build tokens, you want two outcomes: legitimate users can sell under predictable rules, and bots cannot trivially manipulate launch.
Here are principles that keep your launch logic from looking like a trap:
- Time-limit restrictions: If you have trading restrictions, make them expire automatically.
- Cap fees: If you charge fees, enforce a hard maximum in code.
- Emit events: Every change to fees, exemptions, or trading status should emit clear events.
- Minimize exemptions: If some wallets are exempt, document them and keep the list minimal.
- Separate roles: The wallet that can update fees should not also be able to upgrade logic instantly.
- Prefer timelocks for high impact: Upgrades and major parameter changes should be delayed.
A safer pattern: bounded fees and predictable sell logic
Below is an example of a safer fee design, not perfect, but meaningfully better than unbounded setters. It uses caps and emits events, and it avoids blocking sells directly.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
contract BoundedFeeExample {
mapping(address => uint256) public balanceOf;
address public owner;
address public feeWallet;
address public pair;
uint256 public constant MAX_FEE_BPS = 800; // 8% hard cap
uint256 public buyFeeBps;
uint256 public sellFeeBps;
mapping(address => bool) public feeExempt;
event FeesUpdated(uint256 buyFeeBps, uint256 sellFeeBps);
event FeeExemptUpdated(address indexed user, bool ok);
constructor(address _pair, address _feeWallet){
owner = msg.sender;
pair = _pair;
feeWallet = _feeWallet;
balanceOf[msg.sender] = 1_000_000 ether;
feeExempt[msg.sender] = true;
}
function setFees(uint256 newBuyFeeBps, uint256 newSellFeeBps) external {
require(msg.sender == owner, "only owner");
require(newBuyFeeBps <= MAX_FEE_BPS, "buy fee too high");
require(newSellFeeBps <= MAX_FEE_BPS, "sell fee too high");
buyFeeBps = newBuyFeeBps;
sellFeeBps = newSellFeeBps;
emit FeesUpdated(newBuyFeeBps, newSellFeeBps);
}
function setFeeExempt(address user, bool ok) external {
require(msg.sender == owner, "only owner");
feeExempt[user] = ok;
emit FeeExemptUpdated(user, ok);
}
function transfer(address to, uint256 amount) external returns (bool){
_transfer(msg.sender, to, amount);
return true;
}
function _transfer(address from, address to, uint256 amount) internal {
require(balanceOf[from] >= amount, "insufficient");
uint256 fee = 0;
if (!feeExempt[from] && !feeExempt[to]) {
bool isSell = (to == pair);
uint256 bps = isSell ? sellFeeBps : buyFeeBps;
fee = (amount * bps) / 10_000;
}
uint256 sendAmount = amount - fee;
balanceOf[from] -= amount;
balanceOf[to] += sendAmount;
if (fee > 0) balanceOf[feeWallet] += fee;
}
}This does not guarantee “not a honeypot.” It simply reduces two major risk factors: unbounded fees and unpredictable sell behavior. You still need good authority design, role separation, and ideally delays for high-impact changes. That is where Smart Contract Role-Based Access Control becomes essential knowledge for builders.
A visual intuition: why honeypots create “one-way price action”
Honeypots often create a price chart that looks like a staircase up. Buys push price higher. Sells fail or are heavily penalized, so there is less sell pressure than expected. This is not a “bullish signal.” It is a mechanical consequence of one-way liquidity interaction.
This is an illustration, not a detection method. The real detection method is still code and authority analysis. But visually, it explains why honeypots can look “strong” on the chart while being structurally unsafe.
Tools and workflow that make honeypot detection faster
Honeypot detection is much easier when you do not rely on one source of truth. You want a layered process: automated scan, manual code review, simulation, and authority checks.
Start with TokenToolHub tools
Use Token Safety Checker to surface common risk patterns quickly. If you are building skill depth, use Blockchain Advance Guides to strengthen your understanding of token mechanics, access control, and upgradeability.
Why subscriptions help safety workflows
The hardest part of staying safe is consistency. People get trapped when they skip checks during hype. If you want reminders, checklists, and security-first updates as part of your routine, you can Subscribe.
Key safety for serious traders and builders
Honeypots target buyers, but the broader safety lesson is: treat on-chain risk as layered. If you are signing transactions often, a hardware wallet reduces the risk of approvals and signing under malware pressure. For many users, this is a practical baseline.
Reduce signing risk with hardware isolation
Honeypots are contract traps, but many losses come from approvals, malware, and key compromise. Hardware wallets help isolate keys from everyday browsing and reduce the blast radius of a bad click.
Edge cases that confuse people (and how to think clearly)
Not every “I cannot sell” story is a honeypot. Sometimes the user is hitting slippage issues, a taxed token requires a fee-supporting swap function, liquidity is removed, or the route is broken. The goal is to distinguish: a true contract-level sell restriction from a route or UI problem.
Slippage, taxes, and why sells fail even on legitimate tokens
If a token charges a transfer fee, a standard swap call might revert because the router expects the pair to receive a certain amount. This is why some routers expose “supporting fee-on-transfer tokens” swap functions. A legitimate fee token can be mistaken for a honeypot if the user uses the wrong swap function.
That said, honeypots can hide behind this ambiguity. The deciding factor is code: are fees bounded, transparent, and consistent, or are they dynamic and admin-controlled with no caps?
Liquidity removal versus honeypot
If liquidity is removed, sells fail or output becomes meaningless because there is no counterparty liquidity. That is not a honeypot in the strict sense, it is a liquidity rug. The user experience is still “I cannot sell,” but the mechanism is different.
The difference matters because detection differs: liquidity risk is about LP ownership and locks, while honeypot risk is about transfer restrictions and authority. In practice, many scams include both.
“Some people can sell” does not mean you can sell
One of the most deceptive honeypot designs allows sells from: the owner, the marketing wallet, a whitelist, or wallets created by the attacker. That produces sell transactions on-chain and convinces observers that the token is tradable. Meanwhile, the public is blocked.
This is exactly why allowlists and exemption mapping are high-signal red flags.
Why access control and upgrades are part of honeypot detection
Honeypots are often sold with a narrative of fairness: “renounced ownership,” “community token,” “mint disabled.” Those claims can be true in narrow terms while still leaving a path to trap behavior.
Two examples:
- A token renounces ownership, but a role-based admin system still exists and can change restrictions.
- A token disables mint, but the contract is upgradeable and an upgrader can reintroduce mint or sell restrictions.
That is why it is essential to understand hidden admin power and RBAC: Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control. Honeypot detection improves dramatically when you treat “authority to change rules” as a first-class risk.
Conclusion: honeypots are sell-path traps, not hype problems
A crypto honeypot is not a mystery. It is a sell-path trap implemented through transfer restrictions, dynamic fees, allowlists, router constraints, or authority-controlled rule changes. The reason they keep working is that people keep doing surface checks and assuming the exit will work later.
Your safety-first advantage is a simple habit: run a quick scan, map the sell path, read the transfer logic, simulate a tiny sell, and evaluate who can change the rules. If a token requires you to trust an admin key without constraints, treat it as high risk.
Keep these two as required follow-ups because they cover the authority layer that makes traps persistent: Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control. For quick checks before you interact, use Token Safety Checker, and if you want to build deep skill, use Blockchain Advance Guides.
FAQs
What is a crypto honeypot in one sentence?
A crypto honeypot is a token or contract setup that lets users buy normally but blocks selling or makes selling effectively worthless using hidden transfer restrictions or sell-only economics.
How do honeypots block sells if buys work?
Most honeypots trigger restrictions when the recipient is a DEX pair or when sell detection conditions are met. Buys transfer tokens from the pair to the buyer, while sells transfer tokens from the seller to the pair, so the token can block only that direction.
Are high taxes always a honeypot?
Not always. Some tokens have fees by design. The risk is when fees are unbounded, can be changed by an admin without caps, or spike only on sells. Bounded fees with clear caps and transparent controls are materially safer than dynamic admin-controlled fees.
Can a token become a honeypot after launch?
Yes. If a token is upgradeable, or if admins can change restrictions and exemptions, the behavior can change after liquidity and buyers arrive. That is why authority checks and access control analysis matter.
What is the fastest way to reduce honeypot risk?
Start with a quick scan using Token Safety Checker, then manually review transfer logic for pair detection, exemption lists, and fee setters, and simulate a tiny sell to inspect revert reasons and traces.
Why are access control and upgrades part of honeypot detection?
Because authority can change rules. Even if a token allows sells today, an admin role or upgrader can introduce sell restrictions later. Understanding RBAC and hidden admin power helps you evaluate future risk, not only current behavior.
What should I read next to get better at this?
Start with Hidden Admin Roles That Re-Enable Mint and Smart Contract Role-Based Access Control, then deepen your core understanding through Blockchain Advance Guides.
References
Official documentation and reputable sources for deeper reading:
- OpenZeppelin Contracts documentation
- OpenZeppelin: Access control guide
- EIP-20: ERC-20 Token Standard
- EIP-1967: Proxy storage slots
- EIP-1822: UUPS proxy standard
- TokenToolHub: Hidden Admin Roles That Re-Enable Mint
- TokenToolHub: Smart Contract Role-Based Access Control
- TokenToolHub: Token Safety Checker
- TokenToolHub: Blockchain Advance Guides
Safety note: no checklist can guarantee future behavior if contracts are unverified, upgradeable, or governed by privileged roles without constraints. The purpose of this guide is to reduce risk by making the sell path and authority model explicit.
