Cave minerSearch for code cave in all binaries
Stars: ✭ 218 (+458.97%)
FilebytesLibrary to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)
Stars: ✭ 105 (+169.23%)
linux-peCOFF and Portable Executable format described using standard C++ with no dependencies.
Stars: ✭ 163 (+317.95%)
monetaMoneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
Stars: ✭ 384 (+884.62%)
SnakeKitA C++ library for parsing ObjC Metadata of Mach-O files.
Stars: ✭ 26 (-33.33%)
Unity.Blog.Override App DelegateA maintainable way to extend / override app delegate in Unity iOS / OSX standalone player. (Much) more at http://eppz.eu/blog/override-app-delegate-unity-ios-osx-1/
Stars: ✭ 28 (-28.21%)
checksec.rsFast multi-platform (ELF/PE/MachO) binary checksec written in Rust.
Stars: ✭ 71 (+82.05%)
FactionsPEMost advanced factions plugin for PocketMine-MP
Stars: ✭ 46 (+17.95%)
Wbblades基于mach-o解析技术的包大小占比分析、无用类检测、无符号表时的日志符号化 (Based on mach-o technology, a simple and efficient code size detection, useless class detection and unsigned crash log detection )
Stars: ✭ 243 (+523.08%)
HellosiliconAn attempt with ARM64 assembly on Apple Silicon Macs
Stars: ✭ 220 (+464.1%)
Rd routeFunction hooking for macOS
Stars: ✭ 138 (+253.85%)
Bingreplike ~~grep~~ UBER, but for binaries
Stars: ✭ 1,395 (+3476.92%)
MacholibreMach-O & Universal Binary Parser
Stars: ✭ 102 (+161.54%)
Segment dumperSimple example of a Mach-O parser
Stars: ✭ 85 (+117.95%)
TbdA command-line tool to create Text-Based Application Programming Interface (TAPI) files from existing binaries
Stars: ✭ 82 (+110.26%)
Macho BrowserMac browser for Mach-O binaries (macOS, iOS, watchOS, and tvOS)
Stars: ✭ 77 (+97.44%)
MachdumpA very basic C Mach-O Header Dump tool written for practicing purposes. Works With x86 and x86_64 binaries
Stars: ✭ 25 (-35.9%)
FcdAn optimizing decompiler
Stars: ✭ 622 (+1494.87%)
HookcaseTool for reverse engineering macOS/OS X
Stars: ✭ 452 (+1058.97%)
Macho KitA C/Objective-C library for parsing Mach-O files.
Stars: ✭ 416 (+966.67%)
Macho ExplorerA graphical Mach-O viewer for macOS. Powered by Mach-O Kit.
Stars: ✭ 406 (+941.03%)
Cydia🔥🔥🔥我的微信公众号: Cydia 🔥🔥🔥=> Cydia插件 Logos语言 开发Tweak.xm Cydia Substrate 注入dylib iOS逆向工程开发 越狱Jailbreak deb插件 - fishhook / Frida / iOSOpenDev / Cycript / MachOView / IDA / Hopper Disassembler / MonkeyDev / Class-dump / Theos / Reveal / Dumpdecryptd / FLEX / 汇编Assembly / CaptainHook / lldb/LLVM/XNU/Darwin/iOS Reverse
Stars: ✭ 407 (+943.59%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+7546.15%)
symbol-collectorClients and Server to collect system symbols.
Stars: ✭ 20 (-48.72%)
rust-machoMach-O File Format Parser for Rust
Stars: ✭ 55 (+41.03%)
The Backdoor FactoryPatch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Stars: ✭ 2,904 (+7346.15%)
Runpe In MemoryRun a Exe File (PE Module) in memory (like an Application Loader)
Stars: ✭ 249 (+538.46%)
DllspyDLL Hijacking Detection Tool
Stars: ✭ 202 (+417.95%)
LiefAuthors
Stars: ✭ 2,730 (+6900%)
Checksec.pyChecksec tool in Python, Rich output. Based on LIEF
Stars: ✭ 188 (+382.05%)
GeyserA bridge/proxy allowing you to connect to Minecraft: Java Edition servers with Minecraft: Bedrock Edition.
Stars: ✭ 2,851 (+7210.26%)
Iat patcherPersistent IAT hooking application - based on bearparser
Stars: ✭ 170 (+335.9%)
Windows SecurityResources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
Stars: ✭ 165 (+323.08%)
XpeviewerPE file viewer/editor for Windows, Linux and MacOS.
Stars: ✭ 144 (+269.23%)
FloodgateHybrid mode plugin to allow for connections from Geyser to join online mode servers.
Stars: ✭ 101 (+158.97%)
Artifacts KitPseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
Stars: ✭ 99 (+153.85%)
App PeidPEiD detects most common packers, cryptors and compilers for PE files.
Stars: ✭ 72 (+84.62%)
SigthiefStealing Signatures and Making One Invalid Signature at a Time
Stars: ✭ 830 (+2028.21%)
Win Version InfoWindows-only native addon to read version info from executables.
Stars: ✭ 5 (-87.18%)
ManalyzeA static analyzer for PE executables.
Stars: ✭ 701 (+1697.44%)
AmberReflective PE packer.
Stars: ✭ 594 (+1423.08%)
GoblinAn impish, cross-platform binary parsing crate, written in Rust
Stars: ✭ 591 (+1415.38%)
Rop ToolA tool to help you write binary exploits
Stars: ✭ 590 (+1412.82%)
DissectionThe dissection of a simple "hello world" ELF binary.
Stars: ✭ 427 (+994.87%)
BearparserPortable Executable parsing library (from PE-bear)
Stars: ✭ 415 (+964.1%)
PenetPortable Executable (PE) library written in .Net
Stars: ✭ 288 (+638.46%)
PepperPE (x86) and PE+ (x64) files viewer, based on libpe.
Stars: ✭ 65 (+66.67%)
MiniNT5-Toolssmall Windows 10 (based on Windows PE) with customised tools
Stars: ✭ 34 (-12.82%)
HatVenomHatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.
Stars: ✭ 84 (+115.38%)
mem64Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
Stars: ✭ 26 (-33.33%)
pe-loaderA Windows PE format file loader
Stars: ✭ 81 (+107.69%)
pelauncherPortable Executable launcher for Windows NT bypassing loader
Stars: ✭ 49 (+25.64%)
kcare-ucheckerA simple tool to detect outdated shared libraries
Stars: ✭ 174 (+346.15%)