Alternatives and similar repositories for kAFL

Users that are interested in kAFL are comparing it to the libraries listed below

• vlad902 / kernel-uninitialized-memory-checker
  A clang analyzer checker that looks for kernel uninitialized memory disclosures to userland.
  ☆58Updated 6 years ago
• gamozolabs / aflbench
  An AFL scaling benchmarking tool
  ☆18Updated 5 years ago
• bkth / chakra-bugs
  ☆31Updated 5 years ago
• andreafioraldi / QEMU-SanCov
  SanitizerCoverage hooks and coverage reports for user-mode QEMU
  ☆12Updated 6 years ago
• Vector35 / BinaryNinjaImporter
  ☆27Updated 7 years ago
• jrmuizel / kemufuzzer
  Automatically exported from code.google.com/p/kemufuzzer
  ☆26Updated 10 years ago
• JeffJerseyCow / qemu2drcov
  QEMU to drcov trace file
  ☆11Updated 5 years ago
• Bl1nnnk / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆18Updated 5 years ago
• Hypersonic / afl-dispatch
  Use Dispatch to add AFL-compatible instrumentation to your binaries
  ☆12Updated 8 years ago
• 4B5F5F4B / HyperV
  PoC for CVE-2017-0075
  ☆37Updated 6 years ago
• eqv / aflq_fast_cov
  A fast binary coverage measurement tool based on AFL's Qemu mode
  ☆33Updated 4 years ago
• andreafioraldi / FuzzSplore
  FuzzSplore: Visualizing Feedback-Driven Fuzzing Techniques
  ☆35Updated 4 years ago
• agustingianni / instrumentation
  Assorted pintools
  ☆30Updated 5 years ago
• NeatMonster / MCExplorer
  Python portage of the Microcode Explorer plugin
  ☆31Updated 6 years ago
• vlad902 / kernel-intoverflow-taint-checker
  A hacky clang analyzer checker that looks for potentially exploitable kernel integer overflows.
  ☆20Updated 7 years ago
• renorobert / grub-bhyve-bugs
  ☆13Updated 5 years ago
• AndrewFasano / ghidra-unicorn
  Export a binary from ghidra to emulate with unicorn
  ☆27Updated 6 years ago
• melbshark / relative-pattern
  Recover control flow graph from obfuscated codes
  ☆38Updated 10 years ago
• Peterpan0927 / CVE-2017-2370
  on Mac 10.12.2
  ☆18Updated 7 years ago
• toshipiazza / Tigress_angr
  Futile attempt to solve the Tigress challenges using angr
  ☆22Updated 6 years ago
• lvbluesky / MacOS-iOS-kernel-necp_client_action-OOB-write-vulnerability-
  ☆21Updated 7 years ago
• toshipiazza / drcfg
  Dynamic Control Flow Recovery
  ☆25Updated 7 years ago
• vanhauser-thc / dynTaintTracer
  a taint tracer based on DynamoRIO, currently ARM only
  ☆40Updated 5 years ago
• RolfRolles / SMTSample
  Course sample for SMT-Based Binary Program Analysis training class
  ☆32Updated 7 years ago
• 0xKira / api_palette
  A code-searching/completion tool, for IDA APIs
  ☆83Updated 10 months ago
• intelpt / processor-trace
  libipt - an Intel(R) Processor Trace decoder library
  ☆18Updated 8 years ago
• progmboy / kernel_vul_poc
  ☆31Updated 7 years ago
• zhechkoz / PwIN
  Security Evaluation of Dynamic Binary Instrumentation Engines
  ☆81Updated 7 years ago
• astarasikov / macos-gpu-fuzzing-public
  ☆28Updated 4 years ago
• tetrane / tetrane-oss
  Open Source Software modified or written by Tetrane https://www.tetrane.com for the REVEN product.
  ☆21Updated 2 years ago