Alternatives and similar repositories for s2e:

Users that are interested in s2e are comparing it to the libraries listed below

• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆344Updated this week
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆806Updated last month
• IntelLabs / kAFL
  A fuzzer for full VM kernel/driver targets
  ☆693Updated last month
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆332Updated last week
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆370Updated last year
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆563Updated 3 weeks ago
• RUB-SysSec / redqueen
  ☆385Updated 3 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆709Updated last week
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆257Updated 2 months ago
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆252Updated 10 months ago
• SystemSecurityStorm / Awesome-Binary-Rewriting
  An awesome & curated list of binary rewriting papers
  ☆235Updated 3 years ago
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,016Updated 2 weeks ago
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆220Updated this week
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆306Updated 10 months ago
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆640Updated 2 years ago
• axt / angr-utils
  Handy utilities for the angr binary analysis framework, most notably CFG visualization
  ☆285Updated 6 years ago
• HexHive / FuzzGen
  ☆302Updated 3 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆228Updated 3 years ago
• GrammaTech / ddisasm
  A fast and accurate disassembler
  ☆704Updated 2 months ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆579Updated 6 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆531Updated last year
• bruce30262 / libprotobuf-mutator_fuzzing_learning
  Learn how to combine libprotobuf-mutator with libfuzzer & AFL++
  ☆252Updated 7 months ago
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆352Updated this week
• puppet-meteor / MOpt-AFL
  MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers"
  ☆212Updated 4 years ago
• vusec / vuzzer64
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆177Updated 3 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆259Updated last year
• andreafioraldi / qasan
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆345Updated 9 months ago
• intel / kernel-fuzzer-for-xen-project
  Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL
  ☆473Updated 9 months ago
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆292Updated 5 years ago
• GJDuck / e9afl
  AFL binary instrumentation
  ☆296Updated 3 months ago