S2E/s2e

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/S2E/s2e)

S2E / s2e

S2E: A platform for multi-path program analysis with selective symbolic execution.

☆511

Alternatives and similar repositories for s2e

Users that are interested in s2e are comparing it to the libraries listed below

Sorting:

eurecom-s3 / symcc
View on GitHub
SymCC: efficient compiler-based symbolic execution
☆856May 12, 2025Updated 9 months ago
eurecom-s3 / symqemu
View on GitHub
SymQEMU: Compilation-based symbolic execution for binaries
☆368May 5, 2025Updated 9 months ago
sslab-gatech / qsym
View on GitHub
QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
☆655Nov 23, 2022Updated 3 years ago
klee / klee
View on GitHub
KLEE Symbolic Execution Engine
☆2,902Feb 21, 2026Updated last week
shellphish / driller
View on GitHub
Driller: augmenting AFL with symbolic execution!
☆964Mar 24, 2025Updated 11 months ago
IntelLabs / kAFL
View on GitHub
A fuzzer for full VM kernel/driver targets
☆775Feb 11, 2026Updated 2 weeks ago
trailofbits / polytracker
View on GitHub
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
☆588Feb 20, 2026Updated last week
SVF-tools / SVF
View on GitHub
Static Value-Flow Analysis Framework for Source Code
☆1,652Updated this week
googleprojectzero / TinyInst
View on GitHub
A lightweight dynamic instrumentation library
☆1,308Apr 1, 2025Updated 11 months ago
ksluckow / awesome-symbolic-execution
View on GitHub
A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.
☆1,466Jun 20, 2025Updated 8 months ago
secure-software-engineering / phasar
View on GitHub
A LLVM-based static analysis framework.
☆1,034Feb 17, 2026Updated last week
nyx-fuzz / libxdc
View on GitHub
The fastest Intel-PT decoder for fuzzing
☆378Feb 2, 2024Updated 2 years ago
JonathanSalwan / Triton
View on GitHub
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…
☆4,070Dec 2, 2025Updated 2 months ago
vusec / vuzzer64
View on GitHub
This implements a 64-bit version of vusec/vuzzer fuzzing tool.
☆179Mar 29, 2022Updated 3 years ago
S2E / s2e-env
View on GitHub
Your S2E project management tools. Visit https://s2e.systems/docs to get started.
☆96Feb 5, 2026Updated 3 weeks ago
R-Fuzz / symsan
View on GitHub
A LLVM Sanitizer for Symbolic Tracing
☆234Feb 7, 2026Updated 3 weeks ago
GrammaTech / gtirb
View on GitHub
Intermediate Representation for Binary analysis and transformation
☆349Jan 14, 2026Updated last month
revng / revng
View on GitHub
revng: the core repository of the rev.ng project
☆1,632Feb 21, 2026Updated last week
AngoraFuzzer / libdft64
View on GitHub
libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
☆269Feb 21, 2025Updated last year
GJDuck / e9patch
View on GitHub
A powerful static binary rewriting tool
☆1,089Feb 15, 2026Updated 2 weeks ago
trailofbits / maat
View on GitHub
Open-source symbolic execution framework: https://maat.re
☆648Feb 22, 2026Updated last week
lifting-bits / remill
View on GitHub
Library for lifting machine code to LLVM bitcode
☆1,605Feb 13, 2026Updated 2 weeks ago
mchalupa / dg
View on GitHub
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
☆524May 21, 2025Updated 9 months ago
microsoft / llvm-mctoll
View on GitHub
llvm-mctoll
☆869Jun 22, 2024Updated last year
HexHive / retrowrite
View on GitHub
RetroWrite -- Retrofitting compiler passes through binary rewriting
☆736Apr 26, 2025Updated 10 months ago
RUB-SysSec / redqueen
View on GitHub
☆401Sep 23, 2021Updated 4 years ago
wcventure / FuzzingPaper
View on GitHub
Recent Fuzzing Paper
☆2,737Nov 4, 2025Updated 3 months ago
staticafi / symbiotic
View on GitHub
Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
☆334Feb 2, 2026Updated 3 weeks ago
AngoraFuzzer / Angora
View on GitHub
Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
☆954Jul 18, 2022Updated 3 years ago
binsec / binsec
View on GitHub
BINSEC binary-level open-source platform
☆396Jan 7, 2026Updated last month
lifting-bits / anvill
View on GitHub
anvill forges beautiful LLVM bitcode out of raw machine code
☆366Sep 3, 2024Updated last year
googleprojectzero / Jackalope
View on GitHub
Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
☆1,293Jan 13, 2026Updated last month
angr / angr
View on GitHub
A powerful and user-friendly binary analysis platform!
☆8,507Feb 20, 2026Updated last week
strongcourage / awesome-directed-fuzzing
View on GitHub
A curated list of awesome directed fuzzing research papers
☆582Dec 27, 2025Updated 2 months ago
toor-de-force / Ghidra-to-LLVM
View on GitHub
An binary-to-LLVM IR lifter that leverages Ghidra's IR and analysis
☆231Jun 9, 2020Updated 5 years ago
season-lab / fuzzolic
View on GitHub
fuzzing + concolic = fuzzolic :)
☆127Nov 6, 2025Updated 3 months ago
SQLab / CRAXplusplus
View on GitHub
The exploit generator CRAX++ is CRAX with a plugin system, s2e 2.0 upgrade, dynamic ROP, code selection, and I/O states (HITCON 2022)
☆102Jan 13, 2023Updated 3 years ago
lifting-bits / mcsema
View on GitHub
Framework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode
☆2,751Apr 26, 2022Updated 3 years ago
strongcourage / uafuzz
View on GitHub
UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities
☆350Sep 25, 2023Updated 2 years ago