Alternatives and similar repositories for kernel-fuzzing

Users that are interested in kernel-fuzzing are comparing it to the libraries listed below

• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆177Updated last year
• nezha-dt / nezha
  Differential fuzzing for the masses!
  ☆153Updated 8 years ago
• S2E / docs
  Documentation and Quick Start Guides for the S2E Symbolic Execution Platform
  ☆76Updated 5 years ago
• julieeen / kleefl
  Seeding fuzzers with symbolic execution
  ☆201Updated 7 years ago
• Cisco-Talos / covnavi
  ☆63Updated 6 years ago
• bshastry / afl-sancov
  AFL coverage tool using Clang SanitizerCoverage
  ☆37Updated 8 years ago
• vusec / dangsan
  ☆65Updated 4 years ago
• iovisor / bpf-fuzzer
  fuzzing framework based on libfuzzer and clang sanitizer
  ☆167Updated 6 years ago
• test-pipeline / orthrus
  A tool to manage, conduct, and assess dictionary-based fuzz testing
  ☆63Updated 7 years ago
• shellphish / driller-afl
  A version of AFL tailored for Driller's use in analyzing CGC binaries.
  ☆79Updated 8 years ago
• floyd-fuh / afl-crash-analyzer
  Another crash analyzer tool for the American Fuzzy Lop (AFL) fuzzer
  ☆119Updated 8 years ago
• MartijnB / disfuzz-afl
  Distributed Fuzzing for afl
  ☆71Updated 9 years ago
• MozillaSecurity / libfuzzer-python-bridge
  INACTIVE - http://mzl.la/ghe-archive - A Python3 bridge for implementing custom libFuzzer mutators
  ☆74Updated 6 years ago
• trailofbits / clang-cfi-showcase
  Sample programs that illustrate how to use control flow integrity with the clang compiler
  ☆106Updated 6 years ago
• rc0r / afl-fuzz
  Non-official repository for lcamtuf's American Fuzzy Lop http://lcamtuf.coredump.cx/afl/
  ☆64Updated 7 years ago
• tum-i4 / macke
  Modular And Compositional analysis with KLEE Engine
  ☆116Updated 5 years ago
• SeanHeelan / HeapLayout
  Source code for paper 'Automatic Heap Layout Manipulation for Exploitation'
  ☆100Updated 5 years ago
• shellphish / shellphish-afl
  A pip wrapper around AFL.
  ☆88Updated 4 years ago
• bitblaze-fuzzball / fuzzball
  FuzzBALL: Vine-based Binary Symbolic Execution
  ☆215Updated 3 weeks ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆218Updated 2 months ago
• renatahodovan / fuzzinator
  Fuzzinator Random Testing Framework
  ☆192Updated last week
• hardenedlinux / harbian-qa
  Bug hunting through fuzzer/*-sanitizer/etc...
  ☆133Updated 4 years ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 9 years ago
• m000 / dtracker
  DataTracker: A Pin tool for collecting high-fidelity data provenance from unmodified programs.
  ☆95Updated 7 years ago
• mothran / aflpin
  aflpin enables afl to fuzz blackbox binaries using a pin tool to trace execution branches.
  ☆171Updated 10 years ago
• sslab-gatech / perf-fuzz
  ☆96Updated 6 years ago
• sslab-gatech / unisan
  UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages
  ☆43Updated 3 years ago
• S2E / s2e-env
  Your S2E project management tools. Visit https://s2e.systems/docs to get started.
  ☆95Updated last week
• ouspg / libfuzzerfication
  libfuzzerfication - fuzzing for the rest of us!
  ☆61Updated 8 years ago
• junxzm1990 / pomp
  ☆55Updated 5 years ago