Skip to content
@trailofbits

Trail of Bits

More code: binary lifters @lifting-bits, blockchain @crytic, forks @trail-of-forks
README.md
The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. publications publications Public

    Publications from Trail of Bits

    Python 1.8k 225

  2. skills skills Public

    Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    Python 4.2k 371

  3. fickling fickling Public

    A Python pickling decompiler and static analyzer

    Python 617 70

  4. vscode-weaudit vscode-weaudit Public

    Create code bookmarks and code highlights with a click.

    TypeScript 231 31

  5. semgrep-rules semgrep-rules Public

    Semgrep queries developed by Trail of Bits.

    Go 491 51

  6. codeql-queries codeql-queries Public

    CodeQL queries developed by Trail of Bits

    CodeQL 157 8

Repositories

Showing 10 of 269 repositories
  • mishegos Public

    A differential fuzzer for x86 decoders

    trailofbits/mishegos’s past year of commit activity
    C++ 267 Apache-2.0 30 9 (2 issues need help) 3 Updated Apr 2, 2026
  • claude-code-config Public

    Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits

    trailofbits/claude-code-config’s past year of commit activity
    Shell 1,743 132 6 5 Updated Apr 2, 2026
  • different Public

    Detect bugs that have already been fixed in one codebase and determine whether the same issues apply to the target codebase.

    trailofbits/different’s past year of commit activity
    Python 5 1 0 2 Updated Apr 2, 2026
  • pylock-attestations Public

    CLI tool to add attestation identities to `pylock.toml` files

    trailofbits/pylock-attestations’s past year of commit activity
    Python 5 Apache-2.0 1 4 0 Updated Apr 2, 2026
  • test-fuzz Public

    To make fuzzing Rust easy

    trailofbits/test-fuzz’s past year of commit activity
    Rust 199 AGPL-3.0 25 8 (1 issue needs help) 4 Updated Apr 2, 2026
  • CoBRA Public

    Coefficient-Based Reconstruction of Arithmetic — a Mixed Boolean-Arithmetic (MBA) expression simplifier for deobfuscation

    trailofbits/CoBRA’s past year of commit activity
    C++ 185 Apache-2.0 7 2 0 Updated Apr 2, 2026
  • pajaMAS Public

    Multi-agent system (MAS) hijacking demos

    trailofbits/pajaMAS’s past year of commit activity
    Python 45 Apache-2.0 4 3 11 Updated Apr 1, 2026
  • buttercup Public

    Buttercup finds and patches software vulnerabilities

    trailofbits/buttercup’s past year of commit activity
    Python 1,537 AGPL-3.0 171 52 6 Updated Apr 1, 2026
  • slither-mcp Public

    MCP server for Slither static analysis of Solidity smart contracts

    trailofbits/slither-mcp’s past year of commit activity
    Python 81 AGPL-3.0 8 0 9 Updated Apr 1, 2026
  • sleepy-pickle-public Public

    AI model compromise through malicious pickle files

    trailofbits/sleepy-pickle-public’s past year of commit activity
    Python 1 MIT 1 0 5 Updated Apr 1, 2026
View all repositories

Top languages

Loading…

Most used topics

Loading…