Projects in Awesome Lists by trailofbits
A curated list of projects in awesome lists by trailofbits .
https://github.com/trailofbits/algo
Set up a personal VPN in the cloud
ansible encryption ikev2 ipsec security ssh-tunnel strongswan vpn vpn-client vpn-server wireguard
Last synced: 08 May 2025
https://github.com/trailofbits/manticore
Symbolic execution tool
binary-analysis blockchain emulation ethereum program-analysis python security smt symbolic-execution testing z3
Last synced: 13 May 2025
https://github.com/trailofbits/graphtage
A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV.
command-line-tool diff graph-algorithms hacktoberfest hacktoberfest2021 library python utility
Last synced: 12 Apr 2025
https://github.com/trailofbits/publications
Publications from Trail of Bits
academic-papers conference-presentations security-reviews
Last synced: 14 May 2025
https://github.com/trailofbits/pe-parse
Principled, lightweight C/C++ PE parser
hacktoberfest pe-format portable-executable
Last synced: 14 May 2025
https://github.com/trailofbits/deepstate
A unit test-like interface for fuzzing and symbolic execution
fuzzing property-based-testing symbolic-execution testing-framework testing-tools unit-testing
Last synced: 15 May 2025
https://github.com/trailofbits/eth-security-toolbox
A Docker container preconfigured with all of the Trail of Bits Ethereum security tools.
Last synced: 27 Feb 2026
https://github.com/trailofbits/maat
Open-source symbolic execution framework: https://maat.re
Last synced: 15 May 2025
https://github.com/trailofbits/twa
A tiny web auditor with strong opinions.
auditing hacktoberfest security web-security
Last synced: 15 May 2025
https://github.com/trailofbits/winchecksec
Checksec, but for Windows: static detection of security mitigations in executables
hacktoberfest mitigations security windows
Last synced: 15 May 2025
https://github.com/trailofbits/polytracker
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
dataflow-analysis instrumentation llvm taint-analysis taint-tracking
Last synced: 14 May 2025
https://github.com/trailofbits/fickling
A Python pickling decompiler and static analyzer
machine-learning python security
Last synced: 04 Mar 2026
https://github.com/trailofbits/cb-multios
DARPA Challenges Sets for Linux, Windows, and macOS
decree test-suite vulnerabilities
Last synced: 04 Apr 2025
https://github.com/trailofbits/multiplier
Code auditing productivity multiplier.
Last synced: 15 May 2025
https://github.com/trailofbits/dylint
Run Rust lints from dynamic libraries
Last synced: 14 May 2025
https://github.com/trailofbits/semgrep-rules
Semgrep queries developed by Trail of Bits.
Last synced: 08 Oct 2025
https://github.com/trailofbits/tubertc
Peer-to-Peer Video Chat for Corporate LANs
video-chat video-conferencing web-rtc
Last synced: 03 Apr 2025
https://github.com/trailofbits/krf
A kernelspace syscall interceptor and randomized faulter
fault-injection freebsd hacktoberfest linux-kernel syscalls
Last synced: 16 May 2025
https://github.com/trailofbits/it-depends
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.
dependency-analysis dependency-graph hacktoberfest hacktoberfest2021 sbom sbom-generator vulnerability-scanner
Last synced: 15 May 2025
https://github.com/trailofbits/polyfile
A pure Python cleanroom implementation of libmagic, with instrumented parsing from Kaitai struct and an interactive hex viewer
file-format-detection file-formats libmagic polyglots python
Last synced: 12 Feb 2026
https://github.com/trailofbits/vast
VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or further program abstraction.
c clang compiler-frontend compilers cpp intermediate-representation mlir program-analysis
Last synced: 05 Apr 2025
https://github.com/trailofbits/RpcInvestigator
Exploring RPC interfaces on Windows
Last synced: 11 Jan 2026
https://github.com/trailofbits/rpcinvestigator
Exploring RPC interfaces on Windows
Last synced: 06 Apr 2025
https://github.com/trailofbits/SecureEnclaveCrypto
Demonstration library for using the Secure Enclave on iOS
apple crypto ios keychain keypair macos secure-enclave-processor security swift
Last synced: 02 Aug 2025
https://github.com/trailofbits/protofuzz
Google Protocol Buffers message generator
fuzzer protobuf protocol-buffers
Last synced: 13 Apr 2025
https://github.com/trailofbits/osquery-extensions
osquery extensions by Trail of Bits
intrusion-detection monitoring osquery security sql
Last synced: 27 Oct 2025
https://github.com/trailofbits/mishegos
A differential fuzzer for x86 decoders
Last synced: 16 May 2025
https://github.com/trailofbits/circomspect
A static analyzer and linter for the Circom zero-knowledge DSL
Last synced: 12 Apr 2025
https://github.com/trailofbits/audit-kubernetes
k8s audit repo
k8s kubernetes security-assesment
Last synced: 07 Oct 2025
https://github.com/trailofbits/siderophile
Find the ideal fuzz targets in a Rust codebase
fuzzing program-analysis rust security-testing
Last synced: 06 Oct 2025
https://github.com/trailofbits/skills
Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows
Last synced: 21 Jan 2026
https://github.com/trailofbits/privacyraven
Privacy Testing for Deep Learning
deep-learning machine-learning membership-inference model-extraction model-inversion privacy privacy-enhancing-technologies privacy-preserving-machine-learning python
Last synced: 20 Aug 2025
https://github.com/trailofbits/PrivacyRaven
Privacy Testing for Deep Learning
deep-learning machine-learning membership-inference model-extraction model-inversion privacy privacy-enhancing-technologies privacy-preserving-machine-learning python
Last synced: 27 Mar 2025
https://github.com/trailofbits/not-going-anywhere
A set of vulnerable Golang programs
Last synced: 20 Aug 2025
https://github.com/trailofbits/vscode-weaudit
Create code bookmarks and code highlights with a click.
Last synced: 03 Apr 2025
https://github.com/trailofbits/zkdocs
Interactive documentation on zero-knowledge proof systems and related primitives.
Last synced: 26 Jan 2026
https://github.com/trailofbits/uthenticode
A cross-platform library for verifying Authenticode signatures
authenticode code-signing cpp cryptography hacktoberfest
Last synced: 05 Apr 2025
https://github.com/trailofbits/btighidra
Binary Type Inference Ghidra Plugin
Last synced: 05 Jul 2025
https://github.com/trailofbits/codeql-queries
CodeQL queries developed by Trail of Bits
Last synced: 27 Jan 2026
https://github.com/trailofbits/objcgraphview
A graph view plugin for Binary Ninja to visualize Objective-C
binary-ninja objective-c plugin reverse-engineering ui
Last synced: 25 Jun 2025
https://github.com/trailofbits/binrec-tob
BinRec: Dynamic Binary Lifting and Recompilation
Last synced: 15 Apr 2025
https://github.com/trailofbits/pasta
Peter's Amazing Syntax Tree Analyzer
ast clang compiler llvm static-analysis
Last synced: 16 Apr 2025
https://github.com/trailofbits/ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
bpf ebpf llvm monitoring security tracepoints tracing
Last synced: 15 Apr 2025
https://github.com/trailofbits/ruzzy
A coverage-guided fuzzer for pure Ruby code and Ruby C extensions
fuzzer fuzzing libfuzzer ruby ruby-extension ruby-gem
Last synced: 07 Mar 2026
https://github.com/trailofbits/appjaillauncher-rs
AppJailLauncher in Rust
appcontainer rust sandbox windows
Last synced: 16 May 2025
https://github.com/trailofbits/ebpfault
A BPF-based syscall fault injector
bpf debugging ebpf fault-injection llvm
Last synced: 15 Apr 2025
https://github.com/trailofbits/ios-integrity-validator
Integrity validator for iOS devices
Last synced: 15 May 2025
https://github.com/trailofbits/necessist
A mutation-based tool for finding bugs in tests
Last synced: 06 Apr 2025
https://github.com/trailofbits/blight
A framework for instrumenting build tools
build-system build-tool compiler-wrapper hacktoberfest instrumentation
Last synced: 04 Apr 2025
https://github.com/trailofbits/algo-ng
Experimental version of Algo built on Terraform
Last synced: 07 Apr 2025
https://github.com/trailofbits/vendetect
A tool to automatically detect copy+pasted and vendored code between repositories
plagiarism-detection program-analysis sbom sbom-tool
Last synced: 14 Dec 2025
https://github.com/trailofbits/manticoreui
The Manticore User Interface with plugins for Binary Ninja and Ghidra
Last synced: 02 Jul 2025
https://github.com/trailofbits/ManticoreUI
The Manticore User Interface with plugins for Binary Ninja and Ghidra
Last synced: 12 Jul 2025
https://github.com/trailofbits/LeftoverLocalsRelease
The public release of LeftoverLocals code
Last synced: 19 Jun 2026
https://github.com/trailofbits/testing-handbook
Trail of Bits Testing Handbook
Last synced: 15 Apr 2025
https://github.com/trailofbits/manticore-examples
Example Manticore scripts
Last synced: 30 Aug 2025
https://github.com/trailofbits/differ
Detecting Inconsistencies in Feature or Function Evaluations of Requirements
Last synced: 04 Sep 2025
https://github.com/trailofbits/leftoverlocalsrelease
The public release of LeftoverLocals code
Last synced: 15 Apr 2025
https://github.com/trailofbits/reverie
An efficient and generalized implementation of the IKOS-style KKW proof system (https://eprint.iacr.org/2018/475) for arbitrary rings.
blake3 crypto cryptography nizk rust-lang zk zkproof-prover
Last synced: 15 Apr 2025
https://github.com/trailofbits/nyc-infosec
Mapping the NYC Infosec Community
calendar conference meetup nyc university
Last synced: 04 Oct 2025
https://github.com/trailofbits/eatmynetwork
A small script for running programs with (minimal) network sandboxing
linux macos resilience-testing sandbox
Last synced: 15 Apr 2025
https://github.com/trailofbits/cargo-unmaintained
Find unmaintained packages in Rust projects
Last synced: 10 Apr 2025
https://github.com/trailofbits/indurative
Easily create authenticated data structures
cryptography haskell haskell-library trustless
Last synced: 15 Apr 2025
https://github.com/trailofbits/macroni
C and C++ compiler frontend using PASTA to parse code, and VAST to represent the code as MLIR.
Last synced: 20 Oct 2025
https://github.com/trailofbits/spf-query
Ruby SPF Parser
dns email sender-policy-framework spf
Last synced: 18 Sep 2025
https://github.com/trailofbits/build-wrap
Help protect against malicious build scripts
Last synced: 26 Apr 2026
https://github.com/trailofbits/btfparse
A C++ library that parses debug information encoded in BTF format
Last synced: 15 Apr 2025
https://github.com/trailofbits/linuxevents
A sample PoC for container-aware exec events for osquery
bpf ebpf linux monitoring runtime-code-generation tracing
Last synced: 15 Apr 2025
https://github.com/trailofbits/go-mutexasserts
A small library that allows to check if Go mutexes are locked
Last synced: 15 Apr 2025
https://github.com/trailofbits/cvedb
CVE querying library and utility that uses a local store syncing directly to the National Vulnerability Database
Last synced: 02 Aug 2025
https://github.com/trailofbits/vscode-sarif-explorer
SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results
sarif static-analysis vscode-extension
Last synced: 15 Apr 2025
https://github.com/trailofbits/itergator
CodeQL library and queries for iterator invalidation
Last synced: 27 Jan 2026
https://github.com/trailofbits/windows-acl
Rust crate to simplify Windows ACL operations
Last synced: 26 Feb 2026
https://github.com/trailofbits/bpf_tutorials_code
This repository contains the companion code from the "All your tracing are belong to BPF" blog posts
Last synced: 15 Apr 2025
https://github.com/trailofbits/aes-gem
AES Galois Extended Mode
aes aes-gem cryptography gcm nonce-extension
Last synced: 10 Feb 2026
https://github.com/trailofbits/cookiecutter-python
A cookiecutter template for a best-practices Python project
Last synced: 15 Apr 2025
https://github.com/trailofbits/ruby-sslyze
A Ruby interface to sslyze python utility.
Last synced: 02 Mar 2026
https://github.com/trailofbits/pegoat
A collection of Windows binary builds containing different security mitigations
Last synced: 27 Feb 2026