MatireMalware Analysis, Threat Intelligence and Reverse Engineering: LABS
Stars: ✭ 55 (+400%)
PwndbgExploit Development and Reverse Engineering with GDB Made Easy
Stars: ✭ 4,178 (+37881.82%)
DecompComponents of a decompilation pipeline.
Stars: ✭ 343 (+3018.18%)
GefGEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢
Stars: ✭ 4,197 (+38054.55%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (+1100%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+35036.36%)
Avatar2Python core of avatar²
Stars: ✭ 334 (+2936.36%)
Cwe checkercwe_checker finds vulnerable patterns in binary executables
Stars: ✭ 372 (+3281.82%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+3390.91%)
BleakA Windows native DLL injection library that supports several methods of injection.
Stars: ✭ 547 (+4872.73%)
Lazy importerlibrary for importing functions from dlls in a hidden, reverse engineer unfriendly way
Stars: ✭ 544 (+4845.45%)
Steamtracking🕵 Tracking things, so you don't have to
Stars: ✭ 542 (+4827.27%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+7127.27%)
Frida ScriptsA collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.
Stars: ✭ 665 (+5945.45%)
JnitraceA Frida based tool that traces usage of the JNI API in Android apps.
Stars: ✭ 534 (+4754.55%)
CapstoneCapstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
Stars: ✭ 5,374 (+48754.55%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+5927.27%)
AntivmdetectionScript to create templates to use with VirtualBox to make vm detection harder
Stars: ✭ 527 (+4690.91%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (+4554.55%)
MalboxesBuilds malware analysis Windows VMs so that you don't have to.
Stars: ✭ 900 (+8081.82%)
PbtkA toolset for reverse engineering and fuzzing Protobuf-based apps
Stars: ✭ 791 (+7090.91%)
TextractorExtracts text from video games and visual novels. Highly extensible.
Stars: ✭ 656 (+5863.64%)
Protobuf Inspector🕵️ Tool to reverse-engineer Protocol Buffers with unknown definition
Stars: ✭ 513 (+4563.64%)
Radare2bookRadare2 official book
Stars: ✭ 502 (+4463.64%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+4390.91%)
PokeemeraldDecompilation of Pokémon Emerald
Stars: ✭ 772 (+6918.18%)
PintoolsPintool example and PoC for dynamic binary analysis
Stars: ✭ 485 (+4309.09%)
AvscriptAvast JavaScript Interactive Shell
Stars: ✭ 643 (+5745.45%)
Ipv6 HostsFork of https://code.google.com/archive/p/ipv6-hosts/, focusing on automation
Stars: ✭ 4,408 (+39972.73%)
Celerio Angular QuickstartGenerate an Angular 5 CRUD application from an existing database schema (we provide a sample one)
Stars: ✭ 483 (+4290.91%)
Mkw StructuresDocumentation of various parts of Mario Kart Wii
Stars: ✭ 25 (+127.27%)
Ret Syncret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja disassemblers.
Stars: ✭ 896 (+8045.45%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+6900%)
DrakvufDRAKVUF Black-box Binary Analysis
Stars: ✭ 628 (+5609.09%)
HabomalhunterHaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
Stars: ✭ 627 (+5600%)
Mjapptools【越狱-逆向】处理iOS APP信息的命令行工具
Stars: ✭ 479 (+4254.55%)
HiddenWindows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
Stars: ✭ 768 (+6881.82%)
SarkIDAPython Made Easy
Stars: ✭ 477 (+4236.36%)
PokerubyDecompilation of Pokémon Ruby/Sapphire
Stars: ✭ 476 (+4227.27%)
DecafDECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.
Stars: ✭ 618 (+5518.18%)
Apk Mitm🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
Stars: ✭ 893 (+8018.18%)
GarbroVisual Novels resource browser
Stars: ✭ 764 (+6845.45%)
Mjcript【越狱-逆向】基于Cycript实现的一些实用函数
Stars: ✭ 608 (+5427.27%)
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (+4136.36%)
GeaconPractice Go programming and implement CobaltStrike's Beacon in Go
Stars: ✭ 460 (+4081.82%)
KsdumperDumping processes using the power of kernel space !
Stars: ✭ 454 (+4027.27%)
TerracognitaReads from existing Cloud Providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration
Stars: ✭ 452 (+4009.09%)
VelesBinary data analysis and visualization tool
Stars: ✭ 767 (+6872.73%)
OpenwifipassAn open source implementation of Apple's Wi-Fi Password Sharing protocol in Python.
Stars: ✭ 607 (+5418.18%)
WdbgarkWinDBG Anti-RootKit Extension
Stars: ✭ 450 (+3990.91%)
HookcaseTool for reverse engineering macOS/OS X
Stars: ✭ 452 (+4009.09%)
SpeakeasyWindows kernel and user mode emulation.
Stars: ✭ 605 (+5400%)
UnicornUnicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, X86)
Stars: ✭ 4,934 (+44754.55%)
Project RestorationA Majora's Mask 3D patch that restores some mechanics from the original game to get the best of both worlds
Stars: ✭ 448 (+3972.73%)