Alternatives and similar repositories for FirmAFL

Users that are interested in FirmAFL are comparing it to the libraries listed below

• pr0v3rbs / FirmAE

  View on GitHub
  Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis
  ☆826Dec 25, 2025Updated last month
• ucsb-seclab / karonte

  View on GitHub
  Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware
  ☆421Sep 18, 2021Updated 4 years ago
• PAGalaxyLab / uniFuzzer

  View on GitHub
  A fuzzing tool for closed-source binaries based on Unicorn and LibFuzzer
  ☆344Aug 23, 2019Updated 6 years ago
• fgsect / unicorefuzz

  View on GitHub
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆305Jan 2, 2023Updated 3 years ago
• aflsmart / aflsmart

  View on GitHub
  Smart Greybox Fuzzing (https://thuanpv.github.io/publications/TSE19_aflsmart.pdf)
  ☆519Jan 18, 2022Updated 4 years ago
• aflnet / aflnet

  View on GitHub
  AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICST20.pdf)
  ☆987May 26, 2025Updated 8 months ago
• firmadyne / firmadyne

  View on GitHub
  Platform for emulation and dynamic analysis of Linux-based firmware
  ☆2,041Jul 21, 2024Updated last year
• RUB-SysSec / redqueen

  View on GitHub
  ☆400Sep 23, 2021Updated 4 years ago
• HexHive / FirmFuzz

  View on GitHub
  Automated IoT firmware fuzzing framework.
  ☆84Nov 19, 2019Updated 6 years ago
• strongcourage / uafuzz

  View on GitHub
  UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities
  ☆350Sep 25, 2023Updated 2 years ago
• nccgroup / TriforceAFL

  View on GitHub
  AFL/QEMU fuzzing with full-system emulation.
  ☆640Sep 9, 2018Updated 7 years ago
• hunter-ht-2018 / ptfuzzer

  View on GitHub
  Improving AFL by using Intel PT to collect branch information
  ☆292Jul 26, 2019Updated 6 years ago
• andreafioraldi / qasan

  View on GitHub
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆350Jul 30, 2024Updated last year
• seemoo-lab / frankenstein

  View on GitHub
  Broadcom and Cypress firmware emulation for fuzzing and further full-stack debugging
  ☆456Feb 7, 2024Updated 2 years ago
• therealsaumil / emux

  View on GitHub
  EMUX Firmware Emulation Framework (formerly ARMX)
  ☆833Aug 22, 2025Updated 5 months ago
• NSSL-SJTU / SaTC

  View on GitHub
  A prototype of Shared-keywords aware Taint Checking, a novel static analysis approach that tracks the data flow of the user input between…
  ☆339Dec 12, 2024Updated last year
• PAGalaxyLab / vxhunter

  View on GitHub
  ToolSet for VxWorks Based Embedded Device Analyses
  ☆373Sep 24, 2024Updated last year
• zcutlip / nvram-faker

  View on GitHub
  A simple library to intercept calls to libnvram when running embedded linux applications in emulated environments.
  ☆256Oct 29, 2023Updated 2 years ago
• sslab-gatech / hydra

  View on GitHub
  Hydra: an Extensible Fuzzing Framework for Finding Semantic Bugs in File Systems
  ☆173Aug 8, 2022Updated 3 years ago
• nautilus-fuzz / nautilus

  View on GitHub
  A grammar based feedback Fuzzer
  ☆461Aug 17, 2024Updated last year
• jtpereyda / boofuzz

  View on GitHub
  A fork and successor of the Sulley Fuzzing Framework
  ☆2,313Updated this week
• nccgroup / fuzzowski

  View on GitHub
  the Network Protocol Fuzzer that we will want to use.
  ☆791Jan 29, 2024Updated 2 years ago
• HexHive / FuZZan

  View on GitHub
  FuZZan: Efficient Sanitizer Metadata Design for Fuzzing
  ☆124Mar 31, 2021Updated 4 years ago
• wcventure / FuzzingPaper

  View on GitHub
  Recent Fuzzing Paper
  ☆2,738Nov 4, 2025Updated 3 months ago
• fuzzware-fuzzer / fuzzware

  View on GitHub
  Fuzzware's main repository. Start here to install.
  ☆363Dec 18, 2025Updated last month
• AFLplusplus / AFL-Snapshot-LKM

  View on GitHub
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆141Aug 17, 2021Updated 4 years ago
• FIRMCORN-Fuzzing / FIRMCORN

  View on GitHub
  ☆32Apr 28, 2022Updated 3 years ago
• HexHive / retrowrite

  View on GitHub
  RetroWrite -- Retrofitting compiler passes through binary rewriting
  ☆736Apr 26, 2025Updated 9 months ago
• FoRTE-Research / UnTracer-AFL

  View on GitHub
  An AFL implementation with UnTracer (our coverage-guided tracer)
  ☆124Jul 7, 2022Updated 3 years ago
• AngoraFuzzer / Angora

  View on GitHub
  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic e…
  ☆953Jul 18, 2022Updated 3 years ago
• KeenSecurityLab / BinAbsInspector

  View on GitHub
  BinAbsInspector: Vulnerability Scanner for Binaries
  ☆1,668Jun 17, 2024Updated last year
• RiS3-Lab / p2im

  View on GitHub
  This is the source code for P2IM paper (accepted to Usenix Security'20)
  ☆141Oct 14, 2023Updated 2 years ago
• vusec / vuzzer64

  View on GitHub
  This implements a 64-bit version of vusec/vuzzer fuzzing tool.
  ☆179Mar 29, 2022Updated 3 years ago
• zhunki / Superion

  View on GitHub
  Superion is a fuzzer which extends the famous AFL to support structured inputs such as JavaScript and XML.
  ☆139Aug 18, 2022Updated 3 years ago
• Battelle / afl-unicorn

  View on GitHub
  afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.
  ☆608Jun 18, 2023Updated 2 years ago
• mykter / afl-training

  View on GitHub
  Exercises to learn how to fuzz with American Fuzzy Lop
  ☆1,275Oct 12, 2022Updated 3 years ago
• HexHive / T-Fuzz

  View on GitHub
  ☆252Mar 13, 2020Updated 5 years ago
• Vu1nT0tal / firmeye

  View on GitHub
  IoT固件漏洞挖掘工具
  ☆248Nov 11, 2022Updated 3 years ago
• ChrisTheCoolHut / Firmware_Slap

  View on GitHub
  Discovering vulnerabilities in firmware through concolic analysis and function clustering.
  ☆480Sep 17, 2020Updated 5 years ago