Alternatives and similar repositories for kAFL

Users that are interested in kAFL are comparing it to the libraries listed below

• nccgroup / TriforceAFL
  AFL/QEMU fuzzing with full-system emulation.
  ☆638Updated 7 years ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆376Updated 6 years ago
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆384Updated 3 years ago
• vusec / vuzzer
  ☆386Updated 6 years ago
• RUB-SysSec / redqueen
  ☆396Updated 4 years ago
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆656Updated 3 years ago
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆519Updated 3 years ago
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆292Updated 6 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆341Updated 6 years ago
• Battelle / afl-unicorn
  afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.
  ☆610Updated 2 years ago
• trailofbits / cb-multios
  DARPA Challenges Sets for Linux, Windows, and macOS
  ☆533Updated 2 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆731Updated 7 months ago
• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆408Updated this week
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆453Updated 7 years ago
• HexHive / T-Fuzz
  ☆253Updated 5 years ago
• angr / patcherex
  Shellphish's automated patching engine, originally created for the Cyber Grand Challenge.
  ☆263Updated 4 months ago
• ucsb-seclab / dr_checker
  DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers
  ☆337Updated 3 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆304Updated 2 years ago
• shellphish / driller
  Driller: augmenting AFL with symbolic execution!
  ☆960Updated 9 months ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆188Updated 4 years ago
• andreafioraldi / qasan
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆348Updated last year
• mboehme / aflfast
  AFLFast (extends AFL with Power Schedules)
  ☆422Updated 2 years ago
• intel / kernel-fuzzer-for-xen-project
  Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL
  ☆473Updated last year
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆370Updated this week
• axt / angr-utils
  Handy utilities for the angr binary analysis framework, most notably CFG visualization
  ☆297Updated 6 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆309Updated 6 years ago
• JonathanSalwan / PinTools
  Pintool example and PoC for dynamic binary analysis
  ☆599Updated 3 years ago
• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆177Updated last year
• bnagy / crashwalk
  Bucket and triage on-disk crashes. OSX and Linux.
  ☆358Updated last year
• mxmssh / manul
  Manul is a coverage-guided parallel fuzzer for open-source and blackbox binaries on Windows, Linux and MacOS
  ☆335Updated 5 years ago