Alternatives and similar repositories for FirmSolo

Users that are interested in FirmSolo are comparing it to the libraries listed below

• Pamplemousse / bits_of_static_binary_analysis
  Material and examples for a presentation on static binary analysis.
  ☆46Updated 4 years ago
• ucsb-seclab / heapster
  Identify and test the security of dynamic memory allocators in monolithic firmware images
  ☆47Updated 2 years ago
• badnack / angr_taint_engine
  angr's exploration technique to perform taint analysis
  ☆65Updated 5 years ago
• zyingp / desockmulti
  A de-socketing tool that is 10x faster than desock (Preeny) in fuzzing network protocols
  ☆93Updated 3 years ago
• carter-yagemann / ARCUS
  Symbolic Execution Over Processor Traces
  ☆126Updated last year
• HexHive / datAFLow
  A data-flow-guided fuzzer
  ☆124Updated 2 years ago
• abiondo / afl
  My fork of American Fuzzy Lop
  ☆61Updated 7 years ago
• AFLplusplus / afl-cov
  Produce code coverage results with gcov from afl-fuzz test cases
  ☆89Updated last year
• RUB-SysSec / Nyx
  USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types
  ☆206Updated 4 years ago
• tthtlc / source-sink-ghidra
  Collections of student projects to find execution path in binary program via taint analysis using Ghidra
  ☆16Updated 3 years ago
• borzacchiello / naaz
  Symbolic Execution Engine based on Ghidra's PCode
  ☆84Updated 2 years ago
• Ember-IO / Ember-IO-Fuzzing
  ☆11Updated 2 years ago
• rchtsang / ffxe
  ☆29Updated last year
• strongcourage / uafbench
  UAF Fuzzing Benchmark
  ☆58Updated 4 years ago
• wupco / KLAUS
  A framework to test the correctness of the Linux kernel patch.
  ☆22Updated 2 years ago
• RUB-SysSec / JIT-Picker
  ☆68Updated 2 years ago
• HexHive / HyperPill
  ☆61Updated this week
• yasong / Awesome-Info-Inferring-Binary
  A collection of papers, tools about type inferring, variable renaming, function name inferring on stripped binary executables.
  ☆116Updated 2 months ago
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆265Updated 10 months ago
• sefcom / KHeaps
  Playing for {K (H) eaps}: Understanding and Improving Linux Kernel Exploit Reliability
  ☆92Updated 3 years ago
• ChengyuSong / Kirenenko
  Super Fast Concolic Execution Engine based on Source Code Taint Tracing
  ☆102Updated 3 years ago
• lt-asset / resym
  For our CCS24 paper 🏆 "ReSym: Harnessing LLMs to Recover Variable and Data Structure Symbols from Stripped Binaries" by Danning Xie, Zhu…
  ☆123Updated 8 months ago
• FoRTE-Research / UnTracer-AFL
  An AFL implementation with UnTracer (our coverage-guided tracer)
  ☆124Updated 3 years ago
• MCUSec / uEmu
  A Universal MCU Firmware Emulator for Dynamic Analysis without Any Hardware Dependence.
  ☆143Updated 2 years ago
• VDOO-Connected-Trust / ghidra-pyi-generator
  Generates `.pyi` type stubs for the entire Ghidra API
  ☆151Updated 10 months ago
• toor-de-force / Ghidra-to-LLVM
  An binary-to-LLVM IR lifter that leverages Ghidra's IR and analysis
  ☆230Updated 5 years ago
• elManto / DDFuzz
  The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power…
  ☆65Updated 3 years ago
• thebabush / afl-libprotobuf-mutator
  AFLplusplus + libprotobuf-mutator = love
  ☆84Updated 5 years ago
• AFLplusplus / libafl_qemu_artifacts
  ☆27Updated last year
• seclab-ucr / SyzGen_setup
  ☆46Updated 4 years ago