Alternatives and similar repositories for klee-taint

Users that are interested in klee-taint are comparing it to the libraries listed below

• MarkusTeufelberger / afl-ddmin-mod
  Test case minimizer for afl-fuzz
  ☆26Updated 8 years ago
• c01db33f / concolica
  Python concolic execution framework for program analysis
  ☆67Updated 10 years ago
• vanhauser-thc / afl-pin
  run AFL with pintool
  ☆66Updated 5 years ago
• m000 / dtracker
  DataTracker: A Pin tool for collecting high-fidelity data provenance from unmodified programs.
  ☆95Updated 7 years ago
• programa-stic / ropc-llvm
  ropc-llvm is a PoC of a Turing complete ROP compiler with support for a subset of LLVM IR. It is an extension of ropc.
  ☆69Updated 11 years ago
• SVL-PSU / crete-dev
  CRETE under development
  ☆59Updated 5 years ago
• bx / bootloader_instrumentation_suite
  Bootloader research tools (very much a work in progress)
  ☆37Updated 6 years ago
• s3team / loop
  Logic-Oriented Opaque Predicate Detection in Obfuscated Binary Code
  ☆51Updated 9 years ago
• choller / afl
  Mozilla fork of the American Fuzzy Lop repo
  ☆46Updated 6 years ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 8 years ago
• angr / fidget
  A tool to add simple inline patches to a binary to rearrange its stack frames, and other things!
  ☆46Updated 3 years ago
• farosato / angr-antievasion
  Final project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
  ☆34Updated 7 years ago
• test-pipeline / orthrus
  A tool to manage, conduct, and assess dictionary-based fuzz testing
  ☆64Updated 7 years ago
• vlad902 / kernel-uninitialized-memory-checker
  A clang analyzer checker that looks for kernel uninitialized memory disclosures to userland.
  ☆59Updated 6 years ago
• melynx / taintinduce
  TaintInduce is a project which aims to automate the creation of taint propagation rules for unknown instruction sets.
  ☆59Updated 4 years ago
• andreafioraldi / angrdbg
  Abstract library to generate angr states from a debugger state
  ☆60Updated 5 years ago
• pagabuc / gfree
  Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries
  ☆95Updated 6 years ago
• maurer / symfuzz
  ☆63Updated 9 years ago
• vusec / typearmor
  Implementation of our S&P16 paper: A Tough Call: Mitigating Advanced Code-Reuse Attacks
  ☆48Updated 8 years ago
• zardus / idalink
  Some glue facilitating remote use of IDA (the Interactive DisAssembler) Python API.
  ☆77Updated 5 years ago
• dpc-grindland / Fuzzgrind
  A fully automatic fuzzing tool for Valgrind, unofficial mirror for http://esec-lab.sogeti.com/pages/fuzzgrind.html
  ☆36Updated 9 years ago
• c01db33f / reil
  REIL translation library
  ☆36Updated 9 years ago
• jrmuizel / kemufuzzer
  Automatically exported from code.google.com/p/kemufuzzer
  ☆26Updated 10 years ago
• vusec / dangsan
  ☆65Updated 4 years ago
• bshastry / afl-sancov
  AFL coverage tool using Clang SanitizerCoverage
  ☆37Updated 8 years ago
• rpaleari / fuzztrace
  A "general-purpose" tracing tool
  ☆39Updated 10 years ago
• dennisaa / patharmor
  PathArmor context-sensitive CFI implementation
  ☆45Updated 9 years ago
• ouspg / libfuzzerfication
  libfuzzerfication - fuzzing for the rest of us!
  ☆62Updated 8 years ago
• trailofbits / DomTreSat
  Dominator Tree LLVM Pass to Test Satisfiability
  ☆46Updated 9 years ago
• shellphish / driller-afl
  A version of AFL tailored for Driller's use in analyzing CGC binaries.
  ☆80Updated 8 years ago