Alternatives and similar repositories for flawfinder:

Users that are interested in flawfinder are comparing it to the libraries listed below

• google / fuzztest
  ☆803Updated this week
• fkie-cad / cwe_checker
  cwe_checker finds vulnerable patterns in binary executables
  ☆1,199Updated 3 months ago
• 0xdea / semgrep-rules
  A collection of my Semgrep rules to facilitate vulnerability research.
  ☆616Updated 8 months ago
• aflnet / aflnet
  AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICST20.pdf)
  ☆911Updated 8 months ago
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆406Updated last week
• armijnhemel / binaryanalysis-ng
  Binary Analysis Next Generation (BANG)
  ☆495Updated 3 months ago
• google / clusterfuzzlite
  ClusterFuzzLite - Simple continuous fuzzing that runs in CI.
  ☆477Updated 3 months ago
• google / fuzzer-test-suite
  Set of tests for fuzzing engines
  ☆1,440Updated 3 years ago
• analysis-tools-dev / dynamic-analysis
  ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
  ☆984Updated 3 weeks ago
• google / fuzzbench
  FuzzBench - Fuzzer benchmarking as a service.
  ☆1,138Updated last month
• secure-software-engineering / phasar
  A LLVM-based static analysis framework.
  ☆975Updated this week
• joernio / joern
  Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…
  ☆2,313Updated this week
• google / centipede
  ☆253Updated last year
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆414Updated 2 years ago
• google / libprotobuf-mutator
  Library for structured fuzzing with protobuffers
  ☆612Updated last month
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,015Updated 2 months ago
• hardik05 / Damn_Vulnerable_C_Program
  An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.
  ☆688Updated 5 months ago
• jfoote / exploitable
  The 'exploitable' GDB plugin
  ☆728Updated 2 years ago
• GJDuck / EnvFuzz
  Fuzz anything with Program Environment Fuzzing
  ☆378Updated 2 months ago
• andrew-d / rough-auditing-tool-for-security
  Automatically exported from code.google.com/p/rough-auditing-tool-for-security
  ☆84Updated 3 years ago
• GaloisInc / MATE
  MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.
  ☆191Updated 2 years ago
• nccgroup / fuzzowski
  the Network Protocol Fuzzer that we will want to use.
  ☆749Updated last year
• uds-se / fuzzingbook
  Project page for "The Fuzzing Book"
  ☆1,154Updated 2 months ago
• boschresearch / gdbfuzz
  Fuzzing Embedded Systems using Hardware Breakpoints
  ☆182Updated last year
• nimble-code / Cobra
  An interactive (fast) static source code analyzer
  ☆157Updated last week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆149Updated this week
• ucsb-seclab / karonte
  Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware
  ☆404Updated 3 years ago
• conikeec / seeve
  A set of vulnerable C code snippets (with mapped CVEs)
  ☆74Updated 8 months ago
• googleprojectzero / TinyInst
  A lightweight dynamic instrumentation library
  ☆1,215Updated this week
• swinslow / cmake-spdx
  Create SPDX documents automatically with CMake build info
  ☆27Updated 3 years ago