enzet / symbolic-execution

Related projects ⓘ

Alternatives and complementary repositories for symbolic-execution

• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆631Updated last year
• shellphish / driller
  Driller: augmenting AFL with symbolic execution!
  ☆904Updated 2 years ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆789Updated 4 months ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆533Updated 2 months ago
• carolemieux / afl-rb
  FairFuzz: AFL extension targeting rare branches
  ☆241Updated 5 years ago
• mboehme / aflfast
  AFLFast (extends AFL with Power Schedules)
  ☆410Updated last year
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆249Updated last year
• staticafi / symbiotic
  Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
  ☆313Updated this week
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆506Updated 2 years ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆573Updated 5 years ago
• saswatanand / symexbib
  A bibliography of papers related to symbolic execution
  ☆283Updated 8 years ago
• vusec / vuzzer
  ☆379Updated 5 years ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆358Updated 5 years ago
• trailofbits / cb-multios
  DARPA Challenges Sets for Linux, Windows, and macOS
  ☆520Updated last year
• rohanpadhye / FuzzFactory
  Domain-Specific Fuzzing with Waypoints
  ☆237Updated last year
• utds3lab / multiverse
  A static binary rewriter that does not use heuristics
  ☆298Updated 6 years ago
• HexHive / FuzzGen
  ☆296Updated 3 years ago
• S2E / s2e
  S2E: A platform for multi-path program analysis with selective symbolic execution.
  ☆451Updated 3 weeks ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆680Updated 6 months ago
• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆371Updated 3 weeks ago
• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆331Updated 2 weeks ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆224Updated 2 years ago
• RUB-SysSec / redqueen
  ☆373Updated 3 years ago
• HexHive / T-Fuzz
  ☆248Updated 4 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆503Updated 8 months ago
• AngoraFuzzer / Angora
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆925Updated 2 years ago
• thomasjball / PyExZ3
  Python Exploration with Z3
  ☆322Updated 6 years ago
• nautilus-fuzz / nautilus
  A grammar based feedback Fuzzer
  ☆425Updated 3 months ago
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆370Updated 2 years ago
• S2E / s2e-old
  This is the archived S2E 1.0 repo. We do not maintain it anymore.
  ☆314Updated 4 years ago