Skip to content
@trailofbits

Trail of Bits

More code: binary lifters @lifting-bits, blockchain @crytic, forks @trail-of-forks
README.md
The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. publications publications Public

    Publications from Trail of Bits

    Python 1.5k 184

  2. algo algo Public

    Set up a personal VPN in the cloud

    Jinja 29k 2.3k

  3. fickling fickling Public

    A Python pickling decompiler and static analyzer

    Python 419 48

  4. vscode-weaudit vscode-weaudit Public

    Create code bookmarks and code highlights with a click.

    TypeScript 176 17

  5. semgrep-rules semgrep-rules Public

    Semgrep queries developed by Trail of Bits.

    Go 331 32

  6. codeql-queries codeql-queries Public

    CodeQL queries developed by Trail of Bits

    CodeQL 76 3

Repositories

Showing 10 of 198 repositories
  • publications Public

    Publications from Trail of Bits

    trailofbits/publications’s past year of commit activity
    Python 1,486 CC-BY-SA-4.0 184 4 3 Updated Nov 22, 2024
  • vast Public

    VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or further program abstraction.

    trailofbits/vast’s past year of commit activity
    C++ 397 Apache-2.0 25 161 (20 issues need help) 6 Updated Nov 22, 2024
  • zkdocs Public

    Interactive documentation on zero-knowledge proof systems and related primitives.

    trailofbits/zkdocs’s past year of commit activity
    HTML 146 CC-BY-4.0 23 5 3 Updated Nov 22, 2024
  • sigstore-rekor-types Public

    Python models for Rekor's API types

    trailofbits/sigstore-rekor-types’s past year of commit activity
    Python 4 Apache-2.0 1 0 0 Updated Nov 22, 2024
  • pip-plugin-pep740 Public

    An implementation of a pip plugin that verifies PEP-740 attestations before installing a package, and aborts the installation if verification fails.

    trailofbits/pip-plugin-pep740’s past year of commit activity
    Python 0 Apache-2.0 0 1 1 Updated Nov 22, 2024
  • rfc3161-client Public

    An Opinionated Python RFC3161 Client

    trailofbits/rfc3161-client’s past year of commit activity
    Rust 2 Apache-2.0 0 1 1 Updated Nov 22, 2024
  • cargo-unmaintained Public

    Find unmaintained packages in Rust projects

    trailofbits/cargo-unmaintained’s past year of commit activity
    Rust 66 AGPL-3.0 2 5 8 Updated Nov 22, 2024
  • test-fuzz Public

    To make fuzzing Rust easy

    trailofbits/test-fuzz’s past year of commit activity
    Rust 162 AGPL-3.0 16 11 (1 issue needs help) 3 Updated Nov 22, 2024
  • awesome-ml-security Public
    trailofbits/awesome-ml-security’s past year of commit activity
    95 CC-BY-4.0 12 1 1 Updated Nov 21, 2024
  • polytracker Public

    An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.

    trailofbits/polytracker’s past year of commit activity
    C++ 533 Apache-2.0 46 44 (2 issues need help) 2 Updated Nov 20, 2024
View all repositories