trailofbits / llvm-sanitizer-tutorial

Related projects ⓘ

Alternatives and complementary repositories for llvm-sanitizer-tutorial

• GrammaTech / gtirb
  Intermediate Representation for Binary analysis and transformation
  ☆310Updated 2 months ago
• R-Fuzz / symsan
  A LLVM Sanitizer for Symbolic Tracing
  ☆208Updated 2 months ago
• sslab-gatech / ArcHeap
  ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
  ☆144Updated 3 years ago
• seahorn / sea-dsa
  A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
  ☆161Updated 5 months ago
• vusec / vuzzer64
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆176Updated 2 years ago
• PLSysSec / sys
  Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
  ☆224Updated 2 years ago
• mc-imperial / jfs
  Constraint solver based on coverage-guided fuzzing
  ☆239Updated 11 months ago
• wmkhoo / taintgrind
  A taint-tracking plugin for the Valgrind memory checking tool
  ☆249Updated last year
• AFLplusplus / Grammar-Mutator
  A grammar-based custom mutator for AFL++
  ☆234Updated 4 months ago
• vusec / parmesan
  ParmeSan: Sanitizer-guided Greybox Fuzzing
  ☆172Updated 7 months ago
• abenkhadra / bcov
  Static instrumentation tool for efficient binary-level coverage analysis.
  ☆145Updated 3 years ago
• rohanpadhye / FuzzFactory
  Domain-Specific Fuzzing with Waypoints
  ☆237Updated last year
• S2E / s2e-env
  Your S2E project management tools. Visit https://s2e.systems/docs to get started.
  ☆93Updated 3 months ago
• googleprojectzero / CompareCoverage
  Clang instrumentation module for tracing variable and buffer comparisons in C/C++ and saving the coverage data to .sancov files
  ☆201Updated 5 years ago
• AFLplusplus / LibAFL-legacy
  AFL++ as a library: gives you all the tools necessary to craft the best fuzzer for your targets with ease!
  ☆110Updated 3 years ago
• HexHive / magma
  A ground-truth fuzzing benchmark suite based on real programs with real bugs.
  ☆289Updated 4 months ago
• junxzm1990 / x86-sok
  ☆132Updated 3 weeks ago
• haoNoQ / clang-analyzer-guide
  An easy guide to Clang Static Analyzer extension.
  ☆138Updated 4 years ago
• carolemieux / afl-rb
  FairFuzz: AFL extension targeting rare branches
  ☆241Updated 5 years ago
• staticafi / symbiotic
  Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
  ☆313Updated this week
• GJDuck / LowFat
  Lean C/C++ Bounds Checking with Low-Fat Pointers
  ☆177Updated 2 years ago
• trailofbits / Honeybee
  An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite
  ☆128Updated 2 years ago
• S2E / s2e
  S2E: A platform for multi-path program analysis with selective symbolic execution.
  ☆451Updated 3 weeks ago
• julieeen / kleefl
  Seeding fuzzers with symbolic execution
  ☆201Updated 7 years ago
• AFLplusplus / AFL-Snapshot-LKM
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆135Updated 3 years ago
• compsec-snu / razzer
  A Kernel fuzzer focusing on race bugs
  ☆358Updated 5 years ago
• nyx-fuzz / libxdc
  The fastest Intel-PT decoder for fuzzing
  ☆361Updated 9 months ago
• nsumner / llvm-dataflow-analysis
  ☆62Updated 5 years ago
• hase-project / hase
  Timeless debugging with symbolic execution and processor trace
  ☆74Updated 3 years ago
• liuml07 / giri
  Dynamic Program Slicing in LLVM Compiler
  ☆134Updated 6 years ago