repos
94
ecosystems
8
languages
14
commits
2,766
─── top repos · by commits
─── repositories
94 totalAudits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
A framework for instrumenting build tools
📋 Bulk auditing Python dependencies in Homebrew with pip-audit
A suite of testvectors for X.509 certificate path validation and tools for building them
Scans Python packages for abi3 violations and inconsistencies
A differential fuzzer for x86 decoders
A kernelspace syscall interceptor and randomized faulter
Checksec, but for Windows: static detection of security mitigations in executables
A tiny web auditor with strong opinions.
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
A cross-platform library for verifying Authenticode signatures
A GitHub Action for pip-audit
Memory tracer, take N
A GitHub Action for sigstore-python
Rust libraries and utilities for parsing Windows Certificate Trust Lists
Python models for Rekor's API types
An experimental Tiny86 decoder and verifier for SIEVE
Principled, lightweight C/C++ PE parser
A collection of tools for running Homebrew in offline environments.
Conformance testing for Sigstore clients
Publications from Trail of Bits
A Python library for easy and fast program transformation/repair
A collection of Windows binary builds containing different security mitigations
A pure-Python implementation of RFC8785 (JSON Canonicalization Scheme)
A Python pickling decompiler and static analyzer
Find the ideal fuzz targets in a Rust codebase
C API bindlings for Google's weggli
An efficient and generalized implementation of the IKOS-style KKW proof system (https://eprint.iacr.org/2018/475) for arbitrary rings.
Rust crate to simplify Windows ACL operations
An Opinionated Python RFC3161 Client
MVP for updated PEP 543 proposal
Are we PEP 740 yet?
Painless JSON logging for Nginx.
A crawling framework for blockchains and peer-to-peer systems
A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV.
A cookiecutter template for a best-practices Python project
Google Protocol Buffers message generator
SQL powered operating system instrumentation, monitoring, and analytics.
A small script for running programs with (minimal) network sandboxing
Rust clients for the Fulcio and Rekor APIs
A GitHub Action for scanning binaries with Winchecksec
A Rust ASN.1 (DER) serializer.
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.
An implementation of a pip plugin that verifies PEP-740 attestations before installing a package, and aborts the installation if verification fails.
evm binary static analysis
DARPA Challenges Sets for Linux, Windows, and macOS
Symbolic execution tool
Manage and switch between Solidity compiler versions
Fast SNMP Scanner
Rewrite C++ code to automatically apply `constexpr` where possible
Manage and switch between Solidity compiler versions
Ethereum Virtual Machine (EVM) disassembler and assembler
Simplify Ethereum security analysis and testing
📥 Homebrew (un)installer
Semgrep queries developed by Trail of Bits.
Ruby DMARC Parser
Amarna is a static-analyzer and linter for the Cairo programming language.
EVM dissassembler
A pure Python cleanroom implementation of libmagic, with instrumented parsing from Kaitai struct and an interactive hex viewer
A Rust implementation of the Message Layer Security group messaging protocol
Ruby DKIM Parser
Pronounced "mc urkit"
Empire Hacking NYC Meetup
Symbolic execution tool
Static Analyzer for Solidity and Vyper
CTF Field Guide
A unit test-like interface for fuzzing and symbolic execution
CTF Challenge Framework for Windows 8 and above
AppJailLauncher in Rust
RubySec Field Guide
Phishing e-mail repository
A Python wrapper around the OpenSSL library
WebAssembly decoder & disassembler library
Static Analyzer for Solidity
CertiK fork of Slither Analyzer
Static Analyzer for Solidity and Vyper
The Rust package registry
Static Analyzer for Solidity
Research on Vulnerability Detection Using Intermediate Representations of Solidity
Interactive documentation on zero-knowledge proof systems and related primitives.
VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or further program abstraction.
Set up a personal VPN in the cloud
osquery extensions by Trail of Bits
Create code bookmarks and code highlights with a click.
A user-friendly fuzzing and crash triage tool for Windows
Collection of LLVM passes and triage tools for use with the KRF fuzzer
CVE querying library and utility that uses a local store syncing directly to the National Vulnerability Database
Pure Rust client for YubiHSM2 devices
in-toto attestation formats for Homebrew
Yosys Open SYnthesis Suite
─── peer developers
─── ecosystems
─── languages
- Python41
- Rust13
- C++10
- Ruby6
- C6
- Shell2
- HTML2
- CMake1
- Dockerfile1
- Go1
─── subscriber view
Unlock the full view of woodruffw
- · Full repository, commit, and contributor breakdown
- · Peer graph + ecosystem links
- · Weekly trend deltas and pulse signal
- · API + CSV / JSON exports
Already a subscriber? Sign in with the same email used at checkout.