Alternatives and similar repositories for bochspwn

Users that are interested in bochspwn are comparing it to the libraries listed below

• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆310Updated 6 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆453Updated 7 years ago
• wmliang / pe-afl
  ☆250Updated 5 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆205Updated last year
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆211Updated 4 years ago
• trailofbits / AppJailLauncher
  CTF Challenge Framework for Windows 8 and above
  ☆155Updated 4 years ago
• HexHive / BOPC
  Block Oriented Programming -- Compiler
  ☆186Updated 5 years ago
• saaramar / Deterministic_LFH
  Have fun with the LowFragmentationHeap
  ☆251Updated 4 years ago
• 0xKira / qemu-vm-escape
  ☆285Updated 5 years ago
• acama / xrop
  Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
  ☆305Updated last year
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆292Updated 6 years ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆586Updated 6 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆303Updated 2 years ago
• Cr4sh / ioctlfuzzer
  Automatically exported from code.google.com/p/ioctlfuzzer
  ☆170Updated 10 years ago
• andreafioraldi / IDAngr
  Use angr in the IDA Pro debugger generating a state from the current debug session
  ☆280Updated 5 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆155Updated 7 years ago
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆202Updated 5 years ago
• s3team / VMHunt
  ☆182Updated 6 years ago
• FSecureLABS / z3_and_angr_binary_analysis_workshop
  Code and exercises for a workshop on z3 and angr
  ☆233Updated 4 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆188Updated 4 years ago
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆384Updated 3 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆138Updated 9 years ago
• linhlhq / TinyAFL
  ☆199Updated 2 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆219Updated 4 months ago
• angr / angr-dev
  Some helper scripts to set up an environment for angr development.
  ☆121Updated 3 months ago
• k0keoyo / Some-Kernel-Fuzzing-Paper
  Some kernel fuzzing paper about windows and linux
  ☆254Updated 8 years ago
• gamozolabs / applepie
  A hypervisor for fuzzing built with WHVP and Bochs
  ☆378Updated 6 years ago
• SB-GC-Labs / hAFL1
  ☆137Updated 4 years ago
• danigargu / syms2elf
  A plugin for Hex-Ray's IDA Pro and radare2 to export the symbols recognized to the ELF symbol table
  ☆212Updated 3 years ago
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆248Updated 6 years ago