angr/rex

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/angr/rex)

angr / rex

Shellphish's automated exploitation engine, originally created for the Cyber Grand Challenge.

☆655

Alternatives and similar repositories for rex

Users that are interested in rex are comparing it to the libraries listed below

Sorting:

shellphish / driller
View on GitHub
Driller: augmenting AFL with symbolic execution!
☆964Mar 24, 2025Updated 11 months ago
angr / patcherex
View on GitHub
Shellphish's automated patching engine, originally created for the Cyber Grand Challenge.
☆265Jan 13, 2026Updated 2 months ago
angr / angrop
View on GitHub
☆815Mar 6, 2026Updated 2 weeks ago
shellphish / fuzzer
View on GitHub
A Python interface to AFL, allowing for easy injection of testcases and other functionality.
☆645Apr 30, 2019Updated 6 years ago
shellphish / driller-afl
View on GitHub
A version of AFL tailored for Driller's use in analyzing CGC binaries.
☆80Mar 20, 2017Updated 9 years ago
shellphish / shellphish-qemu
View on GitHub
A pip wrapper around our ridiculous amount of qemu forks.
☆51Feb 9, 2026Updated last month
mechaphish / mecha-docs
View on GitHub
Documentation for the Mechanical Phish.
☆235Aug 21, 2016Updated 9 years ago
shellphish / shellphish-afl
View on GitHub
A pip wrapper around AFL.
☆87Apr 12, 2021Updated 4 years ago
ChrisTheCoolHut / Zeratool
View on GitHub
Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems
☆1,146Sep 10, 2023Updated 2 years ago
angr / angr
View on GitHub
A powerful and user-friendly binary analysis platform!
☆8,556Updated this week
shellphish / how2heap
View on GitHub
A repository for learning various heap exploitation techniques.
☆8,475Jan 15, 2026Updated 2 months ago
angr / heaphopper
View on GitHub
HeapHopper is a bounded model checking framework for Heap-implementations
☆227Jul 2, 2025Updated 8 months ago
SQLab / symgdb
View on GitHub
SymGDB - symbolic execution plugin for gdb
☆218May 15, 2018Updated 7 years ago
shellphish / patcherex
View on GitHub
please go to angr/patcherex instead of this!
☆32Sep 27, 2018Updated 7 years ago
shellphish / afl-other-arch
View on GitHub
AFL, with scripts to support other architectures.
☆97Nov 7, 2018Updated 7 years ago
lunixbochs / patchkit
View on GitHub
binary patching from Python
☆639Jul 6, 2023Updated 2 years ago
JonathanSalwan / Triton
View on GitHub
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…
☆4,098Mar 8, 2026Updated last week
airbus-seclab / bincat
View on GitHub
Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…
☆1,853Feb 25, 2025Updated last year
angr / tracer
View on GitHub
Utilities for generating dynamic traces
☆94Mar 24, 2025Updated 11 months ago
theevilbit / exploit_generator
View on GitHub
Automated Exploit generation with WinDBG
☆190Oct 18, 2016Updated 9 years ago
nccgroup / TriforceAFL
View on GitHub
AFL/QEMU fuzzing with full-system emulation.
☆641Sep 9, 2018Updated 7 years ago
illera88 / Ponce
View on GitHub
IDA 2016 plugin contest winner! Symbolic Execution just one-click away!
☆1,617Jun 11, 2025Updated 9 months ago
sslab-gatech / qsym
View on GitHub
QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
☆655Nov 23, 2022Updated 3 years ago
angr / angr-doc
View on GitHub
Documentation for the angr suite
☆847Apr 27, 2023Updated 2 years ago
zardus / preeny
View on GitHub
Some helpful preload libraries for pwning stuff.
☆1,649Mar 6, 2026Updated 2 weeks ago
SeanHeelan / HeapLayout
View on GitHub
Source code for paper 'Automatic Heap Layout Manipulation for Exploitation'
☆103Nov 24, 2019Updated 6 years ago
SCUBSRGroup / Automatic-Exploit-Generation
View on GitHub
Something about AEG
☆272May 29, 2019Updated 6 years ago
mothran / aflpin
View on GitHub
aflpin enables afl to fuzz blackbox binaries using a pin tool to trace execution branches.
☆172Jan 27, 2015Updated 11 years ago
julieeen / kleefl
View on GitHub
Seeding fuzzers with symbolic execution
☆203Oct 20, 2017Updated 8 years ago
sashs / Ropper
View on GitHub
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, A…
☆2,105Feb 28, 2025Updated last year
HexHive / retrowrite
View on GitHub
RetroWrite -- Retrofitting compiler passes through binary rewriting
☆739Apr 26, 2025Updated 10 months ago
google / honggfuzz
View on GitHub
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)
☆3,313Jan 6, 2026Updated 2 months ago
jfoote / exploitable
View on GitHub
The 'exploitable' GDB plugin
☆747Aug 13, 2022Updated 3 years ago
decaf-project / DECAF
View on GitHub
DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the D…
☆838Nov 19, 2024Updated last year
david942j / one_gadget
View on GitHub
The best tool for finding one gadget RCE in libc.so.6
☆2,304Mar 5, 2026Updated 2 weeks ago
jeffball55 / rop_compiler
View on GitHub
An open source, multi-architecture ROP compiler written in python
☆163Jun 14, 2017Updated 8 years ago
trailofbits / cb-multios
View on GitHub
DARPA Challenges Sets for Linux, Windows, and macOS
☆536Jun 29, 2023Updated 2 years ago
Dor1s / libfuzzer-workshop
View on GitHub
Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.
☆1,299Jun 29, 2023Updated 2 years ago
angr / cle
View on GitHub
CLE Loads Everything (at least, many binary formats!)
☆473Mar 10, 2026Updated last week