Alternatives and similar repositories for kernel-fuzzing

Users that are interested in kernel-fuzzing are comparing it to the libraries listed below

• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆177Updated last year
• bshastry / afl-sancov
  AFL coverage tool using Clang SanitizerCoverage
  ☆37Updated 9 years ago
• S2E / docs
  Documentation and Quick Start Guides for the S2E Symbolic Execution Platform
  ☆76Updated 5 years ago
• julieeen / kleefl
  Seeding fuzzers with symbolic execution
  ☆203Updated 8 years ago
• test-pipeline / orthrus
  A tool to manage, conduct, and assess dictionary-based fuzz testing
  ☆63Updated 8 years ago
• Cisco-Talos / covnavi
  ☆64Updated 6 years ago
• nezha-dt / nezha
  Differential fuzzing for the masses!
  ☆153Updated 8 years ago
• iovisor / bpf-fuzzer
  fuzzing framework based on libfuzzer and clang sanitizer
  ☆167Updated 6 years ago
• vusec / dangsan
  ☆64Updated 4 years ago
• MozillaSecurity / libfuzzer-python-bridge
  INACTIVE - http://mzl.la/ghe-archive - A Python3 bridge for implementing custom libFuzzer mutators
  ☆74Updated 6 years ago
• MartijnB / disfuzz-afl
  Distributed Fuzzing for afl
  ☆72Updated 10 years ago
• vusec / typearmor
  Implementation of our S&P16 paper: A Tough Call: Mitigating Advanced Code-Reuse Attacks
  ☆48Updated 8 years ago
• tum-i4 / macke
  Modular And Compositional analysis with KLEE Engine
  ☆117Updated 5 years ago
• m000 / dtracker
  DataTracker: A Pin tool for collecting high-fidelity data provenance from unmodified programs.
  ☆95Updated 7 years ago
• shellphish / driller-afl
  A version of AFL tailored for Driller's use in analyzing CGC binaries.
  ☆80Updated 8 years ago
• sslab-gatech / perf-fuzz
  ☆96Updated 6 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆222Updated 5 months ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 9 years ago
• mothran / aflpin
  aflpin enables afl to fuzz blackbox binaries using a pin tool to trace execution branches.
  ☆172Updated 10 years ago
• rc0r / afl-fuzz
  Non-official repository for lcamtuf's American Fuzzy Lop http://lcamtuf.coredump.cx/afl/
  ☆64Updated 7 years ago
• floyd-fuh / afl-crash-analyzer
  Another crash analyzer tool for the American Fuzzy Lop (AFL) fuzzer
  ☆120Updated 8 years ago
• SeanHeelan / HeapLayout
  Source code for paper 'Automatic Heap Layout Manipulation for Exploitation'
  ☆101Updated 6 years ago
• zcutlip / gdbinit-mips
  A gdbinit file that makes gdb much more usable for MIPS debugging.
  ☆38Updated 13 years ago
• dennisaa / patharmor
  PathArmor context-sensitive CFI implementation
  ☆45Updated 10 years ago
• sslab-gatech / kernel-analyzer
  ☆74Updated 6 years ago
• junxzm1990 / pomp
  ☆55Updated 5 years ago
• vanhauser-thc / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆74Updated 4 years ago
• S2E / s2e-env
  Your S2E project management tools. Visit https://s2e.systems/docs to get started.
  ☆95Updated 2 months ago
• 0xcl / clang-cfi-bypass-techniques
  Exploitation techniques to bypass Clang CFI when applied to Chromium
  ☆114Updated 7 years ago
• shellphish / shellphish-afl
  A pip wrapper around AFL.
  ☆86Updated 4 years ago