Claude Code plugins from Trail of Bits for enhanced AI-assisted security analysis and development
/plugin marketplace add trailofbits/skills/plugin install [plugin-name]@trailofbits-trailofbitsClarify requirements before implementing. Do not use automatically, only when invoked explicitly.
Build deep architectural context through ultra-granular code analysis before vulnerability hunting
Comprehensive smart contract security toolkit based on Trail of Bits' Building Secure Contracts framework. Includes vulnerability scanners for 6 blockchains and 5 development guideline assistants.
Search and extract data from Burp Suite project files (.burp) directly from the command line for use in Claude
Detect compiler-induced timing side-channels in cryptographic code
Interprets Culture Index survey results for individuals and teams
Security-focused differential review of code changes with git history analysis and blast radius estimation
Verifies that code changes address security audit findings without introducing bugs
Interact with and understand the DWARF debugging format
Analyzes smart contract codebases to identify state-changing entry points for security auditing. Detects externally callable functions that modify state, categorizes them by access level, and generates structured audit reports.
Property-based testing guidance for multiple languages and smart contracts
Create custom Semgrep rules for detecting bug patterns and security vulnerabilities
Identify error-prone APIs, dangerous configurations, and footgun designs that enable security mistakes
Production-ready workflow orchestration with 67 focused plugins, 99 specialized agents, and 107 skills - optimized for granular installation and minimal token usage
A curated marketplace of practical Claude Skills for enhancing productivity across Claude.ai, Claude Code, and the Claude API
Curated collection of 127 specialized Claude Code subagents organized into 10 focused categories