tools for symbolic execution on binaries

Question

are there any tools for symbolic execution on binaries. i mean using which, we do not require to modify the source code - like klee_make_symbolic or we can do such changes in IR (llvm ir etc.) thanks in advance

score 1 · Accepted Answer · answered Jul 21 '16 at 02:37

1

Maybe miasm can fit your requirements. It is a reverse engineer framework that supports static symbolic execution. As far as I know， it is more simple than KLEE and S2E.

answered Jul 21 '16 at 02:37

Andy Wang

38
6

Thanks! It is much closer to what I was looking for ! – hilly Mar 03 '17 at 06:51

score 1 · Answer 2 · answered May 01 '18 at 09:59

1

Canonical list is in Awesome Symbolic Execution.

answered May 01 '18 at 09:59

yugr

19,769
3
51
96

score -2 · Answer 3 · answered Apr 19 '16 at 06:10

-2

Symbolically executing binary code is much much harder, so i doubt there are such tools exist.

However note that you don't necessarily need to modify your code when using KLEE because it can model POSIX environment and C library (when compiled with support for this, of course). Using these features you can automatically symbolize argv arguments and keyboard interaction.

answered Apr 19 '16 at 06:10

arrowd

33,231
8
79
110

thanks for your answer. it helps!i am aware of mcsema and s2e but i am looking for something simpler – hilly Apr 19 '16 at 06:26
You can also search for `cloud9`, a symbolic interpreter based on KLEE. – arrowd Apr 19 '16 at 06:31
There are many tools for symexec of binaries, both proprietary and open-source. – yugr May 01 '18 at 09:57

tools for symbolic execution on binaries

3 Answers3