Alternatives and similar repositories for taint

Users that are interested in taint are comparing it to the libraries listed below

• lizhuohua / rust-ffi-checker
  ☆62Updated 2 years ago
• Artisan-Lab / Rust-memory-safety-bugs
  ☆36Updated 3 years ago
• shao-hua-li / UBGen
  UBGen can generate programs with undefined behaviors (e.g., buffer-overflow, use-after-free, etc.)
  ☆61Updated 7 months ago
• rindPHI / isla
  The ISLa (Input Specification Language) language & solver.
  ☆72Updated last year
• Artisan-Lab / RULF
  A fully automated Rust fuzz driver generator
  ☆60Updated 6 months ago
• ltlfuzzer / LTL-Fuzzer
  Linear-time Temporal Logic guided Greybox Fuzzing (ICSE'22)
  ☆56Updated last year
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆168Updated last month
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆64Updated 2 years ago
• travitch / build-bom
  Dynamically discover the commands used to create a piece of software
  ☆57Updated 2 months ago
• srg-imperial / GrayC
  GrayC: Greybox Fuzzing of Compilers and Analysers for C
  ☆61Updated 2 years ago
• cuhk-s3 / Creal
  ☆36Updated 4 months ago
• vhscampos / range-analysis
  Static range analysis for the LLVM compiler infrastructure.
  ☆56Updated 6 years ago
• GaloisInc / cclyzerpp
  cclyzer++ is a precise and scalable pointer analysis for LLVM code.
  ☆149Updated 11 months ago
• sslab-gatech / autofz
  autofz: Automated Fuzzer Composition at Runtime
  ☆84Updated 2 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆234Updated 3 years ago
• DeadCodeProductions / dead
  ☆53Updated 2 years ago
• GaloisInc / yapall
  A precise and scalable pointer analysis for LLVM, written in Ascent
  ☆68Updated 10 months ago
• langston-barrett / tree-splicer
  Simple grammar-based test case generator
  ☆37Updated this week
• lizhuohua / rust-mir-checker
  ☆162Updated last year
• sfu-rsl / symrustc
  SymRustC is a hybrid fuzzer for Rust combining concolic execution using SymCC and fuzzing using LibAFL.
  ☆11Updated 2 years ago
• zhangyz / llvm-slicing
  Symbolic Program Slicing with LLVM
  ☆84Updated 5 years ago
• agroce / afl-compiler-fuzzer
  Variation of american fuzzy lop for testing compilers
  ☆125Updated 3 years ago
• ispras / juliet-dynamic
  Juliet C/C++ Dynamic Test Suite
  ☆31Updated 2 years ago
• seahorn / crab
  A library for building abstract interpretation-based analyses. **Update**: crab is still actively maintained. Please use branch dev.
  ☆248Updated last year
• seclab-ucr / UBITect
  ☆42Updated 3 years ago
• SanRazor-repo / SanRazor
  SanRazor is a sanitizer check reduction tool aiming to incur little overhead while retaining all important sanitizer checks.
  ☆55Updated 4 years ago
• binsec / rosa
  ROSA: Finding Backdoors with Fuzzing
  ☆26Updated 6 months ago
• hephaestus-compiler-project / hephaestus
  A framework for testing compilers' type checkers
  ☆61Updated last year
• SecurityLab-UCD / IRFuzzer
  [ICSE'25] Specialized Fuzzing for LLVM Backend Code Generation
  ☆19Updated 9 months ago
• R-Fuzz / jigsaw
  JIGSAW is a fuzzing-based path constraint solver.
  ☆69Updated last year