Alternatives and similar repositories for s2e

Users that are interested in s2e are comparing it to the libraries listed below

• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆354Updated 4 months ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆836Updated 4 months ago
• IntelLabs / kAFL
  A fuzzer for full VM kernel/driver targets
  ☆740Updated 2 months ago
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆344Updated 2 months ago
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆374Updated last year
• SystemSecurityStorm / Awesome-Binary-Rewriting
  An awesome & curated list of binary rewriting papers
  ☆250Updated 3 years ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆582Updated 5 months ago
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆223Updated 2 months ago
• AngoraFuzzer / libdft64
  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
  ☆260Updated 6 months ago
• axt / angr-utils
  Handy utilities for the angr binary analysis framework, most notably CFG visualization
  ☆290Updated 6 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆725Updated 4 months ago
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆649Updated 2 years ago
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆365Updated this week
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆318Updated 3 months ago
• junxzm1990 / x86-sok
  ☆145Updated 10 months ago
• SunHao-0 / healer
  Kernel fuzzer inspired by Syzkaller.
  ☆282Updated 3 years ago
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,048Updated 4 months ago
• RUB-SysSec / redqueen
  ☆390Updated 3 years ago
• GrammaTech / ddisasm
  A fast and accurate disassembler
  ☆720Updated this week
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆259Updated last year
• XMUsuny / symbolic-execution-papers
  Recent symbolic execution papers and tools.
  ☆174Updated 3 months ago
• lifting-bits / anvill
  anvill forges beautiful LLVM bitcode out of raw machine code
  ☆354Updated last year
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆233Updated 3 years ago
• HexHive / FuzzGen
  ☆305Updated 4 years ago
• andreafioraldi / qasan
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆345Updated last year
• puppet-meteor / MOpt-AFL
  MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers"
  ☆214Updated 4 years ago
• vusec / vuzzer64
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆177Updated 3 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆537Updated last year
• nyx-fuzz / Nyx
  ☆255Updated 2 years ago
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆427Updated 3 months ago