Alternatives and similar repositories for unicorn

Users that are interested in unicorn are comparing it to the libraries listed below

• fgsect / WAFL
  Binary-only fuzzer for WebAssembly (WASI)
  ☆52Updated last year
• langston-barrett / tree-crasher
  Easy-to-use grammar-based black-box fuzzer. Has found dozens of bugs in important targets like Clang, Deno, and rustc.
  ☆81Updated 2 weeks ago
• norlen / symex
  Symbolic Execution Engine in Rust
  ☆21Updated 2 years ago
• landaire / lain
  A structured fuzzing framework built in Rust
  ☆31Updated 3 years ago
• SoftwareSecurityLab / UbSym
  A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes
  ☆43Updated 2 years ago
• nccgroup / rustproofing-linux
  ☆23Updated 3 years ago
• moyix / fpsmt_gpu
  Solving floating point SMT constraints on a GPU
  ☆50Updated 5 years ago
• SoftSec-KAIST / SURI
  Towards Sound Reassembly of Modern x86-64 Binaries (ASPLOS'25)
  ☆18Updated 9 months ago
• cispa / GhostWrite
  Proof-of-concept for the GhostWrite CPU bug.
  ☆117Updated last year
• agra-uni-bremen / BinSym
  Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model
  ☆54Updated 7 months ago
• CISPA-SysSec / wasmfuzz
  WebAssembly as a Fuzzing Compilation Target @ FUZZING'24
  ☆18Updated this week
• michalpaszkowski / LLVM-Canon
  LLVM-Canon aims to transform LLVM modules into a canonical form by reordering and renaming instructions while preserving the same semanti…
  ☆31Updated last year
• trailofbits / LeftoverLocalsRelease
  The public release of LeftoverLocals code
  ☆72Updated 2 years ago
• redplait / denvdis
  NVidia sass disassembler/inline patcher
  ☆36Updated last week
• can-lehmann / pathbeaver
  Symbolic execution of LLVM IR
  ☆14Updated 2 years ago
• haoxintu / FastKLEE
  FastKLEE: Faster Symbolic Execution via Reducing Redundant Bound Checking of Type-Safe Pointers
  ☆22Updated 2 years ago
• woodruffw / llvm-passgen
  A small tool for quickly generating LLVM passes
  ☆29Updated 3 months ago
• libLISA / liblisa
  libLISA: Instruction Discovery and Analysis on x86-64
  ☆123Updated 10 months ago
• vusec / uncontained
  Uncovering Container Confusion in the Linux Kernel
  ☆45Updated last year
• elManto / LLVMPassesForSecurity
  Source code of a few LLVM passes that I wrote to learn and that now I am sharing for my LLVM course for security engineering
  ☆28Updated 3 years ago
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆86Updated 3 years ago
• GJDuck / e9syscall
  A system call interception tool
  ☆58Updated last year
• security-pride / WASMaker
  WASMaker, a novel differential testing framework that can generate complicated Wasm test cases by disassembling and assembling real-world…
  ☆16Updated last year
• BenH11235 / rust-re-tour
  A tour of what some Rust language features look like after compilation.
  ☆50Updated 2 years ago
• rustsmith / rustsmith
  A randomized program fuzzer for the Rust programming language
  ☆64Updated 2 years ago
• cispa / hammulator
  Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)
  ☆17Updated 3 months ago
• anfedotoff / gdb-command
  Library for manipulating gdb in batch mode
  ☆20Updated last year
• itewqq / SGX-PTE-SPY
  A migration for the page table entry based side-channel attack agains SGX enclaves.
  ☆19Updated 11 months ago
• rems-project / isla
  Symbolic execution tool for Sail ISA specifications
  ☆85Updated this week
• jameysharp / optir
  Compiler optimizer for arbitrary control flow based on equality saturation
  ☆106Updated 3 years ago