Alternatives and similar repositories for taint

Users that are interested in taint are comparing it to the libraries listed below

• lizhuohua / rust-ffi-checker
  ☆61Updated 2 years ago
• Artisan-Lab / Rust-memory-safety-bugs
  ☆36Updated 3 years ago
• shao-hua-li / UBGen
  UBGen can generate programs with undefined behaviors (e.g., buffer-overflow, use-after-free, etc.)
  ☆61Updated 8 months ago
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆64Updated 2 years ago
• travitch / build-bom
  Dynamically discover the commands used to create a piece of software
  ☆58Updated 3 months ago
• DeadCodeProductions / dead
  ☆53Updated 2 years ago
• hephaestus-compiler-project / hephaestus
  A framework for testing compilers' type checkers
  ☆62Updated last year
• sfu-rsl / symrustc
  SymRustC is a hybrid fuzzer for Rust combining concolic execution using SymCC and fuzzing using LibAFL.
  ☆11Updated 2 years ago
• rindPHI / isla
  The ISLa (Input Specification Language) language & solver.
  ☆71Updated last year
• srg-imperial / GrayC
  GrayC: Greybox Fuzzing of Compilers and Analysers for C
  ☆61Updated 2 years ago
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆168Updated last month
• vhscampos / range-analysis
  Static range analysis for the LLVM compiler infrastructure.
  ☆56Updated 6 years ago
• ltlfuzzer / LTL-Fuzzer
  Linear-time Temporal Logic guided Greybox Fuzzing (ICSE'22)
  ☆58Updated last year
• lizhuohua / rust-mir-checker
  ☆163Updated last year
• zhangyz / llvm-slicing
  Symbolic Program Slicing with LLVM
  ☆84Updated 5 years ago
• GaloisInc / yapall
  A precise and scalable pointer analysis for LLVM, written in Ascent
  ☆68Updated 11 months ago
• seahorn / crab
  A library for building abstract interpretation-based analyses. **Update**: crab is still actively maintained. Please use branch dev.
  ☆250Updated last year
• Artisan-Lab / RULF
  A fully automated Rust fuzz driver generator
  ☆61Updated 7 months ago
• GaloisInc / cclyzerpp
  cclyzer++ is a precise and scalable pointer analysis for LLVM code.
  ☆148Updated last year
• focs-lab / rapid
  Dynamic Analysis for Concurrent Programs
  ☆27Updated last year
• ispras / juliet-dynamic
  Juliet C/C++ Dynamic Test Suite
  ☆34Updated 2 years ago
• agroce / afl-compiler-fuzzer
  Variation of american fuzzy lop for testing compilers
  ☆126Updated 3 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆236Updated 3 years ago
• binsec / rosa
  ROSA: Finding Backdoors with Fuzzing
  ☆38Updated 7 months ago
• mc-imperial / jfs
  Constraint solver based on coverage-guided fuzzing
  ☆249Updated 2 years ago
• parasol-aser / UFO
  UFO: Predictive Detection of Concurrency Use-After-Free Vulnerabilities
  ☆33Updated 5 years ago
• cuhk-s3 / Creal
  ☆36Updated 5 months ago
• langston-barrett / tree-splicer
  Simple grammar-based test case generator
  ☆39Updated this week
• SecurityLab-UCD / IRFuzzer
  [ICSE'25] Specialized Fuzzing for LLVM Backend Code Generation
  ☆20Updated 10 months ago
• SanRazor-repo / SanRazor
  SanRazor is a sanitizer check reduction tool aiming to incur little overhead while retaining all important sanitizer checks.
  ☆55Updated 4 years ago