Alternatives and similar repositories for s2e

Users that are interested in s2e are comparing it to the libraries listed below

• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆349Updated 2 months ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆824Updated 2 months ago
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆372Updated last year
• IntelLabs / kAFL
  A fuzzer for full VM kernel/driver targets
  ☆722Updated this week
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆341Updated this week
• SystemSecurityStorm / Awesome-Binary-Rewriting
  An awesome & curated list of binary rewriting papers
  ☆245Updated 3 years ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆572Updated 3 months ago
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆260Updated 4 months ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆717Updated 2 months ago
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆223Updated this week
• axt / angr-utils
  Handy utilities for the angr binary analysis framework, most notably CFG visualization
  ☆287Updated 6 years ago
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆254Updated last year
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆645Updated 2 years ago
• RUB-SysSec / redqueen
  ☆388Updated 3 years ago
• GrammaTech / ddisasm
  A fast and accurate disassembler
  ☆708Updated this week
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,033Updated 2 months ago
• junxzm1990 / x86-sok
  ☆144Updated 8 months ago
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆314Updated last month
• lifting-bits / anvill
  anvill forges beautiful LLVM bitcode out of raw machine code
  ☆352Updated 10 months ago
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆359Updated this week
• andreafioraldi / qasan
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆344Updated 11 months ago
• HexHive / FuzzGen
  ☆306Updated 3 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆260Updated last month
• SunHao-0 / healer
  Kernel fuzzer inspired by Syzkaller.
  ☆280Updated 3 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆533Updated last year
• vusec / vuzzer64
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆177Updated 3 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆229Updated 3 years ago
• XMUsuny / symbolic-execution-papers
  Recent symbolic execution papers and tools.
  ☆169Updated last month
• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆404Updated 2 weeks ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆581Updated 6 years ago