Skip to content
@trailofbits

Trail of Bits

More code: binary lifters @lifting-bits, blockchain @crytic, forks @trail-of-forks
README.md
The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. publications publications Public

    Publications from Trail of Bits

    Python 1.8k 223

  2. skills skills Public

    Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    Python 3.7k 296

  3. fickling fickling Public

    A Python pickling decompiler and static analyzer

    Python 610 69

  4. vscode-weaudit vscode-weaudit Public

    Create code bookmarks and code highlights with a click.

    TypeScript 230 29

  5. semgrep-rules semgrep-rules Public

    Semgrep queries developed by Trail of Bits.

    Go 484 49

  6. codeql-queries codeql-queries Public

    CodeQL queries developed by Trail of Bits

    CodeQL 152 7

Repositories

Showing 10 of 266 repositories
  • fickling Public

    A Python pickling decompiler and static analyzer

    trailofbits/fickling’s past year of commit activity
    Python 610 LGPL-3.0 69 10 10 Updated Mar 19, 2026
  • rfc3161-client Public

    An Opinionated Python RFC3161 Client

    trailofbits/rfc3161-client’s past year of commit activity
    Rust 6 Apache-2.0 4 2 0 Updated Mar 19, 2026
  • mishegos Public

    A differential fuzzer for x86 decoders

    trailofbits/mishegos’s past year of commit activity
    C++ 265 Apache-2.0 30 9 (2 issues need help) 3 Updated Mar 19, 2026
  • masm-lean Public

    Automatic translation of Miden assembly to Lean

    trailofbits/masm-lean’s past year of commit activity
    Lean 1 MIT 0 0 1 Updated Mar 19, 2026
  • skills Public

    Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    trailofbits/skills’s past year of commit activity
    Python 3,681 CC-BY-SA-4.0 296 12 7 Updated Mar 19, 2026
  • vendetect Public

    A tool to automatically detect copy+pasted and vendored code between repositories

    trailofbits/vendetect’s past year of commit activity
    Python 75 AGPL-3.0 6 2 4 Updated Mar 19, 2026
  • it-depends Public

    A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

    trailofbits/it-depends’s past year of commit activity
    Python 386 LGPL-3.0 22 8 3 Updated Mar 19, 2026
  • test-fuzz Public

    To make fuzzing Rust easy

    trailofbits/test-fuzz’s past year of commit activity
    Rust 199 AGPL-3.0 25 10 (1 issue needs help) 4 Updated Mar 19, 2026
  • codeql Public Forked from github/codeql

    CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

    trailofbits/codeql’s past year of commit activity
    CodeQL 1 MIT 2,199 0 4 Updated Mar 19, 2026
  • vscode-sarif-explorer Public

    SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results

    trailofbits/vscode-sarif-explorer’s past year of commit activity
    TypeScript 47 GPL-3.0 9 6 (1 issue needs help) 4 Updated Mar 18, 2026
View all repositories

Most used topics

Loading…