SAGE verifier

[Google Scholar]

Notes: symbolic execution, concolic execution, fuzz testing
Papers: godefroid:acmq:2012, godefroid:cacm:2020

SAGE is a symbolic execution tool used for whitebox fuzz testing developed at Microsoft. It is based on the “concolic” or “offline” variant of “dynamic symbolic execution” and operates at the binary level by symbolically executing x86 instructions.

SAGE schedules paths to optimize code coverage based on the likelihood of a path to discover new, unexecuted instructions.


Concolic execution, Symbolic execution