MiasmReverse engineering framework in Python
Stars: ✭ 2,649 (+999.17%)
IdangrUse angr in the IDA Pro debugger generating a state from the current debug session
Stars: ✭ 214 (-11.2%)
SymbioticSymbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
Stars: ✭ 212 (-12.03%)
SymgdbSymGDB - symbolic execution plugin for gdb
Stars: ✭ 202 (-16.18%)
Alive2Automatic verification of LLVM optimizations
Stars: ✭ 199 (-17.43%)
ManticoreSymbolic execution tool
Stars: ✭ 2,599 (+978.42%)
ExropAutomatic ROPChain Generation
Stars: ✭ 191 (-20.75%)
KleeflSeeding fuzzers with symbolic execution
Stars: ✭ 172 (-28.63%)
SysSys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
Stars: ✭ 149 (-38.17%)
TritonTriton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.
Stars: ✭ 1,934 (+702.49%)
KleeKLEE Symbolic Execution Engine
Stars: ✭ 1,851 (+668.05%)
MythrilSecurity analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains.
Stars: ✭ 1,968 (+716.6%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (+474.69%)
PakalaOffensive vulnerability scanner for ethereum, and symbolic execution tool for the Ethereum Virtual Machine
Stars: ✭ 97 (-59.75%)
ExposeA Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.
Stars: ✭ 94 (-61%)
EthenoSimplify Ethereum security analysis and testing
Stars: ✭ 77 (-68.05%)
PonceIDA 2016 plugin contest winner! Symbolic Execution just one-click away!
Stars: ✭ 1,066 (+342.32%)
ApisanAPISan: Sanitizing API Usages through Semantic Cross-Checking
Stars: ✭ 46 (-80.91%)
MedusaAn open source interactive disassembler
Stars: ✭ 946 (+292.53%)
Wasabi AegYet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.
Stars: ✭ 23 (-90.46%)
AngoraAngora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.
Stars: ✭ 669 (+177.59%)
Awesome Symbolic ExecutionA curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.
Stars: ✭ 634 (+163.07%)
DeepstateA unit test-like interface for fuzzing and symbolic execution
Stars: ✭ 603 (+150.21%)
CrosshairAn analysis tool for Python that blurs the line between testing and type systems.
Stars: ✭ 586 (+143.15%)
Tigress protectionPlaying with the Tigress binary protection. Break some of its protections and solve some of its challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.
Stars: ✭ 550 (+128.22%)
Amocoyet another tool for analysing binaries
Stars: ✭ 413 (+71.37%)
Symbolic ExecutionHistory of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)
Stars: ✭ 395 (+63.9%)
CgpwnA lightweight VM for hardware hacking, RE (fuzzing, symEx, exploiting etc) and wargaming tasks
Stars: ✭ 345 (+43.15%)
StpSimple Theorem Prover, an efficient SMT solver for bitvectors
Stars: ✭ 341 (+41.49%)
G2No description or website provided.
Stars: ✭ 24 (-90.04%)
smooshThe Symbolic, Mechanized, Observable, Operational SHell: an executable formalization of the POSIX shell standard.
Stars: ✭ 86 (-64.32%)
malware-s2eCode for my blog post on using S2E for malware analysis
Stars: ✭ 21 (-91.29%)
crusherNo description or website provided.
Stars: ✭ 21 (-91.29%)
kleespectreKLEESpectre is a symbolic execution engine with speculation semantic and cache modelling
Stars: ✭ 31 (-87.14%)
RelBinsec/Rel is an extension of Binsec that implements relational symbolic execution for constant-time verification and secret-erasure at binary-level.
Stars: ✭ 27 (-88.8%)
KirenenkoSuper Fast Concolic Execution Engine based on Source Code Taint Tracing
Stars: ✭ 84 (-65.15%)
binary-decompilationExtracting high level semantic information from binary code
Stars: ✭ 55 (-77.18%)
SixtyPicalA 6502-oriented low-level programming language supporting advanced static analysis
Stars: ✭ 25 (-89.63%)
TRACERTRACER Symbolic Execution Tool
Stars: ✭ 23 (-90.46%)
symbooglixSymbolic Execution Engine for Boogie
Stars: ✭ 24 (-90.04%)
seninjasymbolic execution plugin for binary ninja
Stars: ✭ 123 (-48.96%)
surveyorA symbolic debugger for C/C++ (via LLVM), machine code, and JVM programs
Stars: ✭ 14 (-94.19%)
CFI-LBAdaptive Callsite-sensitive Control Flow Integrity - EuroS&P'19
Stars: ✭ 13 (-94.61%)
vigorMain repository of the Vigor NF verification project.
Stars: ✭ 40 (-83.4%)
CRAXCRAX: software CRash analysis for Automatic eXploit generation
Stars: ✭ 44 (-81.74%)
saiStaged Abstract Interpreters
Stars: ✭ 58 (-75.93%)
crete-devCRETE under development
Stars: ✭ 56 (-76.76%)
steviaA simple (unfinished) SMT solver for QF_ABV.
Stars: ✭ 30 (-87.55%)
angr-antievasionFinal project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
Stars: ✭ 35 (-85.48%)
UTBotCppTool that generates unit test by C/C++ source code, trying to reach all branches and maximize code coverage
Stars: ✭ 59 (-75.52%)