Vibe Index
trailofbits

trailofbits/skills

58 resources in this repository

GitHub
🎯55πŸ”Œ3
2,350

🎯Skills55

🎯ask-questions-if-underspecified🎯Skill

ask-questions-if-underspecified skill from trailofbits/skills

ask-questions-if-underspecified
🎯semgrep🎯Skill

semgrep skill from trailofbits/skills

semgrep
🎯differential-review🎯Skill

differential-review skill from trailofbits/skills

differential-review
🎯secure-workflow-guide🎯Skill

secure-workflow-guide skill from trailofbits/skills

secure-workflow-guide
🎯sharp-edges🎯Skill

sharp-edges skill from trailofbits/skills

sharp-edges
🎯property-based-testing🎯Skill

property-based-testing skill from trailofbits/skills

property-based-testing
🎯codeql🎯Skill

codeql skill from trailofbits/skills

codeql
🎯variant-analysis🎯Skill

variant-analysis skill from trailofbits/skills

variant-analysis
🎯guidelines-advisor🎯Skill

guidelines-advisor skill from trailofbits/skills

guidelines-advisor
🎯token-integration-analyzer🎯Skill

token-integration-analyzer skill from trailofbits/skills

token-integration-analyzer
🎯sarif-parsing🎯Skill

Parses SARIF (Static Analysis Results Interchange Format) files to process outputs from security scanners like CodeQL, Semgrep, and other static analysis tools

sarif-parsing
🎯audit-context-building🎯Skill

audit-context-building skill from trailofbits/skills

audit-context-building
🎯fuzzing-obstacles🎯Skill

Identifies and resolves common obstacles in software fuzzing campaigns, improving coverage and vulnerability detection with advanced strategies

fuzzing-obstacles
🎯spec-to-code-compliance🎯Skill

spec-to-code-compliance skill from trailofbits/skills

spec-to-code-compliance
🎯solana-vulnerability-scanner🎯Skill

solana-vulnerability-scanner skill from trailofbits/skills

solana-vulnerability-scanner
🎯audit-prep-assistant🎯Skill

audit-prep-assistant skill from trailofbits/skills

audit-prep-assistant
🎯code-maturity-assessor🎯Skill

code-maturity-assessor skill from trailofbits/skills

code-maturity-assessor
🎯coverage-analysis🎯Skill

coverage-analysis skill from trailofbits/skills

coverage-analysis
🎯entry-point-analyzer🎯Skill

entry-point-analyzer skill from trailofbits/skills

entry-point-analyzer
🎯semgrep-rule-creator🎯Skill

semgrep-rule-creator skill from trailofbits/skills

semgrep-rule-creator
🎯constant-time-analysis🎯Skill

constant-time-analysis skill from trailofbits/skills

constant-time-analysis
🎯cargo-fuzz🎯Skill

cargo-fuzz skill from trailofbits/skills

cargo-fuzz
🎯address-sanitizer🎯Skill

address-sanitizer skill from trailofbits/skills

address-sanitizer
🎯fuzzing-dictionary🎯Skill

fuzzing-dictionary skill from trailofbits/skills

fuzzing-dictionary
🎯harness-writing🎯Skill

harness-writing skill from trailofbits/skills

harness-writing
🎯testing-handbook-generator🎯Skill

Generates comprehensive software testing handbooks covering test cases, scenarios, and best practices for development and QA teams

testing-handbook-generator
🎯cosmos-vulnerability-scanner🎯Skill

Scans Cosmos blockchain smart contracts for security vulnerabilities using static analysis and security best practice checks

cosmos-vulnerability-scanner
🎯constant-time-testing🎯Skill

Tests cryptographic code for timing vulnerabilities that could expose sensitive data through execution time variations

constant-time-testing
🎯algorand-vulnerability-scanner🎯Skill

Scans Algorand blockchain smart contracts for security vulnerabilities and provides detailed remediation insights

algorand-vulnerability-scanner
🎯fix-review🎯Skill

fix-review skill from trailofbits/skills

fix-review
🎯libfuzzer🎯Skill

Provides LibFuzzer patterns for coverage-guided fuzzing of C/C++ libraries, including harness writing, corpus management, and crash analysis

libfuzzer
🎯ossfuzz🎯Skill

Integrates projects with Google OSS-Fuzz for continuous fuzzing of open source software, covering configuration and integration best practices

ossfuzz
🎯atheris🎯Skill

Provides Atheris patterns for Python fuzzing using LibFuzzer-based coverage-guided testing to discover bugs and vulnerabilities

atheris
🎯interpreting-culture-index🎯Skill

Interprets Culture Index assessment results to provide insights on team dynamics, work patterns, and leadership style compatibility

interpreting-culture-index
🎯substrate-vulnerability-scanner🎯Skill

Scans Substrate blockchain runtime code for security vulnerabilities with static analysis and detailed security reporting

substrate-vulnerability-scanner
🎯aflpp🎯Skill

Provides AFL++ patterns for advanced coverage-guided fuzzing including custom mutators, persistent mode, and crash deduplication

aflpp
🎯libafl🎯Skill

Provides LibAFL patterns for building custom fuzzers in Rust with coverage-guided feedback, hybrid fuzzing, and multi-architecture support

libafl
🎯dwarf-expert🎯Skill

dwarf-expert skill from trailofbits/skills

dwarf-expert
🎯wycheproof🎯Skill

Tests cryptographic implementations against Google Wycheproof test vectors to identify weaknesses in crypto libraries and protocols

wycheproof
🎯ton-vulnerability-scanner🎯Skill

Scans TON blockchain smart contracts for security vulnerabilities using static analysis techniques

ton-vulnerability-scanner
🎯cairo-vulnerability-scanner🎯Skill

Scans Cairo smart contracts on Starknet for security vulnerabilities with automated static analysis and detailed reporting

cairo-vulnerability-scanner
🎯ruzzy🎯Skill

Provides Ruzzy patterns for Ruby fuzzing with coverage-guided testing to discover vulnerabilities in Ruby C extensions

ruzzy
🎯firebase-apk-scanner🎯Skill

firebase-apk-scanner skill from trailofbits/skills

firebase-apk-scanner
🎯semgrep-rule-variant-creator🎯Skill

semgrep-rule-variant-creator skill from trailofbits/skills

semgrep-rule-variant-creator
🎯modern-python🎯Skill

modern-python skill from trailofbits/skills

modern-python
🎯insecure-defaults🎯Skill

insecure-defaults skill from trailofbits/skills

insecure-defaults
🎯burpsuite-project-parser🎯Skill

burpsuite-project-parser skill from trailofbits/skills

burpsuite-project-parser
🎯yara-rule-authoring🎯Skill

Assists security researchers in creating, refining, and validating YARA rules for malware detection and threat hunting.

yara-rule-authoring
🎯claude-in-chrome-troubleshooting🎯Skill

claude-in-chrome-troubleshooting skill from trailofbits/skills

claude-in-chrome-troubleshooting
🎯second-opinion🎯Skill

Provides expert code review and alternative implementation suggestions to improve code quality, performance, and maintainability

second-opinion
🎯devcontainer-setup🎯Skill

Sets up reproducible development environments using Visual Studio Code Dev Containers with pre-configured toolchains and dependencies

devcontainer-setup
🎯debug-buttercup🎯Skill

Automates systematic debugging of Python code by identifying potential errors, performance bottlenecks, and memory leaks with intelligent analysis.

debug-buttercup
🎯burp-suite🎯Skill

burp-suite skill from trailofbits/skills

burp-suite
🎯git-cleanup🎯Skill

Automates Git repository maintenance by removing stale branches, cleaning up local refs, and optimizing repository size and performance

git-cleanup
🎯using-gh-cli🎯Skill

Streamline GitHub workflow automation, repository management, and CLI-based interactions with powerful GitHub CLI commands and scripting techniques

using-gh-cli

πŸ”ŒPlugins3

πŸ”Œculture-indexπŸ”ŒPlugin

Interprets Culture Index survey results for individuals and teams

πŸ”Œsemgrep-rule-creatorπŸ”ŒPlugin

Create custom Semgrep rules for detecting bug patterns and security vulnerabilities

πŸ”Œtesting-handbook-skillsπŸ”ŒPlugin

Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)

Back to Home