culture-index
🔌Plugintrailofbits/skills
|A Claude Code plugin marketplace from Trail of Bits providing skills for AI-assisted security analysis, testing, and development workflows.
Overview
Culture Index is a plugin from the Trail of Bits Skills Marketplace, a Claude Code plugin marketplace providing skills for AI-assisted security analysis, testing, and development workflows. Trail of Bits, a leading security research firm, offers specialized plugins spanning smart contract security, code auditing, malware analysis, verification, and secure development practices.
Key Features
- Security-Focused Plugin Ecosystem - Part of a comprehensive security marketplace with plugins for smart contract auditing, code auditing, malware analysis, and formal verification
- Smart Contract Security - Includes vulnerability scanners for 6 blockchains, entry point analyzers for security auditing, and building secure contracts toolkit
- Code Auditing Suite - Offers differential review, Semgrep rule creation and porting, static analysis with CodeQL, insecure defaults detection, sharp edges identification, and variant analysis
- Verification & Testing - Provides constant-time analysis, property testing, and comprehensive testing handbook skills covering fuzzers, sanitizers, and coverage tools
- Companion Projects - Integrates with Trail of Bits' claude-code-config, skills-curated, claude-code-devcontainer, and dropkit for a comprehensive security development environment
Who is this for?
This plugin is designed for security researchers, smart contract auditors, and security-focused development teams who want specialized AI assistance for security analysis and testing. It is particularly valuable for teams performing code audits, vulnerability assessments, or building security tooling who want to leverage Claude Code with deep security domain expertise from Trail of Bits.
Installation
/plugin marketplace add trailofbits/skills/plugin install culture-index@trailofbitsMore from this repository10
Trail of Bits code-auditing plugin that detects insecure default configurations, hardcoded credentials, and fail-open security patterns during AI-assisted security review.
Trail of Bits code-auditing plugin that searches and extracts data from Burp Suite project files for AI-assisted security analysis.
Trail of Bits code-auditing plugin that creates and refines Semgrep rules for custom vulnerability detection.
Trail of Bits verification plugin that detects compiler-induced timing side-channels in cryptographic code — credited with finding a timing side-channel in ML-DSA signing (RustCrypto).
A Claude Code plugin marketplace from Trail of Bits providing skills for AI-assisted security analysis, testing, and development workflows.
Intercepts GitHub URL fetches and curl/wget commands, redirecting to the authenticated gh CLI. Includes gh CLI usage guidance.
A Claude Code plugin marketplace from Trail of Bits providing skills for AI-assisted security analysis, testing, and development workflows.
Teaches design patterns for workflow-based Claude Code skills and provides a review agent for auditing existing skills
YARA-X detection rule authoring with linting and quality analysis
Runs Semgrep static analysis for security vulnerability detection and code quality enforcement, from the Trail of Bits Skills Marketplace for AI-assisted security workflows.