Alternatives and similar repositories for s2e

Users that are interested in s2e are comparing it to the libraries listed below

• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆346Updated 3 weeks ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆814Updated 3 weeks ago
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆336Updated 3 weeks ago
• IntelLabs / kAFL
  A fuzzer for full VM kernel/driver targets
  ☆711Updated 2 months ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆565Updated last month
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,013Updated last month
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆711Updated last month
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆370Updated last year
• SystemSecurityStorm / Awesome-Binary-Rewriting
  An awesome & curated list of binary rewriting papers
  ☆238Updated 3 years ago
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆257Updated 3 months ago
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆644Updated 2 years ago
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆252Updated 11 months ago
• GrammaTech / ddisasm
  A fast and accurate disassembler
  ☆703Updated 3 months ago
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆358Updated this week
• HexHive / FuzzGen
  ☆304Updated 3 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆259Updated this week
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆221Updated this week
• lifting-bits / anvill
  anvill forges beautiful LLVM bitcode out of raw machine code
  ☆350Updated 8 months ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆531Updated last year
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆310Updated this week
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆417Updated 2 years ago
• RUB-SysSec / redqueen
  ☆387Updated 3 years ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆580Updated 6 years ago
• junxzm1990 / x86-sok
  ☆144Updated 7 months ago
• bruce30262 / libprotobuf-mutator_fuzzing_learning
  Learn how to combine libprotobuf-mutator with libfuzzer & AFL++
  ☆254Updated 8 months ago
• axt / angr-utils
  Handy utilities for the angr binary analysis framework, most notably CFG visualization
  ☆285Updated 6 years ago
• puppet-meteor / MOpt-AFL
  MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers"
  ☆213Updated 4 years ago
• AngoraFuzzer / Angora
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆941Updated 2 years ago
• GJDuck / e9afl
  AFL binary instrumentation
  ☆297Updated 4 months ago
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆292Updated 5 years ago