Alternatives and similar repositories for s2e:

Users that are interested in s2e are comparing it to the libraries listed below

• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆342Updated 4 months ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆798Updated 2 weeks ago
• IntelLabs / kAFL
  A fuzzer for full VM kernel/driver targets
  ☆680Updated last week
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆556Updated 2 weeks ago
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆326Updated last week
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆368Updated last year
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆250Updated last month
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆304Updated 8 months ago
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,014Updated 2 months ago
• SystemSecurityStorm / Awesome-Binary-Rewriting
  An awesome & curated list of binary rewriting papers
  ☆230Updated 2 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆701Updated 10 months ago
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆637Updated 2 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆226Updated 3 years ago
• HexHive / FuzzGen
  ☆301Updated 3 years ago
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆217Updated 6 months ago
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆248Updated 8 months ago
• puppet-meteor / MOpt-AFL
  MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers"
  ☆209Updated 4 years ago
• RUB-SysSec / redqueen
  ☆382Updated 3 years ago
• andreafioraldi / qasan
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆344Updated 7 months ago
• vusec / vuzzer64
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆177Updated 2 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆526Updated last year
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆349Updated this week
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆578Updated 6 years ago
• nautilus-fuzz / nautilus
  A grammar based feedback Fuzzer
  ☆435Updated 7 months ago
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆414Updated 2 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆258Updated last year
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆290Updated 5 years ago
• GJDuck / e9afl
  AFL binary instrumentation
  ☆296Updated 2 months ago
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆509Updated 3 years ago
• SunHao-0 / healer
  Kernel fuzzer inspired by Syzkaller.
  ☆273Updated 3 years ago