Home Original page

Trail of Bits

The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. Publications from Trail of Bits

    Python 1.8k 220

  2. Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

    Python 3.4k 263

  3. A Python pickling decompiler and static analyzer

    Python 608 68

  4. Create code bookmarks and code highlights with a click.

    TypeScript 230 29

  5. Semgrep queries developed by Trail of Bits.

    Go 484 46

  6. CodeQL queries developed by Trail of Bits

    CodeQL 149 7

Repositories

Showing 10 of 263 repositories

  • trailofbits/cargo-unmaintained’s past year of commit activity

    Rust

    87

    AGPL-3.0

    13 11 2

    Updated Mar 7, 2026

  • mquire Public

    Zero-dependency Linux memory forensics PoC — leverages kernel-embedded BTF and kallsyms for type-aware memory analysis without external debug info.

    trailofbits/mquire’s past year of commit activity

    Rust

    95

    Apache-2.0

    5 2 0

    Updated Mar 7, 2026

  • gosentry Public Forked from golang/go

    Security-oriented Go toolchain, focused on state-of-the-art fuzzing capabilities.

    trailofbits/gosentry’s past year of commit activity

  • dylint Public

    Run Rust lints from dynamic libraries

    trailofbits/dylint’s past year of commit activity

  • vscode-sarif-explorer Public

    SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results

    trailofbits/vscode-sarif-explorer’s past year of commit activity

  • elaborate Public

    Wrappers for standard library functions and types to produce more elaborate error messages

    trailofbits/elaborate’s past year of commit activity

    Rust

    4

    Apache-2.0

    1 2 0

    Updated Mar 6, 2026

  • trailofbits/cookiecutter-python’s past year of commit activity

    Python

    32

    Apache-2.0

    7 0 3

    Updated Mar 6, 2026

  • trailofbits/pylock-attestations’s past year of commit activity

    Python

    5

    Apache-2.0

    1 4 1

    Updated Mar 6, 2026

  • it-depends Public

    A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

    trailofbits/it-depends’s past year of commit activity

    Python

    385

    LGPL-3.0

    22 8 2

    Updated Mar 6, 2026

  • fickling Public

    A Python pickling decompiler and static analyzer

    trailofbits/fickling’s past year of commit activity

    Python

    608

    LGPL-3.0

    68 10 7

    Updated Mar 6, 2026