Alternatives and similar repositories for scat

Users that are interested in scat are comparing it to the libraries listed below

• airbus-seclab / elfesteem
  ELF/PE/Mach-O parsing library
  ☆50Updated last year
• piscou / FuzzWin
  ☆88Updated 10 years ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 8 years ago
• paulmehta / Ablation
  Augmenting Static Analysis Using Pintool: Ablation
  ☆39Updated 9 years ago
• Cr4sh / Code-coverage-analysis-tools
  Code coverage analysis tools for the PIN Toolkit
  ☆60Updated 12 years ago
• farosato / angr-antievasion
  Final project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
  ☆34Updated 7 years ago
• lgeek / dynamorio_pin_escape
  ☆61Updated 9 years ago
• andreafioraldi / r2angrdbg
  Use angr inside the radare2 debugger. Create an angr state from the current debugger state.
  ☆34Updated 6 years ago
• tmr232 / GraphGrabber
  ☆27Updated last year
• RUB-SysSec / Marx
  Uncovering Class Hierarchies in C++ Programs
  ☆127Updated 2 years ago
• feliam / klee-taint
  KLEE-TAINT - Klee with taint analysis support
  ☆70Updated 7 years ago
• m000 / dtracker
  DataTracker: A Pin tool for collecting high-fidelity data provenance from unmodified programs.
  ☆95Updated 7 years ago
• zhechkoz / PwIN
  Security Evaluation of Dynamic Binary Instrumentation Engines
  ☆80Updated 6 years ago
• joxeankoret / membugtool
  A DBI tool to discover heap memory related bugs
  ☆125Updated 7 years ago
• debasishm89 / iofuzz
  A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process a…
  ☆67Updated 11 years ago
• andreafioraldi / angrdbg
  Abstract library to generate angr states from a debugger state
  ☆60Updated 5 years ago
• dpc-grindland / Fuzzgrind
  A fully automatic fuzzing tool for Valgrind, unofficial mirror for http://esec-lab.sogeti.com/pages/fuzzgrind.html
  ☆36Updated 10 years ago
• andreafioraldi / pwntrace
  Use ltrace with pwnlib.tubes.process instances, useful for heap exploitation. Pwntools rocks!
  ☆53Updated 7 years ago
• panda-re / symbll
  Symbolic execution for LLVM traces produced by PANDA
  ☆40Updated 6 years ago
• osirislab / dispatch
  Programmatic disassembly and patching
  ☆68Updated 8 years ago
• o-o-overflow / dc2019q-LCARS000
  ☆17Updated 6 years ago
• guedou / r2m2
  radare2 + miasm2 = ♥
  ☆103Updated 5 years ago
• rpaleari / fuzztrace
  A "general-purpose" tracing tool
  ☆39Updated 10 years ago
• gamozolabs / guifuzz
  A GUI fuzzing application set up to fuzz calc.exe right now
  ☆36Updated 5 years ago
• RobinDavid / idasec
  IDA plugin for reverse-engineering and dynamic interactions with the Binsec platform
  ☆116Updated 7 years ago
• mxatone / mitigation-bounty
  Old mitigation-bounty code that was applicable to edge before it use webkit/chrome
  ☆87Updated 8 years ago
• carlosgprado / BrundleFuzz
  BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.
  ☆83Updated 8 years ago
• c01db33f / reil
  REIL translation library
  ☆36Updated 9 years ago
• vanhauser-thc / afl-pin
  run AFL with pintool
  ☆66Updated 5 years ago
• JonathanSalwan / stuffz
  Some low-level stuff
  ☆107Updated last year