Skip to content
@trailofbits

Trail of Bits

More code: binary lifters @lifting-bits, blockchain @crytic, forks @trail-of-forks
README.md
The Trail of Bits logo

Since 2012, Trail of Bits has helped secure some of the world's most targeted organizations and devices.

We combine high-end security research with a real-world attacker mentality to reduce risk and fortify code.

Some of our work:


Pinned Loading

  1. publications publications Public

    Publications from Trail of Bits

    Python 1.7k 210

  2. algo algo Public

    Set up a personal VPN in the cloud

    Python 30.2k 2.4k

  3. fickling fickling Public

    A Python pickling decompiler and static analyzer

    Python 587 63

  4. vscode-weaudit vscode-weaudit Public

    Create code bookmarks and code highlights with a click.

    TypeScript 220 26

  5. semgrep-rules semgrep-rules Public

    Semgrep queries developed by Trail of Bits.

    Go 455 46

  6. codeql-queries codeql-queries Public

    CodeQL queries developed by Trail of Bits

    CodeQL 136 7

Repositories

Showing 10 of 247 repositories
  • algo Public

    Set up a personal VPN in the cloud

    trailofbits/algo’s past year of commit activity
    Python 30,160 AGPL-3.0 2,354 65 4 Updated Dec 10, 2025
  • dylint Public

    Run Rust lints from dynamic libraries

    trailofbits/dylint’s past year of commit activity
    Rust 516 Apache-2.0 48 42 (1 issue needs help) 12 Updated Dec 10, 2025
  • cookiecutter-python Public

    A cookiecutter template for a best-practices Python project

    trailofbits/cookiecutter-python’s past year of commit activity
    Python 21 Apache-2.0 7 0 1 Updated Dec 9, 2025
  • anchor-coverage Public

    A wrapper around `anchor test` for computing test coverage

    trailofbits/anchor-coverage’s past year of commit activity
    Rust 12 AGPL-3.0 3 3 2 Updated Dec 10, 2025
  • pylock-attestations Public

    CLI tool to add attestation identities to `pylock.toml` files

    trailofbits/pylock-attestations’s past year of commit activity
    Python 5 Apache-2.0 1 4 1 Updated Dec 10, 2025
  • it-depends Public

    A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

    trailofbits/it-depends’s past year of commit activity
    Python 378 LGPL-3.0 22 23 3 Updated Dec 9, 2025
  • rfc3161-client Public

    An Opinionated Python RFC3161 Client

    trailofbits/rfc3161-client’s past year of commit activity
    Rust 2 Apache-2.0 4 2 0 Updated Dec 9, 2025
  • vendetect Public

    A tool to automatically detect copy+pasted and vendored code between repositories

    trailofbits/vendetect’s past year of commit activity
    Python 73 AGPL-3.0 6 2 3 Updated Dec 9, 2025
  • necessist Public

    A mutation-based tool for finding bugs in tests

    trailofbits/necessist’s past year of commit activity
    Rust 128 AGPL-3.0 18 17 0 Updated Dec 9, 2025
  • go-panikint Public Forked from golang/go

    It's the Go compiler, but it panics on arithmetic and truncation issues.

    trailofbits/go-panikint’s past year of commit activity
    Go 8 BSD-3-Clause 19,600 1 0 Updated Dec 8, 2025
View all repositories