angr is a python framework for analyzing binaries. It combines both static and dynamic symbolic (“concolic”) analysis

Notes related to angr verifier

Driller verifier, Symbolic memory, Valgrind

Papers related to angr verifier

• Rethinking pointer reasoning in symbolic execution [coppa:ase:2017]
• DeepState: Symbolic unit testing for C and C++ [goodman:ndss:2018]
• Symbolic execution with SymCC: Don't interpret, compile! [poeplau:usenix:2020]
• SoK: (state of) the art of war: Offensive techniques in binary analysis [shoshitaishvili:sp:2016]