Techniques for patching code to overcome fuzzing obstacles. Use when checksums, global state, or other barriers block fuzzer progress.
npx ai-builder add skill trailofbits/fuzzing-obstaclesCodeQL is a static analysis framework that queries code as a database. Use when you need interprocedural analysis or complex data flow tracking.
npx ai-builder add skill trailofbits/codeqlConstant-time testing detects timing side channels in cryptographic code. Use when auditing crypto implementations for timing vulnerabilities.
npx ai-builder add skill trailofbits/constant-time-testingFuzzing dictionaries guide fuzzers with domain-specific tokens. Use when fuzzing parsers, protocols, or format-specific code.
npx ai-builder add skill trailofbits/fuzzing-dictionaryParse, analyze, and process SARIF (Static Analysis Results Interchange Format) files. Use when reading security scan results, aggregating findings from multiple tools, deduplicating alerts, extracting specific vulnerabilities, or integrating SARIF data into CI/CD pipelines.
npx ai-builder add skill trailofbits/sarif-parsingAddressSanitizer detects memory errors during fuzzing. Use when fuzzing C/C++ code to find buffer overflows and use-after-free bugs.
npx ai-builder add skill trailofbits/address-sanitizerLibAFL is a modular fuzzing library for building custom fuzzers. Use for advanced fuzzing needs, custom mutators, or non-standard fuzzing targets.
npx ai-builder add skill trailofbits/libaflSemgrep is a fast static analysis tool for finding bugs and enforcing code standards. Use when scanning code for security issues or integrating into CI/CD pipelines.
npx ai-builder add skill trailofbits/semgrepAFL++ is a fork of AFL with better fuzzing performance and advanced features. Use for multi-core fuzzing of C/C++ projects.
npx ai-builder add skill trailofbits/aflppCoverage-guided fuzzer built into LLVM for C/C++ projects. Use for fuzzing C/C++ code that can be compiled with Clang.
npx ai-builder add skill trailofbits/libfuzzerAtheris is a coverage-guided Python fuzzer based on libFuzzer. Use for fuzzing pure Python code and Python C extensions.
npx ai-builder add skill trailofbits/atherisOSS-Fuzz provides free continuous fuzzing for open source projects. Use when setting up continuous fuzzing infrastructure or enrolling projects.
npx ai-builder add skill trailofbits/ossfuzzcargo-fuzz is the de facto fuzzing tool for Rust projects using Cargo. Use for fuzzing Rust code with libFuzzer backend.
npx ai-builder add skill trailofbits/cargo-fuzzRuzzy is a coverage-guided Ruby fuzzer by Trail of Bits. Use for fuzzing pure Ruby code and Ruby C extensions.
npx ai-builder add skill trailofbits/ruzzyCoverage analysis measures code exercised during fuzzing. Use when assessing harness effectiveness or identifying fuzzing blockers.
npx ai-builder add skill trailofbits/coverage-analysisWycheproof provides test vectors for validating cryptographic implementations. Use when testing crypto code for known attacks and edge cases.
npx ai-builder add skill trailofbits/wycheproofTechniques for writing effective fuzzing harnesses across languages. Use when creating new fuzz targets or improving existing harness code.
npx ai-builder add skill trailofbits/harness-writingMeta-skill that analyzes the Trail of Bits Testing Handbook (appsec.guide) and generates Claude Code skills for security testing tools and techniques. Use when creating new skills based on handbook content.
npx ai-builder add skill trailofbits/testing-handbook-generatorFind similar vulnerabilities and bugs across codebases using pattern-based analysis. Use when hunting bug variants, building CodeQL/Semgrep queries, analyzing security vulnerabilities, or performing systematic code audits after finding an initial issue.
npx ai-builder add skill trailofbits/variant-analysisVerifies code implements exactly what documentation specifies for blockchain audits. Use when comparing code against whitepapers, finding gaps between specs and implementation, or performing compliance checks for protocol implementations.
npx ai-builder add skill trailofbits/spec-to-code-compliance