Skip to main content

Zeroize Audit

Skill Verified Active
Part of:Zeroize Audit

Detects missing zeroization of sensitive data in source code and identifies zeroization removed by compiler optimizations, with assembly-level analysis, and control-flow verification. Use for auditing C/C++/Rust code handling secrets, keys, passwords, or other sensitive data.

Purpose

To enhance security reviews by automatically detecting and verifying vulnerabilities related to sensitive data handling and zeroization in compiled languages.

Features

  • Detects missing zeroization in C/C++/Rust
  • Identifies compiler optimizations removing zeroization
  • Performs assembly-level analysis
  • Verifies zeroization across control-flow paths
  • Generates proof-of-concept exploit examples

Use Cases

  • Auditing cryptographic implementations for secure key handling
  • Reviewing authentication systems for exposed credentials
  • Verifying secure cleanup in security-critical codebases
  • Investigating memory safety of sensitive data handling

Non-Goals

  • General code review without a security focus
  • Performance optimization unrelated to secure wiping
  • Refactoring tasks not related to sensitive data
  • Code without identifiable secrets or sensitive values

Installation

First, add the marketplace

/plugin marketplace add trailofbits/skills
/plugin install zeroize-audit@trailofbits

Quality Score

Verified
95 /100
Analyzed about 12 hours ago

Trust Signals

Last commit3 days ago
GitHub owner trailofbits (opens in new tab)
Stars5.2k
LicenseCC-BY-SA-4.0
Status
View Source

Similar Extensions

Debugging Code

99

Interactively debug source code — set breakpoints, step through execution line by line, inspect live variable state, evaluate expressions against the running program, and navigate the call stack to trace root causes. Use when a program crashes, raises unexpected exceptions, produces wrong output, when you need to understand how execution reached a certain state, or when print-statement debugging isn't revealing enough.

Skill
AlmogBaku

Janitor Usage

100

Show which skills you use and which you never use

Skill
khendzel

Lean Ctx

100

Context Runtime for AI Agents — 59 MCP tools, 10 read modes, 95+ shell patterns, tree-sitter AST for 18 languages. Compresses LLM context by up to 99%. Use when reading files, running shell commands, searching code, or exploring directories. Auto-installs if not present.

Skill
yvgude

Cleanup Cycles

100

Detect and untangle circular dependencies. Runs madge/skott (TS), pycycle (Py), or compiler-only checks (Go/Rust). Auto-fixes leaf-extractable cycles; reports core cycles for human review. Use when the user asks to find circular imports, fix dependency cycles, or untangle module graph. Example queries — "find circular imports", "fix dependency cycles", "untangle our module graph", "why is madge complaining".

Skill
raintree-technology

Running Tend

100

Worktrunk-specific guidance for tend CI workflows. Adds codecov polling, Rust test commands, labels, and review criteria on top of the generic tend-* skills. Use when operating in CI.

Skill
max-sixty

Secrets Management

100

Implement secure secrets management for CI/CD pipelines using Vault, AWS Secrets Manager, or native platform solutions. Use when handling sensitive credentials, rotating secrets, or securing CI/CD environments.

Skill
wshobson

© 2025 SkillRepo · Find the right skill, skip the noise.