airbus-seclab / gustaveLinks
GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its forkserver siblings). It allows to fuzz OS kernels like simple applications.
☆200Updated 3 years ago
Alternatives and similar repositories for gustave
Users that are interested in gustave are comparing it to the libraries listed below
Sorting:
- An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite☆129Updated 3 years ago
- Self-hosting binary instrumentation framework for security research☆213Updated last year
- Fuzzing the Kernel Using Unicornafl and AFL++☆300Updated 2 years ago
- AFL binary instrumentation☆298Updated 4 months ago
- ☆250Updated 2 years ago
- A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.☆138Updated 3 years ago
- SALT - SLUB ALlocator Tracer for the Linux kernel☆153Updated 6 years ago
- FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…☆292Updated 3 years ago
- ☆160Updated 3 years ago
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆473Updated 10 months ago
- A fuzzing introspection tool☆167Updated 4 years ago
- Kernel Test Framework☆143Updated 4 months ago
- SymQEMU: Compilation-based symbolic execution for binaries☆346Updated last month
- ☆84Updated 2 months ago
- ☆250Updated 5 years ago
- Bug hunting through fuzzer/*-sanitizer/etc...☆134Updated 4 years ago
- A Kernel fuzzer focusing on race bugs☆367Updated 5 years ago
- ☆186Updated 2 months ago
- ☆63Updated 6 years ago
- DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables☆208Updated 3 years ago
- A de-socketing library for fuzzing.☆148Updated this week
- Why fuzzing with emulators is amazing☆138Updated 4 years ago
- LKRG bypass methods☆72Updated 5 years ago
- PoC of fuzzing closed-source userspace binaries with KVM☆165Updated last year
- a grammar based feedback fuzzer☆165Updated last year
- Detecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)☆75Updated 2 years ago
- Seeding fuzzers with symbolic execution☆201Updated 7 years ago
- ☆131Updated 5 years ago
- American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries☆187Updated 4 years ago
- QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.☆345Updated 10 months ago