Alternatives and similar repositories for qsym

Users that are interested in qsym are comparing it to the libraries listed below

• mboehme / aflfast
  AFLFast (extends AFL with Power Schedules)
  ☆422Updated 2 years ago
• panda-re / lava
  LAVA: Large-scale Automated Vulnerability Addition
  ☆409Updated this week
• mrash / afl-cov
  Produce code coverage results with gcov from afl-fuzz test cases
  ☆487Updated last year
• RUB-SysSec / redqueen
  ☆398Updated 4 years ago
• aflgo / aflgo
  Directed Greybox Fuzzing with AFL
  ☆550Updated last year
• aflsmart / aflsmart
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆519Updated 4 years ago
• AngoraFuzzer / Angora
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆952Updated 3 years ago
• Dongdongshe / neuzz
  neural network assisted fuzzer
  ☆412Updated 5 years ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆378Updated 6 years ago
• trailofbits / cb-multios
  DARPA Challenges Sets for Linux, Windows, and macOS
  ☆534Updated 2 years ago
• shellphish / driller
  Driller: augmenting AFL with symbolic execution!
  ☆964Updated 10 months ago
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆589Updated 7 years ago
• rohanpadhye / FuzzFactory
  Domain-Specific Fuzzing with Waypoints
  ☆241Updated 2 years ago
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆588Updated 9 months ago
• HexHive / retrowrite
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆735Updated 9 months ago
• carolemieux / afl-rb
  FairFuzz: AFL extension targeting rare branches
  ☆252Updated 6 years ago
• enzet / symbolic-execution
  History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)
  ☆495Updated last year
• HexHive / FuzzGen
  ☆306Updated 4 years ago
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆334Updated 3 weeks ago
• nautilus-fuzz / nautilus
  A grammar based feedback Fuzzer
  ☆461Updated last year
• eurecom-s3 / symcc
  SymCC: efficient compiler-based symbolic execution
  ☆856Updated 8 months ago
• eurecom-s3 / symqemu
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆368Updated 8 months ago
• HexHive / T-Fuzz
  ☆252Updated 5 years ago
• nccgroup / TriforceAFL
  AFL/QEMU fuzzing with full-system emulation.
  ☆640Updated 7 years ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆263Updated 8 months ago
• S2E / s2e
  S2E: A platform for multi-path program analysis with selective symbolic execution.
  ☆509Updated last week
• angr / pyvex
  Python bindings for Valgrind's VEX IR.
  ☆374Updated this week
• RUB-SysSec / ijon
  ☆203Updated 5 months ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆236Updated 3 years ago
• vusec / vuzzer
  ☆386Updated 6 years ago