Alternatives and similar repositories for symbolic-execution

Users that are interested in symbolic-execution are comparing it to the libraries listed below

• staticafi / symbiotic
  Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
  ☆325Updated last month
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆813Updated this week
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆512Updated 3 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆259Updated last year
• mboehme / aflfast
  AFLFast (extends AFL with Power Schedules)
  ☆417Updated last year
• carolemieux / afl-rb
  FairFuzz: AFL extension targeting rare branches
  ☆247Updated 6 years ago
• shellphish / driller
  Driller: augmenting AFL with symbolic execution!
  ☆934Updated last month
• sslab-gatech / qsym
  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
  ☆641Updated 2 years ago
• saswatanand / symexbib
  A bibliography of papers related to symbolic execution
  ☆287Updated 8 years ago
• trailofbits / cb-multios
  DARPA Challenges Sets for Linux, Windows, and macOS
  ☆526Updated last year
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆564Updated last month
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆578Updated 6 years ago
• vusec / vuzzer
  ☆383Updated 5 years ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆364Updated 5 years ago
• utds3lab / multiverse
  A static binary rewriter that does not use heuristics
  ☆304Updated 7 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆228Updated 3 years ago
• S2E / s2e
  S2E: A platform for multi-path program analysis with selective symbolic execution.
  ☆470Updated 5 months ago
• AngoraFuzzer / Angora
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆943Updated 2 years ago
• rohanpadhye / FuzzFactory
  Domain-Specific Fuzzing with Waypoints
  ☆236Updated 2 years ago
• RUB-SysSec / redqueen
  ☆386Updated 3 years ago
• jkinder / jakstab
  The Jakstab static analysis platform for binaries
  ☆158Updated 5 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆711Updated 2 weeks ago
• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆400Updated this week
• S2E / s2e-old
  This is the archived S2E 1.0 repo. We do not maintain it anymore.
  ☆314Updated 4 years ago
• HexHive / FuzzGen
  ☆304Updated 3 years ago
• Dongdongshe / neuzz
  neural network assisted fuzzer
  ☆402Updated 4 years ago
• julieeen / kleefl
  Seeding fuzzers with symbolic execution
  ☆201Updated 7 years ago
• thomasjball / PyExZ3
  Python Exploration with Z3
  ☆330Updated 6 years ago
• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆333Updated last week
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆530Updated last year