615 Open source projects that are alternatives of or similar to Apiscout

A machine learning tool that ranks strings based on their relevance for malware analysis.

DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior

UNIX-like reverse engineering framework and command-line toolset

Android virtual machine and deobfuscator

软件安全工程师技能表

Android Reverse-Engineering Workbench for VS Code

Ghidra Analysis Enhancer 🐉

Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript

Toolkit for enriching and speeding up static malware analysis

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Malware Analysis, Threat Intelligence and Reverse Engineering: LABS

idenLib - Library Function Identification [This project is not maintained anymore]

The FLARE team's open-source tool to identify capabilities in executable files.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

Program for determining types of files for Windows, Linux and MacOS.

Android app analysis and feature extraction library

APK/DEX detector for Windows, Linux and MacOS.

Authors

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

Collaborative malware analysis framework

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Exploit Development and Reverse Engineering with GDB Made Easy

makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]

《macOS软件安全与逆向分析》勘误

🐺 Malware analysis platform

Livro: Fundamentos de Engenharia Reversa

《macOS软件安全与逆向分析》随书源码

Drltrace is a library calls tracer for Windows and Linux applications.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

A binary analysis framework

CLI tool to analyze PE files

.NET runtime inspector

Advanced and easy to use penetration testing framework 💣🔎

A SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.

A command line tool to find malwares on http://openmalware.org

A bunch of Windows anti-debugging tricks for x86 and x64.

Setup scripts for my Malware Analysis VMs

No description or website provided.

The PE file analysis toolkit

Collection of scripts for different malware analysis tasks

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

A repository of my completed writeups, along with the samples themselves.

Portable Reverse Engineering Framework

elf-strings will programmatically read an ELF binary's string sections within a given binary. This is meant to be much like the strings UNIX utility, however is purpose built for ELF binaries.

🔐 Run frida-server on boot with Magisk, always up-to-date

An unofficial, reverse-engineered Python API for tastyworks.

Re-implementation of Abe's Exoddus and Abe's Oddysee

A dnSpy extension to aid reversing of obfuscated assemblies

Set of functions to increase productivity while hacking with Bash

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Java / Kotlin Decompiler and AST Library

Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.

PE file viewer/editor for Windows, Linux and MacOS.

A memory scanner plugin for x64dbg, inspired by Cheat Engine.

Python 3 bridge to Ghidra's Python scripting

Disassembly of Pokémon TCG

Polar devices Python API and CLI.

A collection of hacking / penetration testing resources to make you better!