concolic-execution

There are 3 repositories under concolic-execution topic.

• CrossHair

  pschanely / CrossHair

  An analysis tool for Python that blurs the line between testing and type systems.

  concolic-executioncontractsdynamic-analysisfuzzinghacktoberfestpythonstatic-analysissymbolic-executiontestingtesting-frameworktype-systemsz3
  Language:Python 1222

• fuzzland / ityfuzz

  Blazing Fast Bytecode-Level Hybrid Fuzzer for Smart Contracts

  concolic-executionfuzzingsmart-contractsaptosevmmovesuiethereumsolidityblockchain
  Language:Rust 1032

• sslab-gatech / qsym

  QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing

  binaryconcolic-executionfuzzinghybrid-fuzzing
  Language:C++ 653

• enzet / symbolic-execution

  History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)

  concolicconcolic-executiondynamic-analysisdynamic-symbolic-executionhistoryprogram-analysissolvingsymbolic-executiontimeline
  Language:Kotlin 493

• OCamlPro / owi

  Seamless bug-finding for Wasm, C, C++, Rust and Zig

  ocamlwasmwebassemblyinterpretercconcolic-executionconstraintsformatternlnetoptimizerowiparallelrustsmtsolversymbolic-executionwasm2watwat2wasmaflfuzzer
  Language:OCaml 260

• ispras / oss-sydr-fuzz

  OSS-Sydr-Fuzz - OSS-Fuzz fork for hybrid fuzzing (fuzzer+DSE) open source software.

  securityfuzzingfuzz-testingvulnerabilitiesstabilityoss-fuzzdsesymbolic-executionsymbolicsydrsydr-fuzzdynamic-symbolic-executionconcolic-executionconcolichybrid-fuzzinglibfuzzer
  Language:C 141

• season-lab / fuzzolic

  fuzzing + concolic = fuzzolic :)

  concolic-executionsymbolic-execution
  Language:C 126
• SEMA

  csvl / SEMA

  SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SCDG). Those SCDGs can be exploited in machine learning modules to do classification/detection.

  malware-analysismalwaresymbolicclassificationsymbolic-executiondetectionangrctfconcolic-executionlinuxsemastatic-analysiswindowscybersecuritymalware-detectionmalware-researchpythonreversereverse-engineeringbinary-analysis
  Language:Python 119

• SQLab / CRAXplusplus

  The exploit generator CRAX++ is CRAX with a plugin system, s2e 2.0 upgrade, dynamic ROP, code selection, and I/O states (HITCON 2022)

  aegexploitsymbolic-executions2ecraxconcolic-execution
  Language:C++ 102

• jordan9001 / dobby2

  Build your emulation environment as needed

  concolic-executiondeobfuscationemulatorkernelsymbolic-executionwindows-kernel-exploitation
  Language:Python 65

• SVL-PSU / crete-dev

  CRETE under development

  symbolic-executionbinary-analysistest-generationconcolic-execution
  Language:C 59

• ispras / crusher

  binary-analysisbug-detectionconcolicconcolic-executioncoverage-guided-fuzzingdsedynamic-symbolic-executionfuzzinghybrid-fuzzingstatic-analysissymbolicsymbolic-execution
  Language:Python 40

• rshariffdeen / CPR

  CPR: A new automated program repair technique based on concolic execution which works on patch abstraction with the sub-optimal goal of refining the patch to less over-fit the initial test cases.

  concolic-executionprogram-repair
  Language:C 33

• agra-uni-bremen / symex-vp

  A concolic testing engine for RISC-V embedded software with support for SystemC peripherals

  risc-vsymbolic-executionconcolic-executionconcolic-testingkleeriscvriscv32systemc
  Language:C++ 25

• pfnet-research / ATPG4SV

  A prototype of Concolic Testing engine for SystemVerilog, developed as part of PFN summer internship 2018.

  system-verilogatpgocamlconcolic-executionsymbolic-executionsmt-solver
  Language:OCaml 19

• season-lab / fuzzy-sat

  An approximate solver for concolic execution

  concolic-executionsmt-solver
  Language:C 18

• ispras / sydr-benchmark

  Sydr benchmark applications

  symbolic-executionbenchmarkdynamoriotritondsebinary-analysisdynamic-symbolic-executionconcolic-executionsymbolicconcolicfuzzinghybrid-fuzzing
  Language:C++ 17

• season-lab / SymFusion

  SymFusion: Hybrid Instrumentation for Concolic Execution

  concolic-executionsymbolic-execution
  Language:C 17

• secureweb / symphp

  Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)

  concolic-executionphpsymbolic-executionphp-symbolic-execution
  Language:C 12

• enzet / program-model

  Formal model of program execution, symbolic execution, and taint tracking

  latexpapersymbolic-executiondynamic-symbolic-executionconcolic-executiontaint-analysisgraph-drawing
  Language:TeX 7

• fugue-re / fugue-concolic

  A concolic interpreter backend for Fugue.

  concolic-executionsymbolic-executionbinary-analysisreverse-engineering
  Language:Rust 5

• hexterisk / bomblab-Angr

  Solution to the CMU Binary Bomblab using concolic execution (Angr framework by Shellphish).

  angrbinary-analysisbomblabconcolic-executionreverse-engineering
  Language:HTML 4

• shouc / corbfuzz

  Code for ASE'21 Paper "CorbFuzz: Checking Browser Security Policies with Fuzzing"

  fuzzingconcolic-executionbrowser-security
  Language:C 4

• star-finder / jpf-costar

  Test input generation using separation logic

  concolic-executionseparation-logictesting-toolstest-automationtesting-frameworkunit-testing
  Language:Java 3

• sai-teja-ponugoti / Software-Testing-Quality-Assurance-and-Maintenance

  ECE 653 - testing, Quality Assurance, and Maintenance.This repo holds all material, notes and assignments related to the mentioned course.

  testing-toolsquality-assurancetestingautomated-testingsymbolicsymbolic-executionconcolic-executionaflafl-fuzzerkleedpll
  2

• agra-uni-bremen / sisl

  Scheme-based Input Specification language for Concolic Testing

  concolic-executionconcolic-testingr7rsr7rs-schemesymbolic-execution
  Language:Scheme 1

• moondemon68 / PyAssessment

  Whitebox autograder for Python functions.

  pythonz3whitebox-testingsemantic-similarityconcolic-execution
  Language:Python 1

• sach1t / symbv

  Validating changes using concolic execution

  concolic-executionvalidation
  Language:Java 1

• Nsidorenco / secco

  symbolic-executionconcolic-executiondynamic-analysis
  Language:Clojure 0

• shashvat-singham / CSE-Research

  NNrepair, a constraint-based technique for repairing neural network classifiers. The technique aims to fix the logic of the network at an intermediate layer or at the last layer. NNrepair first uses fault localization to find potentially faulty network parameters (such as the weights) and then performs repair using constraint solving to apply small

  cifar10concolic-executionfirebase-authmnistnodejsoraclesreactjs
  Language:Python 0

• tkhang1999 / mini-symex-js

  A mini symbolic execution engine for simple JavaScript programs

  concolic-executionsymbolic-executionjavascriptjavascript-testing
  Language:JavaScript 0

• fugue-re / fugue-concolic-solver-z3

  Z3 backend for Fugue's concolic interpreter.

  binary-analysisreverse-engineeringconcolic-executionz3symbolic-execution
  Language:Rust

• MatthiasGabriel / SemProgAnTr_HS19

  "Concolic testing: An overview of the used techniques and its limits" - Report for the Seminar "Program Analysis and Transformation" in HS2019 about the topic concolic testing

  concolic-testingconcolic-execution
  Language:TeX

• Rastislonge / Angr-presentation-files

  Scripts and binaries used for the angr presentation at quebecsec. Presentation available at: https://www.youtube.com/watch?v=1hwEessoskc

  aegangrconcolic-executionreverse-engineeringsymbolic-execution
  Language:Python

• reverseame / synoptic

  Synoptic: Concolic execution for network protocol inference

  concolic-executiondynamic-control-flow-graphfinite-state-machinenetwork-analysisnetwork-protocolspintoolpythonsymbolic-execution
  Language:Python

• TaiYou-TW / SymWP

  SymWP, a concolic analysis framework designed specifically for WordPress plugin security. SymWP integrates an off-the-shelf symbolic execution engine and targets the PHP interpreter, allowing it to analyze plugin behavior at a semantic level with minimal human intervention.

  concolic-executioncontent-management-systemdynamic-taint-analysisplugin-vulnerabilitysymbolic-executionweb-application-securitywordpress-plugin
  Language:PHP