SymFusion: Hybrid Instrumentation for Concolic Execution
-
SymFusion devises a novel hybrid instrumentation approach for concolic execution, where the core components of an application can be instrumented at compilation time รน (e.g., using an LLVM pass), while the remaining components can be dynamically instrumented at execution time (e.g., using QEMU DBT). The goal is to achieve the benefits of both approaches in terms of efficiency and flexibility.
Github ASE 2022
DroidReach
-
Framework for testing the reachability of native functions in Android applications. Solving this task can be essential for several security tasks, e.g., to show that a vulnerable function within a library is indeed reachable by an application and thus it requires immediate attention.
Github ESORICS 2022
FUZZOLIC: Fuzzing + Concolic
Fuzzy-SAT: Approximate Constraint Solving for Concolic Execution
SymNav: Visually assisting symbolic execution
-
A prototype tool that visualizes the state of a symbolic execution analysis by plotting relevant data on a sunburst (that represent the symbolic execution tree), and on the control flow graph of the program. Furthermore, the tool allows the user to interact and refine the analysis, allowing him to interactively prune the symbolic execution tree.
Github VIZSEC 2019
MemSight: Rethinking Pointer Reasoning in Symbolic Execution
aprof: finding hidden asymptotic performance bugs
-
A Valgrind tool for performance profiling designed to help developers discover hidden asymptotic inefficiencies in the code. From one or more runs of a program, aprof measures how the performance of individual routines scales as a function of the input size, yielding clues to its growth rate.
Github PLDI 2012 CGO 2014 TSE 2014 VALUETOOLS 2014
Apache Hadoop Internals
-
Some notes describing Apache Hadoop internals (2.3.0 or later).
Website
BSA++
-
A prototype of an adaptive memory allocator.
Website