Alternatives and similar repositories for taint

Users that are interested in taint are comparing it to the libraries listed below

• Artisan-Lab / Rust-memory-safety-bugs
  ☆35Updated 3 years ago
• lizhuohua / rust-ffi-checker
  ☆62Updated 2 years ago
• travitch / build-bom
  Dynamically discover the commands used to create a piece of software
  ☆57Updated last month
• seahorn / crab
  A library for building abstract interpretation-based analyses. **Update**: crab is still actively maintained. Please use branch dev.
  ☆247Updated last year
• rindPHI / isla
  The ISLa (Input Specification Language) language & solver.
  ☆71Updated last year
• shao-hua-li / UBGen
  UBGen can generate programs with undefined behaviors (e.g., buffer-overflow, use-after-free, etc.)
  ☆62Updated 6 months ago
• srg-imperial / GrayC
  GrayC: Greybox Fuzzing of Compilers and Analysers for C
  ☆60Updated last year
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆166Updated 2 months ago
• sfu-rsl / symrustc
  SymRustC is a hybrid fuzzer for Rust combining concolic execution using SymCC and fuzzing using LibAFL.
  ☆11Updated 2 years ago
• langston-barrett / tree-splicer
  Simple grammar-based test case generator
  ☆34Updated this week
• lizhuohua / rust-mir-checker
  ☆162Updated last year
• ltlfuzzer / LTL-Fuzzer
  Linear-time Temporal Logic guided Greybox Fuzzing (ICSE'22)
  ☆56Updated last year
• GaloisInc / yapall
  A precise and scalable pointer analysis for LLVM, written in Ascent
  ☆68Updated 8 months ago
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆65Updated 2 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆233Updated 3 years ago
• zhangyz / llvm-slicing
  Symbolic Program Slicing with LLVM
  ☆85Updated 5 years ago
• SecurityLab-UCD / IRFuzzer
  [ICSE'25] Specialized Fuzzing for LLVM Backend Code Generation
  ☆17Updated 8 months ago
• DeadCodeProductions / dead
  ☆53Updated 2 years ago
• GaloisInc / cclyzerpp
  cclyzer++ is a precise and scalable pointer analysis for LLVM code.
  ☆148Updated 9 months ago
• trailofbits / vast-checker
  ☆27Updated 2 years ago
• Artisan-Lab / RULF
  A fully automated Rust fuzz driver generator
  ☆60Updated 5 months ago
• CMU-program-analysis / CMU-program-analysis.github.io
  Public-facing course info for program analysis materials.
  ☆43Updated 2 weeks ago
• hephaestus-compiler-project / hephaestus
  A framework for testing compilers' type checkers
  ☆60Updated last year
• cromulencellc / chess-aces
  ☆12Updated 3 years ago
• vhscampos / range-analysis
  Static range analysis for the LLVM compiler infrastructure.
  ☆56Updated 6 years ago
• mc-imperial / jfs
  Constraint solver based on coverage-guided fuzzing
  ☆249Updated 2 years ago
• caballa / wrapped-intervals
  Precise and Signedness Agnostic Interval Analysis for LLVM IR -- This website is obsolete. However, the wrapped interval domain is now im…
  ☆12Updated 7 years ago
• cuhk-s3 / Creal
  ☆34Updated 3 months ago
• sslab-gatech / autofz
  autofz: Automated Fuzzer Composition at Runtime
  ☆83Updated 2 years ago
• R-Fuzz / jigsaw
  JIGSAW is a fuzzing-based path constraint solver.
  ☆70Updated last year