Alternatives and similar repositories for qsym

Users that are interested in qsym are comparing it to the libraries listed below

• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆405Updated last month
• mrash / afl-cov
  Produce code coverage results with gcov from afl-fuzz test cases
  ☆481Updated last year
• mboehme / aflfast
  AFLFast (extends AFL with Power Schedules)
  ☆420Updated 2 years ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆581Updated 6 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆535Updated last year
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆517Updated 3 years ago
• RUB-SysSec / redqueen
  ☆390Updated 3 years ago
• Dongdongshe / neuzz
  neural network assisted fuzzer
  ☆408Updated 5 years ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆723Updated 3 months ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆370Updated 6 years ago
• trailofbits / cb-multios
  DARPA Challenges Sets for Linux, Windows, and macOS
  ☆530Updated 2 years ago
• AngoraFuzzer / Angora
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆948Updated 3 years ago
• shellphish / driller
  Driller: augmenting AFL with symbolic execution!
  ☆948Updated 5 months ago
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆832Updated 3 months ago
• HexHive / FuzzGen
  ☆305Updated 4 years ago
• carolemieux / afl-rb
  FairFuzz: AFL extension targeting rare branches
  ☆250Updated 6 years ago
• rohanpadhye / FuzzFactory
  Domain-Specific Fuzzing with Waypoints
  ☆237Updated 2 years ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆577Updated 4 months ago
• enzet / symbolic-execution
  History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)
  ☆493Updated 11 months ago
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆319Updated 2 months ago
• nccgroup / TriforceAFL
  AFL/QEMU fuzzing with full-system emulation.
  ☆636Updated 6 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆260Updated 2 months ago
• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆355Updated 3 months ago
• nautilus-fuzz / nautilus
  A grammar based feedback Fuzzer
  ☆449Updated last year
• S2E / s2e
  S2E: A platform for multi-path program analysis with selective symbolic execution.
  ☆482Updated 8 months ago
• vusec / vuzzer
  ☆384Updated 5 years ago
• HexHive / T-Fuzz
  ☆251Updated 5 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆232Updated 3 years ago
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆363Updated this week
• ucsb-seclab / dr_checker
  DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers
  ☆339Updated 3 years ago