cdisselkoen / pitchfork
Detecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)
☆75Updated 2 years ago
Alternatives and similar repositories for pitchfork:
Users that are interested in pitchfork are comparing it to the libraries listed below
- KLEE Symbolic Execution Engine☆60Updated 5 years ago
- An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite☆129Updated 3 years ago
- Rewriting functions in compiled binaries using McSema☆88Updated 5 years ago
- ☆63Updated 5 years ago
- HexType: Efficient Detection of Type Confusion Errors for C++☆100Updated 11 months ago
- Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries☆95Updated 6 years ago
- HeapHopper is a bounded model checking framework for Heap-implementations☆214Updated 5 months ago
- CRETE under development☆59Updated 4 years ago
- ☆96Updated 5 years ago
- Uncovering Class Hierarchies in C++ Programs☆126Updated 2 years ago
- DataTracker: A Pin tool for collecting high-fidelity data provenance from unmodified programs.☆92Updated 7 years ago
- KLEE-TAINT - Klee with taint analysis support☆71Updated 7 years ago
- Flex 'em lexers☆39Updated 4 years ago
- Implementation of our S&P16 paper: A Tough Call: Mitigating Advanced Code-Reuse Attacks☆46Updated 7 years ago
- ☆131Updated 5 years ago
- Automated Return-Oriented Programming Chaining☆83Updated 8 years ago
- AFL++ as a library: gives you all the tools necessary to craft the best fuzzer for your targets with ease!☆112Updated 3 years ago
- Utilities for generating dynamic traces☆90Updated 2 years ago
- Recover mutation graph from an AFL seed☆59Updated 4 years ago
- A framework for instrumenting build tools☆84Updated 3 months ago
- ☆63Updated 3 years ago
- Modular And Compositional analysis with KLEE Engine☆115Updated 5 years ago
- ☆43Updated 3 years ago
- Timeless debugging with symbolic execution and processor trace☆75Updated 4 years ago
- ☆110Updated 11 years ago
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆57Updated 8 years ago
- ☆82Updated 6 months ago
- clang-based search engine for C/C++ data structures, classes, prototypes & macros☆101Updated 4 months ago
- Constraint solver based on coverage-guided fuzzing☆243Updated last year
- Minemu is a minimal emulator for dynamic taint analysis ( this is a mirror of https://minemu.org/code/minemu.git )☆40Updated 4 years ago