Tutorial on Symbolic Execution. Hands-on session is based on the angr framework.
☆135May 14, 2021Updated 4 years ago
Alternatives and similar repositories for symbolic-execution-tutorial
Users that are interested in symbolic-execution-tutorial are comparing it to the libraries listed below
Sorting:
- History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)☆495Aug 24, 2024Updated last year
- SafeInit protects software from uninitialized read vulnerabilities - code released for NDSS 2017☆26May 5, 2021Updated 4 years ago
- SymCC: efficient compiler-based symbolic execution☆856May 12, 2025Updated 9 months ago
- Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE☆334Feb 2, 2026Updated 3 weeks ago
- A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.☆1,466Jun 20, 2025Updated 8 months ago
- OCaml library to transform an Llvm control flow graph in an SMT formula.☆13Apr 20, 2018Updated 7 years ago
- Super Fast Concolic Execution Engine based on Source Code Taint Tracing☆102Jul 14, 2022Updated 3 years ago
- Code and artifacts of the "Dissecting American Fuzzy Lop - A FuzzBench Evaluation" paper☆13Oct 3, 2022Updated 3 years ago
- run AFL with pintool☆67Feb 24, 2020Updated 6 years ago
- A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes☆43May 7, 2023Updated 2 years ago
- cclyzer++ is a precise and scalable pointer analysis for LLVM code.☆150Jan 30, 2025Updated last year
- Intermediate Representation for Binary analysis and transformation☆349Jan 14, 2026Updated last month
- A unit test-like interface for fuzzing and symbolic execution☆852Aug 22, 2025Updated 6 months ago
- Instruction decoder microbenchmark suite☆11Oct 31, 2017Updated 8 years ago
- A framework for finding completeness bugs in optimizing compiler toolchains.☆23Mar 4, 2024Updated last year
- Use angr in the IDA Pro debugger generating a state from the current debug session☆282Jul 22, 2020Updated 5 years ago
- Slides and Material for "SymbolicExecutionDemystified" Presentation @ Insomni'Hack 2022☆100Mar 26, 2022Updated 3 years ago
- FuzzSplore: Visualizing Feedback-Driven Fuzzing Techniques☆37Feb 6, 2021Updated 5 years ago
- Static range analysis for the LLVM compiler infrastructure.☆56Oct 8, 2019Updated 6 years ago
- Replication package for Mining Input Grammars From Dynamic Control Flow☆27Aug 14, 2020Updated 5 years ago
- clang-based search engine for C/C++ data structures, classes, prototypes & macros☆103Jul 15, 2025Updated 7 months ago
- Driller: augmenting AFL with symbolic execution!☆964Mar 24, 2025Updated 11 months ago
- Grey-box Concolic Testing on Binary Code (ICSE '19)☆156Oct 4, 2021Updated 4 years ago
- An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.☆588Feb 20, 2026Updated last week
- A data-flow-guided fuzzer☆124Aug 19, 2023Updated 2 years ago
- QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing☆655Nov 23, 2022Updated 3 years ago
- The Art, Science, and Engineering of Fuzzing: A Survey☆229Jan 3, 2026Updated last month
- CAFA: A Checksum-Aware Fuzzing Assistant For More Coverage☆31Sep 28, 2018Updated 7 years ago
- DOM fuzzers - not maintained anymore☆17Oct 10, 2019Updated 6 years ago
- Final project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).☆35Oct 23, 2017Updated 8 years ago
- print information from LLVM dataflow analyses☆13Jan 22, 2020Updated 6 years ago
- SymQEMU: Compilation-based symbolic execution for binaries☆368May 5, 2025Updated 9 months ago
- Code and exercises for a workshop on z3 and angr☆234Dec 29, 2020Updated 5 years ago
- Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code☆236Mar 14, 2022Updated 3 years ago
- Static Analyzer for LLVM bitcode based on Abstract Interpretation. **Update**: clam is still actively maintained. Please use branch dev1…☆287Apr 21, 2024Updated last year
- libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)☆269Feb 21, 2025Updated last year
- FuZZan: Efficient Sanitizer Metadata Design for Fuzzing☆125Mar 31, 2021Updated 4 years ago
- Modular And Compositional analysis with KLEE Engine☆117Dec 17, 2019Updated 6 years ago
- Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…☆954Jul 18, 2022Updated 3 years ago