Members
-
publications ★ PINNED
Publications from Trail of Bits
Python ★ 1.9k 2d agoExplain → -
skills ★ PINNED
Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows
Python ★ 6.1k 5d agoExplain → -
fickling ★ PINNED
A Python pickling decompiler and static analyzer
Python ★ 643 10d agoExplain → -
vscode-weaudit ★ PINNED
Create code bookmarks and code highlights with a click.
TypeScript ★ 236 2mo agoExplain → -
semgrep-rules ★ PINNED
Semgrep queries developed by Trail of Bits.
Go ★ 515 2mo agoExplain → -
codeql-queries ★ PINNED
CodeQL queries developed by Trail of Bits
CodeQL ★ 168 24d agoExplain → -
algo
Set up a personal VPN in the cloud
Python ★ 30k 4d agoExplain → -
manticore ▣
Symbolic execution tool
Python ★ 3.9k 18d agoExplain → -
graphtage
A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV.
Python ★ 2.5k 23d agoExplain → -
claude-code-config
Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits
Shell ★ 2.0k 3mo agoExplain → -
buttercup
Buttercup finds and patches software vulnerabilities
Python ★ 1.6k 18h agoExplain → -
ctf
CTF Field Guide
C ★ 1.4k 1y agoExplain → -
anamorpher
image scaling attacks for multi-modal prompt injection
Python ★ 1.1k 1mo agoExplain → -
pe-parse
Principled, lightweight C/C++ PE parser
C++ ★ 904 12d agoExplain → -
claude-code-devcontainer
Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.
Shell ★ 885 11d agoExplain → -
deepstate
A unit test-like interface for fuzzing and symbolic execution
Python ★ 863 10mo agoExplain → -
eth-security-toolbox
A Docker container preconfigured with all of the Trail of Bits Ethereum security tools.
Dockerfile ★ 736 4mo agoExplain → -
onesixtyone
Fast SNMP Scanner
C ★ 712 10mo agoExplain → -
maat
Open-source symbolic execution framework: https://maat.re
C++ ★ 649 1mo agoExplain → -
dylint
Run Rust lints from dynamic libraries
Rust ★ 626 15h agoExplain → -
winchecksec
Checksec, but for Windows: static detection of security mitigations in executables
C++ ★ 613 1y agoExplain → -
twa
A tiny web auditor with strong opinions.
Shell ★ 594 1y agoExplain → -
polytracker
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
C++ ★ 590 1mo agoExplain → -
cb-multios
DARPA Challenges Sets for Linux, Windows, and macOS
C ★ 540 3y agoExplain → -
multiplier
Code auditing productivity multiplier.
C++ ★ 474 2mo agoExplain → -
skills-curated
Curated, community-vetted Claude Code plugin marketplace
Python ★ 459 1mo agoExplain → -
vast
VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or further program abstraction.
C++ ★ 443 3mo agoExplain → -
trailmark
Build and query a graph database representation of source code
C ★ 437 5d agoExplain → -
it-depends
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.
Python ★ 398 5d agoExplain → -
polyfile
A pure Python cleanroom implementation of libmagic, with instrumented parsing from Kaitai struct and an interactive hex viewer
Python ★ 387 23d agoExplain → -
RpcInvestigator
Exploring RPC interfaces on Windows
C# ★ 363 2y agoExplain → -
krf
A kernelspace syscall interceptor and randomized faulter
C ★ 358 1y agoExplain → -
tubertc ▣
Peer-to-Peer Video Chat for Corporate LANs
JavaScript ★ 355 5y agoExplain → -
CoBRA
Coefficient-Based Reconstruction of Arithmetic — a Mixed Boolean-Arithmetic (MBA) expression simplifier for deobfuscation
C++ ★ 301 10d agoExplain → -
sinter ▣
A user-mode application authorization system for MacOS written in Swift
Swift ★ 299 5y agoExplain → -
SecureEnclaveCrypto ▣
Demonstration library for using the Secure Enclave on iOS
Swift ★ 288 5y agoExplain → -
protofuzz
Google Protocol Buffers message generator
Python ★ 285 12d agoExplain → -
osquery-extensions
osquery extensions by Trail of Bits
C ★ 273 3y agoExplain → -
mishegos
A differential fuzzer for x86 decoders
C++ ★ 268 3d agoExplain → -
circomspect
A static analyzer and linter for the Circom zero-knowledge DSL
Rust ★ 267 2y agoExplain → -
binjascripts
Scripts for Binary Ninja
Python ★ 259 3y agoExplain → -
audit-kubernetes ▣
k8s audit repo
Go ★ 232 7y agoExplain → -
siderophile
Find the ideal fuzz targets in a Rust codebase
Rust ★ 227 3mo agoExplain → -
mcp-context-protector
MCP security wrapper
Python ★ 222 2mo agoExplain → -
PrivacyRaven ▣
Privacy Testing for Deep Learning
Python ★ 214 10mo agoExplain → -
test-fuzz
To make fuzzing Rust easy
Rust ★ 208 3d agoExplain → -
llvm-sanitizer-tutorial ▣
An LLVM sanitizer tutorial
C++ ★ 199 4y agoExplain → -
zkdocs
Interactive documentation on zero-knowledge proof systems and related primitives.
HTML ★ 186 2mo agoExplain → -
flying-sandbox-monster ▣
Sandboxed, Rust-based, Windows Defender Client
Rust ★ 183 9y agoExplain → -
not-going-anywhere
A set of vulnerable Golang programs
Go ★ 178 3y agoExplain → -
BTIGhidra
Binary Type Inference Ghidra Plugin
Java ★ 172 1mo agoExplain → -
awesome-ml-security
No description.
★ 168 5mo agoExplain → -
mquire
Zero-dependency Linux memory forensics, leveraging kernel-embedded BTF and kallsyms for type-aware memory analysis without external debug info.
Rust ★ 165 3d agoExplain → -
uthenticode
A cross-platform library for verifying Authenticode signatures
C++ ★ 162 7mo agoExplain → -
AppJailLauncher ▣
CTF Challenge Framework for Windows 8 and above
C++ ★ 155 5y agoExplain → -
binrec-tob
BinRec: Dynamic Binary Lifting and Recompilation
C++ ★ 147 2y agoExplain → -
necessist
A mutation-based tool for finding bugs in tests
Rust ★ 144 1d agoExplain → -
ctf-challenges
CTF Challenges
Solidity ★ 144 1y agoExplain → -
pasta
Peter's Amazing Syntax Tree Analyzer
C++ ★ 136 2mo agoExplain → -
Honeybee ▣
An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite
C ★ 132 4y agoExplain → -
sienna-locomotive ▣
A user-friendly fuzzing and crash triage tool for Windows
C++ ★ 132 6y agoExplain → -
deptective
Deptective automatically determines the native dependencies required to run any arbitrary program or command.
Python ★ 132 12d agoExplain → -
testing-handbook
Trail of Bits Testing Handbook - appsec.guide
HTML ★ 131 6d agoExplain → -
ObjCGraphView
A graph view plugin for Binary Ninja to visualize Objective-C
Python ★ 130 6y agoExplain → -
ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
C++ ★ 123 20d agoExplain → -
dropkit
A CLI tool for managing DigitalOcean droplets with automated setup, SSH configuration, and lifecycle management.
Python ★ 123 2d agoExplain → -
ruzzy
A coverage-guided fuzzer for pure Ruby code and Ruby C extensions
Ruby ★ 121 16d agoExplain → -
sqlite_wrapper ▣
An easy-to-use, extensible and lightweight C++17 wrapper for SQLite
C++ ★ 119 6y agoExplain → -
gosentry ⑂
Security-oriented Go toolchain, focused on state-of-the-art fuzzing capabilities.
Go ★ 112 2d agoExplain → -
ebpfault
A BPF-based syscall fault injector
C++ ★ 108 13d agoExplain → -
appjaillauncher-rs ▣
AppJailLauncher in Rust
Rust ★ 108 5y agoExplain → -
clang-cfi-showcase ▣
Sample programs that illustrate how to use control flow integrity with the clang compiler
C++ ★ 105 7y agoExplain → -
ios-integrity-validator ▣
Integrity validator for iOS devices
Shell ★ 101 7y agoExplain → -
afc-buttercup ▣
Buttercup CRS as submitted to the AIxCC Final Competition
Python ★ 98 1y agoExplain → -
on-edge ▣
A library for detecting certain improper uses of the "Defer, Panic, and Recover" pattern in Go programs
Go ★ 98 6y agoExplain → -
cargo-unmaintained
Find unmaintained packages in Rust projects
Rust ★ 96 11h agoExplain → -
slither-mcp
MCP server for Slither static analysis of Solidity smart contracts
Python ★ 93 1mo agoExplain → -
blight
A framework for instrumenting build tools
Python ★ 91 3mo agoExplain → -
vendetect
A tool to automatically detect copy+pasted and vendored code between repositories
Python ★ 83 2mo agoExplain → -
Codex-Decompiler
No description.
Python ★ 81 2y agoExplain → -
ManticoreUI
The Manticore User Interface with plugins for Binary Ninja and Ghidra
Python ★ 73 2y agoExplain → -
LeftoverLocalsRelease
The public release of LeftoverLocals code
C++ ★ 73 4mo agoExplain → -
manticore-examples ▣
Example Manticore scripts
Python ★ 69 2y agoExplain → -
ml-file-formats
List of ML file formats
★ 69 2y agoExplain → -
differ
Detecting Inconsistencies in Feature or Function Evaluations of Requirements
Python ★ 69 2y agoExplain → -
reverie
An efficient and generalized implementation of the IKOS-style KKW proof system (https://eprint.iacr.org/2018/475) for arbitrary rings.
Rust ★ 61 2y agoExplain → -
deceptiveidn ▣
Use computer vision to determine if an IDN can be interpreted as something it's not
Python ★ 61 9y agoExplain → -
HVCI-loldrivers-check
No description.
PowerShell ★ 59 2y agoExplain → -
nyc-infosec
Mapping the NYC Infosec Community
CSS ★ 59 1mo agoExplain → -
magnifier ▣
No description.
C++ ★ 58 3y agoExplain → -
eatmynetwork
A small script for running programs with (minimal) network sandboxing
Shell ★ 57 20d agoExplain → -
vscode-sarif-explorer
SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results
TypeScript ★ 52 23d agoExplain → -
cfg-showcase ▣
Sample programs that illustrate how to use Control Flow Guard, VS2015's control flow integrity implementation
C++ ★ 52 9y agoExplain → -
mewt
mewt is a mutation testing framework
C ★ 49 4d agoExplain → -
pajaMAS
Multi-agent system (MAS) hijacking demos
Python ★ 48 2mo agoExplain → -
go-panikint ⑂
It's the Go compiler, but it panics on arithmetic and truncation issues.
Go ★ 47 2mo agoExplain → -
vsix-audit
Security scanner for VS Code extensions
TypeScript ★ 44 12d agoExplain → -
indurative
Easily create authenticated data structures
Haskell ★ 42 3y agoExplain → -
scribe
Local transcription and speaker diarization with pyannote and parakeet
Python ★ 40 9d agoExplain → -
osquery ⑂
SQL powered operating system instrumentation, monitoring, and analytics.
C++ ★ 40 1y agoExplain → -
cookiecutter-python
A cookiecutter template for a best-practices Python project
Python ★ 39 8d agoExplain → -
idac
idac - IDA Pro command line tool for agents and humans
Python ★ 38 2d agoExplain → -
trailofphish ▣
Phishing e-mail repository
Ruby ★ 36 6y agoExplain → -
ebpf-verifier ▣
Harness for the Linux kernel eBPF verifier
C ★ 34 3y agoExplain → -
ebpf-common
Various utilities useful for developers writing BPF tools
C++ ★ 32 3mo agoExplain → -
overtly-malicious-skills
Malicious skills for testing skill scanners
Python ★ 31 1mo agoExplain → -
build-wrap
Help protect against malicious build scripts
Rust ★ 29 16h agoExplain → -
btfparse
A C++ library that parses debug information encoded in BTF format
C++ ★ 29 3y agoExplain → -
WinDbg-JS
No description.
JavaScript ★ 28 2y agoExplain → -
go-mutexasserts
A small library that allows to check if Go mutexes are locked
Go ★ 28 1y agoExplain → -
checksec-anywhere
Analyze binary security features instantly in your browser.
Rust ★ 26 12d agoExplain → -
linuxevents
A sample PoC for container-aware exec events for osquery
C++ ★ 26 2y agoExplain → -
exploits
No description.
C ★ 25 2mo agoExplain → -
aes-gem
AES Galois Extended Mode
Go ★ 25 5mo agoExplain → -
cvedb
CVE querying library and utility that uses a local store syncing directly to the National Vulnerability Database
Python ★ 24 1mo agoExplain → -
dmarc
Ruby DMARC Parser
Ruby ★ 24 2y agoExplain → -
ml-dsa
FIPS-204 (ML-DSA) implementation in Go
Go ★ 23 2d agoExplain → -
trailmix
No description.
Rust ★ 22 1mo agoExplain → -
go-fuzz-utils
No description.
Go ★ 22 3mo agoExplain → -
binary_type_inference
No description.
Rust ★ 22 1y agoExplain → -
itergator ▣
CodeQL library and queries for iterator invalidation
CodeQL ★ 22 4mo agoExplain → -
mpc-learning ▣
Perform multi-party computation on machine learning applications
Python ★ 21 4y agoExplain → -
CompChomper
CompChomper is a framework for measuring how LLMs perform at code completion.
Python ★ 21 1y agoExplain → -
windows-acl
Rust crate to simplify Windows ACL operations
Rust ★ 20 3y agoExplain → -
circuitous
binary->LLVM->circuits
C++ ★ 18 2y agoExplain → -
datasig
Dataset fingerprinting for AIBOM
Python ★ 16 1mo agoExplain → -
anchor-coverage
A wrapper around `anchor test` for computing test coverage
Rust ★ 15 5d agoExplain → -
mrva
A terminal-first approach to CodeQL multi-repo variant analysis
Python ★ 15 1mo agoExplain → -
quantum-zk-proof-poc
Proof-of-concept code for beating Google's ZK proof of quantum cryptanalysis
Python ★ 15 2mo agoExplain → -
codex-config
No description.
Shell ★ 14 20d agoExplain → -
tlslib.py
MVP for updated PEP 543 proposal
Python ★ 14 12d agoExplain → -
lms-go
Leighton-Micali Hash-Based Signatures, for Go
Go ★ 14 1y agoExplain → -
rfc8785.py
A pure-Python implementation of RFC8785 (JSON Canonicalization Scheme)
Python ★ 12 12d agoExplain → -
copilot-prompt-injection-demo ▣
Repository for demonstrating a GitHub Copilot Agent prompt injection exploit. See the associated blog post for details.
HTML ★ 12 11mo agoExplain → -
ruby-sslyze
A Ruby interface to sslyze python utility.
Ruby ★ 12 3y agoExplain → -
decree
Decree Fiat Shamir Library
Rust ★ 12 2y agoExplain → -
go-slh-dsa
FIPS-205 / SLH-DSA (Stateless Hash-Based Digital Signature Algorithm)
Go ★ 11 2d agoExplain → -
irene3
No description.
C++ ★ 10 2mo agoExplain → -
ManticoreUI-Ghidra ▣
ManticoreUI support for Ghidra. This is primarily a prototype repository. See the main ManticoreUI repo (https://github.com/trailofbits/ManticoreUI) for a more complete implementation with Binary Ninja.
Java ★ 10 4y agoExplain → -
cast_checks
A procedural macro to check for invalid casts
Rust ★ 10 15d agoExplain → -
are-we-pep740-yet
Are we PEP 740 yet?
HTML ★ 9 11d agoExplain → -
android-security-tools
Android sandbox and IPC enumeration tools
C++ ★ 9 3y agoExplain → -
empirehacking.nyc
Empire Hacking NYC Meetup
CSS ★ 9 1mo agoExplain → -
v4-core ⑂
🦄 🦄 🦄 🦄 Core smart contracts of Uniswap v4
Solidity ★ 9 2mo agoExplain → -
ZFuzz
No description.
Rust ★ 8 3y agoExplain → -
cargo-line-test ▣
Run tests by the lines they exercise
Rust ★ 8 11d agoExplain → -
elaborate
Wrappers for standard library functions and types to produce more elaborate error messages
Rust ★ 8 11d agoExplain → -
rfc3161-client
An Opinionated Python RFC3161 Client
Rust ★ 7 1h agoExplain → -
muton
Mutation testing framework for TON smart contracts
C ★ 7 12d agoExplain → -
sholva
An experimental Tiny86 decoder and verifier for SIEVE
Rust ★ 7 2y agoExplain → -
signal-auditor
Key Transparency Auditor for Signal
Rust ★ 7 1mo agoExplain → -
opensearch-benchmark
Artifacts related to benchmarking, including documentation, benchmarking harness source code and benchmarking results.
Python ★ 7 10mo agoExplain → -
pylock-attestations
CLI tool to add attestation identities to `pylock.toml` files
Python ★ 6 5d agoExplain → -
aifirst-insecure-agent-labs
No description.
Python ★ 6 2mo agoExplain → -
different
Detect bugs that have already been fixed in one codebase and determine whether the same issues apply to the target codebase.
Python ★ 6 2mo agoExplain → -
angr-type-inference
No description.
Python ★ 6 1y agoExplain → -
it-releases
Public releases of internal IT/Security tools
Shell ★ 6 1y agoExplain → -
nginx-json-kss ▣
Painless JSON logging for Nginx.
C ★ 6 7y agoExplain → -
sigstore-apis
Rust clients for the Fulcio and Rekor APIs
Rust ★ 6 1mo agoExplain → -
sv_circuit ▣
Compile processor circuit to ZK-statement
Rust ★ 5 2y agoExplain → -
pip-plugin-pep740
An implementation of a pip plugin that verifies PEP-740 attestations before installing a package, and aborts the installation if verification fails.
Python ★ 5 13d agoExplain → -
masm-lsp
An LSP server for the Miden assembly language
Rust ★ 4 2mo agoExplain → -
qt-multiplier
Graphical user interface for Multiplier
C++ ★ 4 2mo agoExplain → -
vscode-masm
VS Code extension for the Miden assembly language
TypeScript ★ 4 3mo agoExplain → -
coop
Isolated VM environment for running Claude Code and Codex
Rust ★ 3 19h agoExplain → -
sleepy-pickle-public
AI model compromise through malicious pickle files
Python ★ 3 1mo agoExplain → -
vsix-zoo
VS Code extension malware samples
★ 3 1mo agoExplain → -
debloater-eval
Dataset and resources for evaluating software debloating tools.
C ★ 3 2y agoExplain → -
pypi-transparency
No description.
HTML ★ 2 5d agoExplain → -
micro
✨ Lightweight GitHub Actions workflow for AI vulnerability discovery (under development)
Python ★ 2 13d agoExplain → -
aicov
gcov for what lines of code agents read
Python ★ 2 1mo agoExplain → -
gh-action-adapt-sigstore-pypi
No description.
Python ★ 2 9d agoExplain → -
gcc-asan-container-overflows
GCC 11.1 fork with a hacked implementation of ASan container overflow checks on the containers-annotations branch
C ★ 2 1y agoExplain → -
wycheproof-php
Use the Wycheproof test vectors in PHP software
PHP ★ 2 3mo agoExplain → -
setup-codeql
A GitHub Action for running CodeQL binaries
★ 2 6mo agoExplain → -
codeql ⑂
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
CodeQL ★ 2 2mo agoExplain → -
check-up-to-dateness
Check whether a merge group PR is up to date relative to its base branch
Shell ★ 1 11d agoExplain → -
boulder ⑂
An ACME-based certificate authority, written in Go.
Go ★ 1 1mo agoExplain → -
sigstore-tuf-simple
No description.
Go ★ 1 2d agoExplain → -
tree-sitter-masm
Miden Assembly grammar for tree-sitter
C ★ 1 3mo agoExplain → -
elementhash-spec ▣
ElementMAC and ElementHash technical specification documents
★ 1 2mo agoExplain → -
masm-decompiler
Decompiler for the Miden assembly language
Rust ★ 1 1mo agoExplain → -
dineassign
A tool for making restaurant reservations to maximize diners' preferences
Python ★ 1 5mo agoExplain → -
liboverload
Configurable Rust library that can be injected to processes to replace them with other processes based on input from environment variables or files.
Rust ★ 1 8mo agoExplain → -
masm-lean
Automatic translation of Miden assembly to Lean
Lean ★ 1 3mo agoExplain → -
checksec.rs ⑂
Fast multi-platform (ELF/PE/MachO) binary checksec written in Rust.
Rust ★ 1 1y agoExplain → -
background-agents ⑂
An open-source background agents coding system
★ 1 4mo agoExplain → -
binaryninja-finder
No description.
Python ★ 1 4mo agoExplain → -
bt-log ⑂
Binary transparency log to make tampered artifact distribution auditable
Go ★ 0 5d agoExplain → -
restaurant-tester
No description.
Python ★ 0 16d agoExplain → -
rekor-watch
No description.
Go ★ 0 5d agoExplain → -
ptp-mldsa-native ⑂
Patches for pq-code-package/mldsa-native
★ 0 16d agoExplain → -
tamarin-prover ⑂
Main source code repository of the Tamarin prover for security protocol verification.
★ 0 3d agoExplain → -
go-jose ⑂
An implementation of JOSE standards (JWE, JWS, JWT) in Go
★ 0 17d agoExplain → -
pkcs11key ⑂
An interface to PKCS#11 devices that satisfies the crypto.Signer interface
★ 0 3mo agoExplain → -
borp ⑂
Boulder's version of go-gorp/gorp
★ 0 1mo agoExplain → -
python-asn1-benchmark
No description.
Python ★ 0 1mo agoExplain → -
hackerone-mcp
No description.
Python ★ 0 22d agoExplain → -
scroll-fv
Formal verification of Scroll's zkvm-prover circuits in Lean 4 (Aeneas + Charon extraction, openvm-fv-derived RV32IM semantics)
Lean ★ 0 1mo agoExplain → -
OCP-Security-SAFE ⑂
Standardization of security reviews for datacenter products
Python ★ 0 2mo agoExplain →
No repos match these filters.