SimpleatorSimpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Stars: ✭ 260 (+31.98%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+1861.93%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+94.92%)
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Stars: ✭ 2,026 (+928.43%)
ZelosA comprehensive binary emulation and instrumentation platform.
Stars: ✭ 298 (+51.27%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-91.37%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (+55.84%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+102.03%)
StringsifterA machine learning tool that ranks strings based on their relevance for malware analysis.
Stars: ✭ 469 (+138.07%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (-3.55%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: ✭ 182 (-7.61%)
Flare VmNo description or website provided.
Stars: ✭ 3,201 (+1524.87%)
Macbook《macOS软件安全与逆向分析》随书源码
Stars: ✭ 302 (+53.3%)
AntidbgA bunch of Windows anti-debugging tricks for x86 and x64.
Stars: ✭ 177 (-10.15%)
PwndbgExploit Development and Reverse Engineering with GDB Made Easy
Stars: ✭ 4,178 (+2020.81%)
UnicornUnicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, X86)
Stars: ✭ 4,934 (+2404.57%)
IdenlibidenLib - Library Function Identification [This project is not maintained anymore]
Stars: ✭ 322 (+63.45%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+290.86%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (-3.55%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-76.65%)
WakxyWakxy is a Wakfu packet sniffer (MITM). Written in C++/Qt with Javascript scripting support.
Stars: ✭ 12 (-93.91%)
MatireMalware Analysis, Threat Intelligence and Reverse Engineering: LABS
Stars: ✭ 55 (-72.08%)
QilingQiling Advanced Binary Emulation Framework
Stars: ✭ 2,816 (+1329.44%)
Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (-7.11%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+20.3%)
MiasmReverse engineering framework in Python
Stars: ✭ 2,649 (+1244.67%)
Shed.NET runtime inspector
Stars: ✭ 229 (+16.24%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+44.67%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (+43.15%)
Radare2UNIX-like reverse engineering framework and command-line toolset
Stars: ✭ 15,412 (+7723.35%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+1413.71%)
GefGEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢
Stars: ✭ 4,197 (+2030.46%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (-32.99%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (-32.99%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+114.21%)
SaferwallA hackable malware sandbox for the 21st Century
Stars: ✭ 419 (+112.69%)
ReplicaGhidra Analysis Enhancer 🐉
Stars: ✭ 194 (-1.52%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+5.58%)
KsmA fast, hackable and simple x64 VT-x hypervisor for Windows and Linux. Builtin userspace sandbox and introspection engine.
Stars: ✭ 673 (+241.62%)
Makinmakin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Stars: ✭ 645 (+227.41%)
EmofishesEmofishes is a collection of proof of concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).
Stars: ✭ 11 (-94.42%)
NorimaciNorimaci is a simple and lightweight malware analysis sandbox for macOS
Stars: ✭ 37 (-81.22%)
MedusaAn open source interactive disassembler
Stars: ✭ 946 (+380.2%)
AntivmdetectionScript to create templates to use with VirtualBox to make vm detection harder
Stars: ✭ 527 (+167.51%)
SojoboA binary analysis framework
Stars: ✭ 116 (-41.12%)
CapaThe FLARE team's open-source tool to identify capabilities in executable files.
Stars: ✭ 1,981 (+905.58%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (+603.05%)
ApiscoutThis project aims at simplifying Windows API import recovery on arbitrary memory dumps
Stars: ✭ 146 (-25.89%)
LiefAuthors
Stars: ✭ 2,730 (+1285.79%)
ApklabAndroid Reverse-Engineering Workbench for VS Code
Stars: ✭ 470 (+138.58%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (-25.89%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (-18.27%)
JitboyA Game Boy emulator with dynamic recompilation (JIT)
Stars: ✭ 190 (-3.55%)