trailofbits/skills external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

trailofbits/skills

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/trailofbits/skills)

Close

trailofbits / skillsView on GitHubMore

• External links
• Readme badge

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

☆3,153Mar 4, 2026Updated this week

Alternatives and similar repositories for skills

Users that are interested in skills are comparing it to the libraries listed below

• DataDog / IDE-SHEPHERD-extension

  View on GitHub
  A VS Code/Cursor extension capable of performing realtime security monitoring from inside the IDE
  ☆76Updated this week
• N4kedTurtle / SharpTeamsDump

  View on GitHub
  Dump Teams conversations
  ☆18Jun 9, 2021Updated 4 years ago
• alt-research / SolidityGuard

  View on GitHub
  Solidity/EVM smart contract security auditor — 104 vulnerability patterns, 8 tools, 100% CTF + EVMBench benchmark (120/120)
  ☆78Mar 2, 2026Updated last week
• gadievron / raptor

  View on GitHub
  Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents,…
  ☆1,442Updated this week
• gadievron / exploitation-validator

  View on GitHub
  A prompt-based pipeline for finding, validating, and proving vulnerabilities using LLM sub-agents.
  ☆41Feb 22, 2026Updated 2 weeks ago
• trailofbits / claude-code-config

  View on GitHub
  Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits
  ☆1,485Feb 25, 2026Updated last week
• assetnote / hopgoblin

  View on GitHub
  Adobe Experience Manager (AEM) hacking toolkit
  ☆107Sep 26, 2025Updated 5 months ago
• noperator / slice

  View on GitHub
  SAST + LLM Interprocedural Context Extractor
  ☆189Oct 28, 2025Updated 4 months ago
• trailofbits / skills-curated

  View on GitHub
  Curated, community-vetted Claude Code plugin marketplace
  ☆245Feb 23, 2026Updated 2 weeks ago
• a16z / halmos

  View on GitHub
  A symbolic testing tool for EVM smart contracts
  ☆976Aug 6, 2025Updated 7 months ago
• SeanHeelan / anamnesis-release

  View on GitHub
  Automatic Exploit Generation with LLMs
  ☆572Jan 30, 2026Updated last month
• FuzzingLabs / fuzzforge_ai

  View on GitHub
  AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with int…
  ☆758Updated this week
• theori-io / aixcc-afc-archive

  View on GitHub
  Public Source code Release of Theori's AIxCC AFC Submission
  ☆241Aug 5, 2025Updated 7 months ago
• trailofbits / claude-code-devcontainer

  View on GitHub
  Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.
  ☆493Updated this week
• NVIDIA / garak

  View on GitHub
  the LLM vulnerability scanner
  ☆7,164Updated this week
• trailofbits / dropkit

  View on GitHub
  A CLI tool for managing DigitalOcean droplets with automated setup, SSH configuration, and lifecycle management.
  ☆82Feb 25, 2026Updated last week
• brandonscholet / HashKitty

  View on GitHub
  HashKitty is a user-friendly cross-platform Python wrapper for Hashcat designed to provide an easy password cracking experience for both …
  ☆42Jul 18, 2024Updated last year
• protectai / vulnhuntr

  View on GitHub
  Zero shot vulnerability discovery using LLMs
  ☆2,511Feb 6, 2025Updated last year
• trailofbits / buttercup

  View on GitHub
  Buttercup finds and patches software vulnerabilities
  ☆1,520Mar 3, 2026Updated last week
• sayan011 / Immunefi-bug-bounty-writeups-list

  View on GitHub
  curation of all(most) immunefi bug bounty writeups I could find(till now)
  ☆1,112Jan 21, 2026Updated last month
• whokilleddb / sinister-vsix

  View on GitHub
  Blog/Journal on how to backdoor VSCode extensions
  ☆77Feb 24, 2026Updated last week
• zacdcook / claude-code-semantic-memory

  View on GitHub
  Persistent semantic memory system for Claude Code
  ☆73Jan 29, 2026Updated last month
• infosec-us-team / onboardme

  View on GitHub
  The fastest way to understand complex Solidity smart contracts.
  ☆147Mar 2, 2026Updated last week
• SunWeb3Sec / DeFiHackLabs

  View on GitHub
  Reproduce DeFi hacked incidents using Foundry.
  ☆6,443Feb 18, 2026Updated 2 weeks ago
• crytic / building-secure-contracts

  View on GitHub
  Guidelines and training material to write secure smart contracts
  ☆2,460Updated this week
• Vectorized / solady

  View on GitHub
  Optimized Solidity snippets.
  ☆3,279Dec 30, 2025Updated 2 months ago
• semgrep / skills

  View on GitHub
  A collection of skills for AI coding agents from Semgrep
  ☆136Mar 2, 2026Updated last week
• aliasrobotics / cai

  View on GitHub
  Cybersecurity AI (CAI), the framework for AI Security
  ☆7,349Jan 30, 2026Updated last month
• wardgate / wardgate

  View on GitHub
  Security gateway for AI agents - credential-isolated API proxying and policy-gated remote execution (conclaves). Reduce the blast radius!
  ☆109Feb 27, 2026Updated last week
• crytic / slither

  View on GitHub
  Static Analyzer for Solidity and Vyper
  ☆6,158Updated this week
• joernio / joern

  View on GitHub
  Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…
  ☆2,972Updated this week
• hotnops / ECUtilities

  View on GitHub
  Powershell and python utilties for Entra Connect
  ☆29Jun 5, 2025Updated 9 months ago
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆484Nov 12, 2025Updated 3 months ago
• EveryInc / compound-engineering-plugin

  View on GitHub
  Official Claude Code compound engineering plugin
  ☆10,095Updated this week
• orcasecurity-research / AIGoat

  View on GitHub
  AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.
  ☆267Sep 16, 2025Updated 5 months ago
• leesoh / np

  View on GitHub
  A tool to parse, deduplicate, and query multiple port scans.
  ☆57Aug 11, 2023Updated 2 years ago
• owasp-noir / noir

  View on GitHub
  Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.
  ☆1,115Updated this week
• assetnote / newtowner

  View on GitHub
  Abuse trust-boundaries to bypass firewalls and network controls
  ☆391Jul 24, 2025Updated 7 months ago
• 0xqtpie / pm-indexer

  View on GitHub
  prediction market indexer with semantic search
  ☆35Jan 27, 2026Updated last month