169 Open source projects that are alternatives of or similar to PEiD

Validates yara rules and tries to repair the broken ones.

🐺 Malware analysis platform

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)

DIE engine

🐺 Malware analysis platform

Yara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)

YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.

Yara scan Phishing Kit's Zip archive(s)

Set of Yara rules for finding files using magics headers

A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.

Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules

Signatures and IoCs from public Volexity blog posts.

Yara rules written by me, for free use.

Loki - Simple IOC and Incident Response Scanner

DyninstAPI: Tools for binary instrumentation, analysis, and modification.

A port of Kaitai to the Hiew hex editor

The dissection of a simple "hello world" ELF binary.

📓 Some security related notes

Program for determining types of files for Windows, Linux and MacOS.

Binee: binary emulation environment

Components of a decompilation pipeline.

BARF : A multiplatform open source Binary Analysis and Reverse engineering Framework

A fast and accurate disassembler

A powerful static binary rewriting tool

The Kam1n0 Assembly Analysis Platform

Portable Reverse Engineering Framework

Public API, examples, documentation and issues for Binary Ninja

Intermediate Representation for Binary analysis and transformation

The PE file analysis toolkit

Binary Analysis Platform

软件安全工程师技能表

Authors

cwe_checker finds vulnerable patterns in binary executables

The Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber

Python core of avatar²

Framework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode

idenLib - Library Function Identification [This project is not maintained anymore]

The OpenSource Disassembler

DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior

Binary Analysis Framework in Rust

A low-overhead dynamic binary instrumentation and modification tool for ARM (now with both AArch32 and AArch64 support)

Code and exercises for a workshop on z3 and angr

PS / Bash / Python / Other scripts For FUN!

BootStomp: a bootloader vulnerability finder

《macOS软件安全与逆向分析》随书源码

Automated static analysis tools for binary programs

A comprehensive binary emulation and instrumentation platform.

Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.

High-level library for executable binary file analysis

B2R2 is a collection of useful algorithms, functions, and tools for binary analysis.

《macOS软件安全与逆向分析》勘误

PE (x86) and PE+ (x64) files viewer, based on libpe.

Symbolic execution tool

REmatch, a complete binary diffing framework that is free and strives to be open source and community driven.

No description or website provided.

No description or website provided.

sleigh craft!

Andromeda - Interactive Reverse Engineering Tool for Android Applications