Our core work

Global enterprises and institutions make better security decisions thanks to our research and development. But we don’t just put out papers. We apply a research lab mentality to produce foundational tools at the deepest levels of code. And we share what knowledge we can.

Publish novel research

As a company, we owe our existence to the pursuit of knowledge. Before we became Trail of Bits, we were academics and researchers, scientists, and engineers. Our team consumes, produces, and presents research as a natural part of doing business. We succeed because we behave like a lab. Some of our research includes:

• Sienna Locomotive
• Leveraging the Analog Domain for Security (LADS)
• Cyber Reasoning System (CRS)
• Cyber Fault-tolerant Attack Recovery (CFAR)
• PointsTo (CFT)

Build foundational tools

During our research, we regularly encounter foundational gaps: missing capabilities, opportunities for improvement, potential vulnerabilities, and so on. We love those moments. They’re an opportunity to engineer tools that help our clients and peers to raise the bar.

• Manticore
• McSema
• OSQuery
• Challenge Sets
• AppJailLauncher
• Algo VPN
• iOS Integrity Validator
• Mobile App Security Toolkit (MAST)
• ProtoFuzz

Share our knowledge

We’re unusual for our consumption and production of research. Few go to the trouble. So, when we come across something that would improve the state of security, and it isn’t covered under an NDA, we share it.

• CTF Field Guide
• Control Flow Integrity
• Binary Ninja
• NYC-Infosec
• Empire Hacking
• Cybersecurity Policy
• Ruby Security Field Guide

Work with us — Request a Quote