Search Skills

AFL++ enhances security testing with multi-core fuzzing capabilities for C/C++ applications to uncover vulnerabilities.

Scans TON smart contracts for critical security vulnerabilities in FunC code.

Provides code patching techniques to overcome checksums, global state, and other obstacles in security fuzzing tests.

Command-line utility for parsing Burp Suite project files to search HTTP traffic, headers, and security audit data using regex patterns.

Coverage-guided fuzzer for Ruby code and C extensions, designed to automatically uncover security vulnerabilities through input mutation.

A static code analysis tool for detecting security vulnerabilities and code quality issues using database-like queries.

Modular library for building custom fuzzers to identify security vulnerabilities through automated input mutation.

Clarifies ambiguous requirements before implementation to prevent misalignment and ensure accurate development.

Guides secure smart contract development with Slither scans, security checks, and documentation for fuzzing/verification.

Scans code for security vulnerabilities and enforces coding standards, integrating seamlessly into CI/CD pipelines for proactive security.

Analyzes code coverage during fuzzing to evaluate harness effectiveness and identify execution blockers in security testing.

Verifies blockchain protocol code against specifications to identify implementation gaps and ensure compliance with documented requirements.

Scans Android APKs for Firebase security misconfigurations including open databases, storage buckets, and authentication issues. For authorized security audits only.

Identifies security risks in API designs, configurations, and cryptographic libraries to enforce 'secure by default' principles and prevent common security pitfalls.

Provides security-focused code analysis and actionable recommendations for smart contract development based on Trail of Bits best practices.

Creates language variants of Semgrep rules for multi-language codebase security scanning and analysis.

Performs security-focused differential code review for PRs and commits, detecting regressions and generating markdown reports with blast radius analysis.

Interprets Culture Index survey data for HR operations, including team composition, burnout detection, and hiring insights from PDF or JSON inputs.

Prepares codebases for security reviews by applying Trail of Bits' checklist, running static analysis, and generating security-focused documentation.

Provides coverage-guided fuzzing for Python code and C extensions to identify security vulnerabilities through automated input testing.

Identifies similar security vulnerabilities and bugs across codebases using pattern-based analysis, aiding in security audits and bug variant hunting.

Scans Cairo/StarkNet smart contracts for critical security vulnerabilities including arithmetic overflow and L1-L2 messaging issues, aiding in security audits.

Analyzes smart contract codebases to identify and categorize state-changing entry points for security audits, excluding read-only functions.

Scans Cosmos SDK blockchains for consensus-critical vulnerabilities including non-determinism, incorrect signers, and ABCI panics to aid in security audits.