Alternatives and similar repositories for taint

Users that are interested in taint are comparing it to the libraries listed below

• lizhuohua / rust-ffi-checker
  ☆62Updated 2 years ago
• Artisan-Lab / Rust-memory-safety-bugs
  ☆34Updated 3 years ago
• GaloisInc / cclyzerpp
  cclyzer++ is a precise and scalable pointer analysis for LLVM code.
  ☆147Updated 9 months ago
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆166Updated last month
• shao-hua-li / UBGen
  UBGen can generate programs with undefined behaviors (e.g., buffer-overflow, use-after-free, etc.)
  ☆61Updated 5 months ago
• travitch / build-bom
  Dynamically discover the commands used to create a piece of software
  ☆56Updated 2 weeks ago
• srg-imperial / GrayC
  GrayC: Greybox Fuzzing of Compilers and Analysers for C
  ☆60Updated last year
• ltlfuzzer / LTL-Fuzzer
  Linear-time Temporal Logic guided Greybox Fuzzing (ICSE'22)
  ☆56Updated last year
• sfu-rsl / symrustc
  SymRustC is a hybrid fuzzer for Rust combining concolic execution using SymCC and fuzzing using LibAFL.
  ☆11Updated 2 years ago
• vhscampos / range-analysis
  Static range analysis for the LLVM compiler infrastructure.
  ☆56Updated 6 years ago
• rindPHI / isla
  The ISLa (Input Specification Language) language & solver.
  ☆71Updated last year
• GaloisInc / yapall
  A precise and scalable pointer analysis for LLVM, written in Ascent
  ☆66Updated 8 months ago
• DeadCodeProductions / dead
  ☆53Updated 2 years ago
• zhangyz / llvm-slicing
  Symbolic Program Slicing with LLVM
  ☆85Updated 5 years ago
• hephaestus-compiler-project / hephaestus
  A framework for testing compilers' type checkers
  ☆59Updated last year
• mc-imperial / jfs
  Constraint solver based on coverage-guided fuzzing
  ☆248Updated last year
• lizhuohua / rust-mir-checker
  ☆160Updated last year
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆65Updated 2 years ago
• caballa / wrapped-intervals
  Precise and Signedness Agnostic Interval Analysis for LLVM IR -- This website is obsolete. However, the wrapped interval domain is now im…
  ☆12Updated 7 years ago
• Artisan-Lab / RULF
  A fully automated Rust fuzz driver generator
  ☆59Updated 4 months ago
• sdasgup3 / validating-binary-decompilation
  Scalable Validator for Binary Lifters
  ☆57Updated 5 years ago
• cromulencellc / chess-aces
  ☆12Updated 3 years ago
• seahorn / crab
  A library for building abstract interpretation-based analyses. **Update**: crab is still actively maintained. Please use branch dev.
  ☆247Updated last year
• SecurityLab-UCD / IRFuzzer
  [ICSE'25] Specialized Fuzzing for LLVM Backend Code Generation
  ☆17Updated 7 months ago
• trailofbits / vast-checker
  ☆27Updated 2 years ago
• ispras / juliet-dynamic
  Juliet C/C++ Dynamic Test Suite
  ☆30Updated 2 years ago
• R-Fuzz / jigsaw
  JIGSAW is a fuzzing-based path constraint solver.
  ☆70Updated last year
• SanRazor-repo / SanRazor
  SanRazor is a sanitizer check reduction tool aiming to incur little overhead while retaining all important sanitizer checks.
  ☆54Updated 4 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆232Updated 3 years ago
• langston-barrett / tree-splicer
  Simple grammar-based test case generator
  ☆33Updated last week