Product Overview

Trail of Bits

Co-founded in 2012 by Dan Guido and headquartered in New York City, Trail of Bits combines academic-style security research with hands-on engineering. The firm is best known for advanced software assurance work across cryptography, AI/ML, blockchain, and low-level systems, and for releasing widely used open-source tooling such as the Slither smart contract analyzer.

Last updated February 28, 2026

Founded

2012

Pricing

Custom (contact sales)

Verify with vendor

Deployment

Penetration Testing Firms

SOC 2ISO 27001

Key Features

+Application and protocol security reviews

+Cryptography design and implementation audits

+Blockchain and smart-contract security assessments

+AI/ML system security and red teaming

+Reverse engineering and binary analysis

+Custom security tooling and engineering

+Threat modeling and secure development consulting

+Public-sector research and DARPA program execution

+Specialised training (Empire Hacking, Crytic)

Pros & Cons

Pros

+Strong academic and research-grade reputation with published peer-reviewed work
+Open-source tooling footprint including Slither, Echidna, Manticore
+Recognised leader in smart-contract auditing for top-tier protocols
+Engineering depth that translates findings into custom defensive tooling

Cons

–Premium pricing and limited bench means long lead times
–Highly specialised, not a fit for routine commodity pentesting
–No published price list; bespoke statements of work per project

Best For

Crypto/DeFi protocols and security-conscious tech companies needing deep code, cryptography, and AI assurance work

Community & Practitioner Evidence

Community Sources

🔗 Other Resources

→
Trail of Bits official site[Trail of Bits]
→
Trail of Bits blog[Trail of Bits]

🔗 GitHub

→
Slither on GitHub[GitHub]

User Reviews

Takes about 2 minutes. Your review helps other security teams.

No reviews yet. Be the first to share your experience!