Skip to content
@trailofbits

Trail of Bits

More code: binary lifters @lifting-bits, blockchain @crytic, forks @trail-of-forks
README.md
The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. publications publications Public

    Publications from Trail of Bits

    Python 1.8k 220

  2. skills skills Public

    Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    Python 3.4k 270

  3. fickling fickling Public

    A Python pickling decompiler and static analyzer

    Python 608 68

  4. vscode-weaudit vscode-weaudit Public

    Create code bookmarks and code highlights with a click.

    TypeScript 230 29

  5. semgrep-rules semgrep-rules Public

    Semgrep queries developed by Trail of Bits.

    Go 484 46

  6. codeql-queries codeql-queries Public

    CodeQL queries developed by Trail of Bits

    CodeQL 150 7

Repositories

Showing 10 of 263 repositories
  • anchor-coverage Public

    A wrapper around `anchor test` for computing test coverage

    trailofbits/anchor-coverage’s past year of commit activity
    Rust 14 AGPL-3.0 4 4 2 Updated Mar 10, 2026
  • eth-security-toolbox Public

    A Docker container preconfigured with all of the Trail of Bits Ethereum security tools.

    trailofbits/eth-security-toolbox’s past year of commit activity
    Dockerfile 729 AGPL-3.0 119 0 3 Updated Mar 10, 2026
  • gosentry Public Forked from golang/go

    Security-oriented Go toolchain, focused on state-of-the-art fuzzing capabilities.

    trailofbits/gosentry’s past year of commit activity
    Go 18 BSD-3-Clause 20,013 1 0 Updated Mar 10, 2026
  • necessist Public

    A mutation-based tool for finding bugs in tests

    trailofbits/necessist’s past year of commit activity
    Rust 137 AGPL-3.0 19 17 2 Updated Mar 10, 2026
  • claude-code-devcontainer Public

    Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.

    trailofbits/claude-code-devcontainer’s past year of commit activity
    Shell 511 Apache-2.0 44 1 0 Updated Mar 10, 2026
  • go-fuzz-utils Public
    trailofbits/go-fuzz-utils’s past year of commit activity
    Go 21 AGPL-3.0 3 2 1 Updated Mar 10, 2026
  • publications Public

    Publications from Trail of Bits

    trailofbits/publications’s past year of commit activity
    Python 1,775 CC-BY-SA-4.0 220 1 1 Updated Mar 10, 2026
  • mquire Public

    Zero-dependency Linux memory forensics PoC — leverages kernel-embedded BTF and kallsyms for type-aware memory analysis without external debug info.

    trailofbits/mquire’s past year of commit activity
    Rust 101 Apache-2.0 5 2 0 Updated Mar 10, 2026
  • checksec-anywhere Public

    Analyze binary security features instantly in your browser.

    trailofbits/checksec-anywhere’s past year of commit activity
    Rust 18 Apache-2.0 2 6 2 Updated Mar 10, 2026
  • skills Public

    Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    trailofbits/skills’s past year of commit activity
    Python 3,447 CC-BY-SA-4.0 270 10 6 Updated Mar 9, 2026
View all repositories