Awesome Reverse EngineeringReverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
Stars: β 2,954 (+9746.67%)
FineCodeCoverageVisualize unit test code coverage easily for free in Visual Studio Community Edition (and other editions too)
Stars: β 391 (+1203.33%)
ReplicaGhidra Analysis Enhancer π
Stars: β 194 (+546.67%)
LisaSandbox for automated Linux malware analysis.
Stars: β 177 (+490%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: β 219 (+630%)
Attack monitorEndpoint detection & Malware analysis software
Stars: β 186 (+520%)
Pepper An open source script to perform malware static analysis on Portable Executable
Stars: β 250 (+733.33%)
ApiscoutThis project aims at simplifying Windows API import recovery on arbitrary memory dumps
Stars: β 146 (+386.67%)
BashacksSet of functions to increase productivity while hacking with Bash
Stars: β 138 (+360%)
Radare2UNIX-like reverse engineering framework and command-line toolset
Stars: β 15,412 (+51273.33%)
CutterDRcovDynamoRIO coverage visualization for cutter
Stars: β 51 (+70%)
LiefAuthors
Stars: β 2,730 (+9000%)
aparoidStatic and dynamic Android application security analysis
Stars: β 62 (+106.67%)
ApkfileAndroid app analysis and feature extraction library
Stars: β 190 (+533.33%)
ghidra-65816WDC 65816 processor module for Ghidra
Stars: β 19 (-36.67%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: β 182 (+506.67%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: β 42 (+40%)
MalwaretrainingsetsFree Malware Training Datasets for Machine Learning
Stars: β 151 (+403.33%)
grcovπ GitHub Action for code coverage reporting with grcov
Stars: β 96 (+220%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: β 146 (+386.67%)
ssdcssdeep cluster analysis for malware files
Stars: β 24 (-20%)
Vba2graphVba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.
Stars: β 245 (+716.67%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: β 132 (+340%)
Visualize logsA Python library and command line tools to provide interactive log visualization.
Stars: β 128 (+326.67%)
Shed.NET runtime inspector
Stars: β 229 (+663.33%)
angr-antievasionFinal project for the M.Sc. in Engineering in Computer Science at UniversitΓ degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
Stars: β 35 (+16.67%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: β 225 (+650%)
cheatsheetThese are some of the commands which I use frequently during Malware Analysis and DFIR.
Stars: β 23 (-23.33%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: β 208 (+593.33%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: β 281 (+836.67%)
CmulatorCmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript
Stars: β 197 (+556.67%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: β 190 (+533.33%)
octocovoctocov is a toolkit for collecting code metrics (code coverage, code to test ratio and test execution time).
Stars: β 191 (+536.67%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: β 2,982 (+9840%)
Rebel FrameworkAdvanced and easy to use penetration testing framework π£π
Stars: β 183 (+510%)
Kernel-dll-injectorKernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Stars: β 256 (+753.33%)
AntidbgA bunch of Windows anti-debugging tricks for x86 and x64.
Stars: β 177 (+490%)
Guancialeπ₯ Grab info needed by Carbonara from executables and disassemblers databases
Stars: β 14 (-53.33%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: β 161 (+436.67%)
ghidraalA Ghidra extension for scripting with GraalVM languages, including Javascript, Python3, R, and Ruby.
Stars: β 48 (+60%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: β 148 (+393.33%)
Malware-ZooHashes of infamous malware
Stars: β 18 (-40%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: β 2,114 (+6946.67%)
Flare VmNo description or website provided.
Stars: β 3,201 (+10570%)
BinsnitchDetect silent (unwanted) changes to files on your system
Stars: β 144 (+380%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: β 134 (+346.67%)
XlmmacrodeobfuscatorExtract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
Stars: β 243 (+710%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: β 132 (+340%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: β 237 (+690%)
ghidra-r2webGhidra plugin to start an r2 webserver to let r2 interact with it
Stars: β 38 (+26.67%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: β 69 (+130%)
WeDefendβπ‘οΈ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: β 23 (-23.33%)
ghidra2dwarfπ Export ghidra decompiled code to dwarf sections inside ELF binary
Stars: β 135 (+350%)