SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 program-analysis Open-Source Projects
-
x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.
-
Triton
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code. (by JonathanSalwan)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
VMProtect-devirtualization
Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
-
vast
VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or further program abstraction.
-
MATE
MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs. (by GaloisInc)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: Pylyzer – A fast static code analyzer and language server for Python | news.ycombinator.com | 2024-04-11Did you come across pyre in your search? MIT license and pretty fast.
If it was me, I'd first run something like DIE on it (I have a few such programs installed)- https://github.com/horsicq/Detect-It-Easy
Project mention: Fuzzing Around: Better Smart Contract Testing through the Power of Random Inputs | dev.to | 2023-04-25Fuzzing has been around for a while in traditional full-stack development, but a new class of tools is here that can apply fuzzing to smart contract testing in web3. Some of the fuzzing tools include the open source Echidna and MythX.
Just for the record, for nicer inspection of files with such debug information, including compressed sections, and debuginfod support, Rizin[1] can be used, since starting from the 0.7.0 release[2] all of those were added.
[1] https://rizin.re
Nice and all, but why not contribute to https://github.com/returntocorp/semgrep-rules ?
Project mention: Print(“lol”) doubled the speed of my Go function | news.ycombinator.com | 2023-08-23Most languages target C or LLVM, and C and LLVM have a fundamentally lossy compilation processes.
To get around this, you'd need a hodge podge of pre compiler directives, or take a completely different approach.
I found a cool project that uses a "Tower of IRs" that can restablish source to binary provenance, which, seems to me, to be on the right track:
https://github.com/trailofbits/vast
I'd definitely like to see the compilation processes be more transparent and easy to work with.
Project mention: [P] Let's Debug Your Neural Network: Gradient-based Symbolic Execution for NN | /r/MachineLearning | 2023-12-04I have developed Gymbo, a proof of concept for a Gradient-based Symbolic Execution Engine implemented from scratch.
program-analysis related posts
- Refix: Fast, Debuggable, Reproducible Builds
- LLM4Decompile: Decompiling Binary Code with LLM
- Static analyzer IKOS 3.2 Released
- Static analyzer IKOS 3.2-rc1 published – Request for testers
- [P] Let's Debug Your Neural Network: Gradient-based Symbolic Execution for NN
- Rizin – Free and Open Source Reverse Engineering Framework
- Show HN: I spent 6 months building a new C debugger as a 17-year-old
-
A note from our sponsor - SaaSHub
www.saashub.com | 19 Apr 2024
Index
What are some of the best open-source program-analysis projects? This list will help you:
Project | Stars | |
---|---|---|
1 | x64dbg | 43,128 |
2 | pyre-check | 6,687 |
3 | Detect-It-Easy | 6,525 |
4 | mythril | 3,706 |
5 | manticore | 3,631 |
6 | Triton | 3,299 |
7 | rizin | 2,413 |
8 | pyt | 2,161 |
9 | DIE-engine | 2,093 |
10 | ikos | 1,979 |
11 | bap | 1,970 |
12 | bindiff | 1,863 |
13 | VMProtect-devirtualization | 1,049 |
14 | cwe_checker | 1,045 |
15 | semgrep-rules | 704 |
16 | psychec | 496 |
17 | vast | 334 |
18 | crab | 215 |
19 | siderophile | 189 |
20 | MATE | 165 |
21 | Sojobo | 132 |
22 | cclyzerpp | 109 |
23 | Gymbo | 34 |