640 Open source projects that are alternatives of or similar to Panda

Binary Analysis Platform

Hand-crafted Frida examples

Android Unpacker presented at Defcon 22: Android Hacker Protection Level 0

Setup scripts for my Malware Analysis VMs

S2E: A platform for multi-path program analysis with selective symbolic execution.

Xilinx's fork of Quick EMUlator (QEMU) with improved support and modelling for the Xilinx platforms.

🖥️ An xv6-like operating system on RISC-V with multi-core support. Documentation available online.

Keep track of the labs from the book "Practical Malware Analysis"

Analysis scripts for Ghidra to work with Android NDK libraries.

Getting Genymotion & Burpsuite setup for Android Mobile App Analysis

Automated code reviews via mutation testing - semantic code coverage.

A dnSpy extension to aid reversing of obfuscated assemblies

Run macOS on QEMU/KVM. With OpenCore + Big Sur + Monterey support now! Only commercial (paid) support is available now to avoid spammy issues. No Mac system is required.

🔐 Run frida-server on boot with Magisk, always up-to-date

Toolkit for enriching and speeding up static malware analysis

This project aims at simplifying Windows API import recovery on arbitrary memory dumps

Dynamic definitions and types provider for ruby static analysis

REmatch, a complete binary diffing framework that is free and strives to be open source and community driven.

elf-strings will programmatically read an ELF binary's string sections within a given binary. This is meant to be much like the strings UNIX utility, however is purpose built for ELF binaries.

Reverse Engineer MView 3D File Format

Java / Kotlin Decompiler and AST Library

Use BIOS ram hacks to make a SSH server out of any INT 10 13h app (MS-DOS is one of those)

Disassembly of Pokémon TCG

Malware Behavior Analyzer

Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

A {Windows, macOS, Linux} client recreating the functionality of the Sony Headphones app

A Minimalist Instruction Extender for the ARM architecture and IDA Pro

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

🛠 Tools and scripts to manipulate Android APKs

Unsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

PE file viewer/editor for Windows, Linux and MacOS.

Game Boy ROM disassembler with RGBDS compatible output

Tool for viewing and analyzing execution traces

Collection of tools for Super Mario 64 ROM hacking

Dark theme installer for Ghidra

IDA Pro for macOS绿化

Nintendo Switch loader for Ghidra

Portable Reverse Engineering Framework

WechatMagician is a Xposed module written in Kotlin, that allows you to completely control your Wechat.

Re-implementation of Abe's Exoddus and Abe's Oddysee

Arch-boxes provides automated builds of the Arch Linux releases for different providers and post-processors (read-only mirror)

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A fast and elegant extension for VSCode used for iOSre projects.

Python 3 bridge to Ghidra's Python scripting

SteamKit2 is a .NET library designed to interoperate with Valve's Steam network. It aims to provide a simple, yet extensible, interface to perform various actions on the network.

A collection of hacking / penetration testing resources to make you better!

"Just Another ReVersIng Suite" or whatever other bullshit you can think of

Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)

An unofficial, reverse-engineered Python API for tastyworks.

Some frida scripts

Automatic snapshot tool for Proxmox VE

Abandoned C++ version. Contains useful format utils and parsers.

A "shim" for loading native jni files for Android active debugging

A memory scanner plugin for x64dbg, inspired by Cheat Engine.

Repository has been moved.

Wechat Spellbook 是一个使用Kotlin编写的开源微信插件框架，底层需要 Xposed 或 VirtualXposed 等Hooking框架的支持，而顶层可以轻松对接Java、Kotlin、Scala等JVM系语言。让程序员能够在几分钟内编写出简单的微信插件，随意揉捏微信的内部逻辑。

The Redexer binary instrumentation framework for Dalvik bytecode

Scripts to unpack APK protected by Legu