2880 Open source projects that are alternatives of or similar to Qiling

Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, X86)

Intermediate Representation for Binary analysis and transformation

Deobfuscation and analysis of PHP malware captured by a WordPress honey pot

Binee: binary emulation environment

A comprehensive binary emulation and instrumentation platform.

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

Android virtual machine and deobfuscator

A fast and accurate disassembler

Android Anti-Emulator

Ghidra Analysis Enhancer 🐉

xarray interface for bpch files

A Simple PE File Heuristics Scanners

BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture

B2R2 is a collection of useful algorithms, functions, and tools for binary analysis.

IDA plugin for UEFI firmware analysis and reverse engineering automation

🐺 Malware analysis platform

A wrapper library around native windows sytem APIs

Exploit Development and Reverse Engineering with GDB Made Easy

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

fireELF - Fileless Linux Malware Framework

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.

[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

library for importing functions from dlls in a hidden, reverse engineer unfriendly way

Reverse engineering and software quality assurance tool for .NET assemblies

My personal Automated Malware Analysis Sandboxes and Services

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

Java-layer Android Malware Simplifier

An open source interactive disassembler

Ghidra analyzer for UEFI firmware.

InfectPE - Inject custom code into PE file [This project is not maintained anymore]

System Management RAM analysis tool

APTnotes data

CLI tool to analyze PE files

A modern take on WoW emulation

IlluminateJS is a static JavaScript deobfuscator

A powerful static binary rewriting tool

Framework for building Windows malware, written in C++

Some results of my DGA reversing efforts

Research tools for analysing Cerberus banking trojan.

Automatic analysis of SWF files based on some heuristics. Extensible via plugins.

A static analyzer for PE executables.

FAME Automates Malware Evaluation

CFG explorer for binaries

A collection of hacking / penetration testing resources to make you better!

Keep track of the labs from the book "Practical Malware Analysis"

Collection of scripts for different malware analysis tasks

xAnalyzer plugin for x64dbg

Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings

S2E: A platform for multi-path program analysis with selective symbolic execution.

Portable Reverse Engineering Framework

Binary Analysis Platform

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

A static binary vulnerability scanner

WIP .NET binding/wrapper for the Unicorn engine written in C#

A powerful and user-friendly binary analysis platform!

Extensible Red Team Framework

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do