Alternatives and similar repositories for symbolic-execution

Users that are interested in symbolic-execution are comparing it to the libraries listed below

• SQLab / symgdb

  View on GitHub
  SymGDB - symbolic execution plugin for gdb
  ☆218May 15, 2018Updated 7 years ago
• sslab-gatech / qsym

  View on GitHub
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆656Nov 23, 2022Updated 3 years ago
• julieeen / kleefl

  View on GitHub
  Seeding fuzzers with symbolic execution
  ☆203Oct 20, 2017Updated 8 years ago
• saswatanand / symexbib

  View on GitHub
  A bibliography of papers related to symbolic execution
  ☆291Aug 12, 2016Updated 9 years ago
• ksluckow / awesome-symbolic-execution

  View on GitHub
  A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.
  ☆1,465Jun 20, 2025Updated 7 months ago
• shellphish / driller

  View on GitHub
  Driller: augmenting AFL with symbolic execution!
  ☆965Mar 24, 2025Updated 10 months ago
• vusec / vuzzer

  View on GitHub
  ☆386Oct 28, 2019Updated 6 years ago
• ercoppa / symbolic-execution-tutorial

  View on GitHub
  Tutorial on Symbolic Execution. Hands-on session is based on the angr framework.
  ☆135May 14, 2021Updated 4 years ago
• RUB-SysSec / kAFL

  View on GitHub
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆590Jan 10, 2019Updated 7 years ago
• staticafi / symbiotic

  View on GitHub
  Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
  ☆335Feb 2, 2026Updated last week
• nccgroup / TriforceAFL

  View on GitHub
  AFL/QEMU fuzzing with full-system emulation.
  ☆640Sep 9, 2018Updated 7 years ago
• aflsmart / aflsmart

  View on GitHub
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆519Jan 18, 2022Updated 4 years ago
• codelion / pathgrind

  View on GitHub
  Path based Dynamic Analysis
  ☆118Mar 25, 2017Updated 8 years ago
• JonathanSalwan / Triton

  View on GitHub
  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…
  ☆4,049Dec 2, 2025Updated 2 months ago
• lunixbochs / usercorn

  View on GitHub
  dynamic binary analysis via platform emulation
  ☆904Jun 1, 2023Updated 2 years ago
• eurecom-s3 / symcc

  View on GitHub
  SymCC: efficient compiler-based symbolic execution
  ☆856May 12, 2025Updated 9 months ago
• tum-i4 / macke

  View on GitHub
  Modular And Compositional analysis with KLEE Engine
  ☆117Dec 17, 2019Updated 6 years ago
• decaf-project / DECAF

  View on GitHub
  DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the D…
  ☆835Nov 19, 2024Updated last year
• airbus-seclab / bincat

  View on GitHub
  Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…
  ☆1,844Feb 25, 2025Updated 11 months ago
• illera88 / Ponce

  View on GitHub
  IDA 2016 plugin contest winner! Symbolic Execution just one-click away!
  ☆1,609Jun 11, 2025Updated 8 months ago
• googleprojectzero / CompareCoverage

  View on GitHub
  Clang instrumentation module for tracing variable and buffer comparisons in C/C++ and saving the coverage data to .sancov files
  ☆202Mar 14, 2019Updated 6 years ago
• hunter-ht-2018 / ptfuzzer

  View on GitHub
  Improving AFL by using Intel PT to collect branch information
  ☆292Jul 26, 2019Updated 6 years ago
• Dor1s / libfuzzer-workshop

  View on GitHub
  Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.
  ☆1,296Jun 29, 2023Updated 2 years ago
• season-lab / survey-symbolic-execution

  View on GitHub
  A survey by the SEASON lab on symbolic execution tools and techniques. The survey has appeared in ACM CSUR in 2018.
  ☆84May 3, 2018Updated 7 years ago
• trailofbits / deepstate

  View on GitHub
  A unit test-like interface for fuzzing and symbolic execution
  ☆851Aug 22, 2025Updated 5 months ago
• CENSUS / shadow

  View on GitHub
  jemalloc heap exploitation framework
  ☆466Nov 29, 2021Updated 4 years ago
• trailofbits / manticore

  View on GitHub
  Symbolic execution tool
  ☆3,835Nov 21, 2025Updated 2 months ago
• kokjo / universalrop

  View on GitHub
  Small tool for generating ropchains using unicorn and z3
  ☆198Feb 22, 2018Updated 7 years ago
• SeanHeelan / HeapLayout

  View on GitHub
  Source code for paper 'Automatic Heap Layout Manipulation for Exploitation'
  ☆103Nov 24, 2019Updated 6 years ago
• RUB-SysSec / syntia

  View on GitHub
  Program synthesis based deobfuscation framework for the USENIX 2017 paper "Syntia: Synthesizing the Semantics of Obfuscated Code"
  ☆315Jun 11, 2020Updated 5 years ago
• nezha-dt / nezha

  View on GitHub
  Differential fuzzing for the masses!
  ☆154Aug 9, 2017Updated 8 years ago
• QBDI / QBDI

  View on GitHub
  A Dynamic Binary Instrumentation framework based on LLVM.
  ☆1,723Jan 14, 2026Updated last month
• BinaryAnalysisPlatform / bap

  View on GitHub
  Binary Analysis Platform
  ☆2,212Apr 30, 2025Updated 9 months ago
• HexHive / retrowrite

  View on GitHub
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆736Apr 26, 2025Updated 9 months ago
• 1111joe1111 / ida_ea

  View on GitHub
  A set of exploitation/reversing aids for IDA
  ☆422Nov 28, 2017Updated 8 years ago
• S2E / s2e-old

  View on GitHub
  This is the archived S2E 1.0 repo. We do not maintain it anymore.
  ☆315Jun 25, 2020Updated 5 years ago
• andreafioraldi / IDAngr

  View on GitHub
  Use angr in the IDA Pro debugger generating a state from the current debug session
  ☆281Jul 22, 2020Updated 5 years ago
• shellphish / fuzzer

  View on GitHub
  A Python interface to AFL, allowing for easy injection of testcases and other functionality.
  ☆647Apr 30, 2019Updated 6 years ago
• HexHive / T-Fuzz

  View on GitHub
  ☆252Mar 13, 2020Updated 5 years ago