Alternatives and similar repositories for research

Users that are interested in research are comparing it to the libraries listed below

• felixwilhelm / mario_baslr
  PoC for breaking hypervisor ASLR using branch target buffer collisions
  ☆166Updated 8 years ago
• utds3lab / pemu
  ☆105Updated 10 years ago
• thomasdullien / heap_history_viewer
  A program to draw rectangles from heap traces.
  ☆135Updated 5 years ago
• felixwilhelm / xenpwn
  Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization
  ☆144Updated 9 years ago
• airbus-seclab / crashos
  A tool dedicated to the research of vulnerabilities in hypervisors by creating unusual system configurations.
  ☆185Updated 3 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆162Updated 8 years ago
• roachspray / opcde2017
  Slides and very basic examples
  ☆112Updated 8 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆124Updated 9 years ago
• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆177Updated last year
• sciencemanx / dress
  add symbols back into a stripped ELF binary (~strip)
  ☆175Updated 8 years ago
• lifting-bits / grr
  High-throughput fuzzer and emulator of DECREE binaries
  ☆242Updated 5 years ago
• ucsb-seclab / leakless
  Function redirection via ELF tricks.
  ☆161Updated 10 years ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆109Updated 6 years ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 9 years ago
• pagabuc / gfree
  Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries
  ☆95Updated 7 years ago
• dennisaa / patharmor
  PathArmor context-sensitive CFI implementation
  ☆45Updated 9 years ago
• jonoberheide / ksymhunter
  Routines for hunting down kernel symbols.
  ☆82Updated 14 years ago
• guedou / r2m2
  radare2 + miasm2 = ♥
  ☆103Updated 5 years ago
• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆286Updated 9 years ago
• bnagy / afl-trivia
  Short, unrelated helper scripts for users of AFL (the fuzzer)
  ☆112Updated 9 years ago
• feliam / pysymemu
  An amd64 symbolic emulator
  ☆312Updated 4 years ago
• nezha-dt / nezha
  Differential fuzzing for the masses!
  ☆153Updated 8 years ago
• Comsecuris / luaqemu
  QEMU-based framework exposing several of QEMU-internal APIs to a LuaJIT core injected into QEMU itself. Among other things, this allows f…
  ☆151Updated 6 years ago
• pakt / ropc
  A Turing complete ROP compiler
  ☆326Updated 12 years ago
• gamozolabs / falkervisor_grilled_cheese
  ☆172Updated 3 years ago
• jyao1 / STM
  ☆70Updated 5 years ago
• programa-stic / ropc-llvm
  ropc-llvm is a PoC of a Turing complete ROP compiler with support for a subset of LLVM IR. It is an extension of ropc.
  ☆69Updated 11 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆198Updated 7 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆187Updated 4 years ago
• S2E / docs
  Documentation and Quick Start Guides for the S2E Symbolic Execution Platform
  ☆76Updated 5 years ago