UnicornUnicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, X86)
Stars: ✭ 4,934 (+75.21%)
GtirbIntermediate Representation for Binary analysis and transformation
Stars: ✭ 190 (-93.25%)
Php Malware AnalysisDeobfuscation and analysis of PHP malware captured by a WordPress honey pot
Stars: ✭ 82 (-97.09%)
BineeBinee: binary emulation environment
Stars: ✭ 408 (-85.51%)
ZelosA comprehensive binary emulation and instrumentation platform.
Stars: ✭ 298 (-89.42%)
SimpleatorSimpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Stars: ✭ 260 (-90.77%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+37.25%)
DdisasmA fast and accurate disassembler
Stars: ✭ 325 (-88.46%)
ReplicaGhidra Analysis Enhancer 🐉
Stars: ✭ 194 (-93.11%)
xbpchxarray interface for bpch files
Stars: ✭ 17 (-99.4%)
MalScanA Simple PE File Heuristics Scanners
Stars: ✭ 41 (-98.54%)
ips-bph-frameworkBLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture
Stars: ✭ 21 (-99.25%)
B2r2B2R2 is a collection of useful algorithms, functions, and tools for binary analysis.
Stars: ✭ 262 (-90.7%)
EfixplorerIDA plugin for UEFI firmware analysis and reverse engineering automation
Stars: ✭ 268 (-90.48%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (-89.88%)
Nt wrapperA wrapper library around native windows sytem APIs
Stars: ✭ 287 (-89.81%)
PwndbgExploit Development and Reverse Engineering with GDB Made Easy
Stars: ✭ 4,178 (+48.37%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (-86.36%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (-85.87%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-84.55%)
Reverse Engineering TutorialA FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
Stars: ✭ 5,763 (+104.65%)
CapstoneCapstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
Stars: ✭ 5,374 (+90.84%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (-81.82%)
Lazy importerlibrary for importing functions from dlls in a hidden, reverse engineer unfriendly way
Stars: ✭ 544 (-80.68%)
Dotnet Assembly GrapherReverse engineering and software quality assurance tool for .NET assemblies
Stars: ✭ 21 (-99.25%)
HatVenomHatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.
Stars: ✭ 84 (-97.02%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-99.4%)
MedusaAn open source interactive disassembler
Stars: ✭ 946 (-66.41%)
EfiseekGhidra analyzer for UEFI firmware.
Stars: ✭ 45 (-98.4%)
InfectpeInfectPE - Inject custom code into PE file [This project is not maintained anymore]
Stars: ✭ 266 (-90.55%)
smram parseSystem Management RAM analysis tool
Stars: ✭ 50 (-98.22%)
DataAPTnotes data
Stars: ✭ 1,126 (-60.01%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-98.37%)
NovuscoreA modern take on WoW emulation
Stars: ✭ 88 (-96.87%)
IlluminatejsIlluminateJS is a static JavaScript deobfuscator
Stars: ✭ 96 (-96.59%)
E9patchA powerful static binary rewriting tool
Stars: ✭ 317 (-88.74%)
RichkwareFramework for building Windows malware, written in C++
Stars: ✭ 315 (-88.81%)
cerberus researchResearch tools for analysing Cerberus banking trojan.
Stars: ✭ 110 (-96.09%)
FlashmingoAutomatic analysis of SWF files based on some heuristics. Extensible via plugins.
Stars: ✭ 115 (-95.92%)
ManalyzeA static analyzer for PE executables.
Stars: ✭ 701 (-75.11%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (-76.46%)
Awesome Hacking ResourcesA collection of hacking / penetration testing resources to make you better!
Stars: ✭ 11,466 (+307.17%)
PracticalmalwarelabsKeep track of the labs from the book "Practical Malware Analysis"
Stars: ✭ 130 (-95.38%)
Locky Stars: ✭ 61 (-97.83%)
XanalyzerxAnalyzer plugin for x64dbg
Stars: ✭ 553 (-80.36%)
KeystoneKeystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings
Stars: ✭ 1,654 (-41.26%)
S2eS2E: A platform for multi-path program analysis with selective symbolic execution.
Stars: ✭ 102 (-96.38%)
PrefPortable Reverse Engineering Framework
Stars: ✭ 127 (-95.49%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (-50.82%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (-94.28%)
vulnscanA static binary vulnerability scanner
Stars: ✭ 47 (-98.33%)
unicorn-netWIP .NET binding/wrapper for the Unicorn engine written in C#
Stars: ✭ 44 (-98.44%)
AngrA powerful and user-friendly binary analysis platform!
Stars: ✭ 5,542 (+96.8%)
ArsenalExtensible Red Team Framework
Stars: ✭ 99 (-96.48%)
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Stars: ✭ 2,026 (-28.05%)