Alternatives and similar repositories for sandshrew:

Users that are interested in sandshrew are comparing it to the libraries listed below

• trailofbits / umberto
  poststructural fuzzing
  ☆31Updated 5 years ago
• ernw / binja-ipython
  A plugin to integrate an IPython kernel into Binary Ninja.
  ☆29Updated 6 years ago
• trailofbits / KRFAnalysis
  Collection of LLVM passes and triage tools for use with the KRF fuzzer
  ☆36Updated 2 years ago
• trailofbits / DomTreSat
  Dominator Tree LLVM Pass to Test Satisfiability
  ☆47Updated 8 years ago
• gamozolabs / fuzztheory
  A project for simulating fuzzing such that analysis can be done on coverage/feedback/scaling mechanisms
  ☆9Updated 4 years ago
• reflare / afl-monitor
  A monitoring script for AFL
  ☆39Updated 8 years ago
• atrosinenko / qinst
  Draft of generic instrumentation tool based on QEMU using eBPF to implement trivial instrumentations with trivial code
  ☆18Updated 4 years ago
• JHUAPL / ALLSTAR
  Assembled Labeled Library for Static Analysis Research - Debian packages built for 6 architectures, storing compiler artifacts, binaries…
  ☆28Updated 3 years ago
• Sbouber / honggfuzz-dharma
  Integrate the dharma grammar fuzzer into honggfuzz
  ☆26Updated 7 years ago
• falconre / finch
  Symbolic Execution over Falcon IL
  ☆29Updated 3 years ago
• vusec / safeinit
  SafeInit protects software from uninitialized read vulnerabilities - code released for NDSS 2017
  ☆24Updated 3 years ago
• mechanicalnull / phantasm
  Binary Ninja plugin for visualizing coverage over time
  ☆25Updated 3 years ago
• AFLplusplus / StdFuzzer
  StdFuzzer is the reference implementation of a generic bit-level fuzzer with LibAFL
  ☆48Updated last month
• lifting-bits / klee
  KLEE Symbolic Execution Engine
  ☆60Updated 5 years ago
• gamozolabs / fuzzyneural
  A neural network using fuzzing-style feedback rather than back-propagation
  ☆18Updated 4 years ago
• yellowbyte / opaque-predicates-detective
  An approach to detect opaque predicates by identifying the damage caused by the obfuscation.
  ☆28Updated 3 years ago
• fgsect / JMPscare
  tool for multi-execution jump coverage introspection
  ☆63Updated 2 weeks ago
• trailofbits / anselm
  Detect patterns of bad behavior in function calls
  ☆25Updated 4 years ago
• ctfhacker / binja-rs
  Some Rust bindings for Binary Ninja
  ☆30Updated last year
• gamozolabs / guifuzz
  A GUI fuzzing application set up to fuzz calc.exe right now
  ☆36Updated 4 years ago
• sushant94 / rune
  rune - radare2 based symbolic emulator
  ☆26Updated 7 years ago
• gamozolabs / basic_mutator
  About as basic of a mutator as you can get, but it does the trick in most situations
  ☆61Updated 4 years ago
• ctfhacker / ni-rs
  Radamsa written in c ported to Rust
  ☆11Updated last year
• b17fr13nds / lxfuzz
  lxfuzz is a grey-box kernel fuzzer used for linux. it is scalable because of qemu being used to emulate in a way to be able to freely cho…
  ☆21Updated 6 months ago
• grimm-co / linuxklee
  Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE
  ☆19Updated 5 years ago
• dvorak42 / confuzzer
  Concolic Execution Fuzzer
  ☆24Updated 3 years ago
• csienslab-PCC / PathConstraintClassifier
  ☆9Updated 5 years ago
• Navidem / binarymutation
  The Binary Mutation code based on Uroboros
  ☆14Updated 5 years ago
• atredis-jordan / SymbolicTriagePost
  Supporting Materials for “Symbolic Triage” blog post
  ☆24Updated 2 years ago
• ucsb-seclab / autofacts
  Towards Automatically Generating a Sound and Complete Dataset for Evaluating Static Analysis Tools
  ☆14Updated 5 years ago