dwarf-expert

Trail of Bits code-auditing plugin that detects insecure default configurations, hardcoded credentials, and fail-open security patterns during AI-assisted security review.

Trail of Bits code-auditing plugin that searches and extracts data from Burp Suite project files for AI-assisted security analysis.

Trail of Bits code-auditing plugin that creates and refines Semgrep rules for custom vulnerability detection.

Trail of Bits verification plugin that detects compiler-induced timing side-channels in cryptographic code — credited with finding a timing side-channel in ML-DSA signing (RustCrypto).

A Claude Code plugin marketplace from Trail of Bits providing skills for AI-assisted security analysis, testing, and development workflows.

Intercepts GitHub URL fetches and curl/wget commands, redirecting to the authenticated gh CLI. Includes gh CLI usage guidance.

A Claude Code plugin marketplace from Trail of Bits providing skills for AI-assisted security analysis, testing, and development workflows.

Teaches design patterns for workflow-based Claude Code skills and provides a review agent for auditing existing skills

YARA-X detection rule authoring with linting and quality analysis

Runs Semgrep static analysis for security vulnerability detection and code quality enforcement, from the Trail of Bits Skills Marketplace for AI-assisted security workflows.