Alternatives and similar repositories for taint

Users that are interested in taint are comparing it to the libraries listed below

• lizhuohua / rust-ffi-checker
  ☆62Updated 2 years ago
• rindPHI / isla
  The ISLa (Input Specification Language) language & solver.
  ☆72Updated last year
• travitch / build-bom
  Dynamically discover the commands used to create a piece of software
  ☆57Updated 2 months ago
• Artisan-Lab / Rust-memory-safety-bugs
  ☆36Updated 3 years ago
• DeadCodeProductions / dead
  ☆53Updated 2 years ago
• shao-hua-li / UBGen
  UBGen can generate programs with undefined behaviors (e.g., buffer-overflow, use-after-free, etc.)
  ☆61Updated 7 months ago
• Artisan-Lab / RULF
  A fully automated Rust fuzz driver generator
  ☆61Updated 6 months ago
• srg-imperial / GrayC
  GrayC: Greybox Fuzzing of Compilers and Analysers for C
  ☆61Updated 2 years ago
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆64Updated 2 years ago
• GaloisInc / cclyzerpp
  cclyzer++ is a precise and scalable pointer analysis for LLVM code.
  ☆149Updated 11 months ago
• lizhuohua / rust-mir-checker
  ☆162Updated last year
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆168Updated last month
• vhscampos / range-analysis
  Static range analysis for the LLVM compiler infrastructure.
  ☆56Updated 6 years ago
• hephaestus-compiler-project / hephaestus
  A framework for testing compilers' type checkers
  ☆61Updated last year
• seahorn / crab
  A library for building abstract interpretation-based analyses. **Update**: crab is still actively maintained. Please use branch dev.
  ☆248Updated last year
• CMU-program-analysis / CMU-program-analysis.github.io
  Public-facing course info for program analysis materials.
  ☆43Updated last month
• GaloisInc / yapall
  A precise and scalable pointer analysis for LLVM, written in Ascent
  ☆68Updated 10 months ago
• ltlfuzzer / LTL-Fuzzer
  Linear-time Temporal Logic guided Greybox Fuzzing (ICSE'22)
  ☆56Updated last year
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆234Updated 3 years ago
• sfu-rsl / symrustc
  SymRustC is a hybrid fuzzer for Rust combining concolic execution using SymCC and fuzzing using LibAFL.
  ☆11Updated 2 years ago
• zhangyz / llvm-slicing
  Symbolic Program Slicing with LLVM
  ☆84Updated 5 years ago
• cuhk-s3 / Creal
  ☆36Updated 4 months ago
• cromulencellc / chess-aces
  ☆12Updated 3 years ago
• SanRazor-repo / SanRazor
  SanRazor is a sanitizer check reduction tool aiming to incur little overhead while retaining all important sanitizer checks.
  ☆55Updated 4 years ago
• focs-lab / rapid
  Dynamic Analysis for Concurrent Programs
  ☆27Updated last year
• langston-barrett / tree-crasher
  Easy-to-use grammar-based black-box fuzzer. Has found dozens of bugs in important targets like Clang, Deno, and rustc.
  ☆81Updated last week
• agroce / afl-compiler-fuzzer
  Variation of american fuzzy lop for testing compilers
  ☆125Updated 3 years ago
• parasol-aser / XRust
  ☆14Updated 5 years ago
• binsec / rosa
  ROSA: Finding Backdoors with Fuzzing
  ☆26Updated 6 months ago
• PKU-ASAL / SeeWasm
  A native symbolic execution engine for WebAssembly
  ☆49Updated last year