KsmA fast, hackable and simple x64 VT-x hypervisor for Windows and Linux. Builtin userspace sandbox and introspection engine.
Stars: ✭ 673 (+112.3%)
elfinfoUtility for displaying which compiler was used for creating an ELF file + basic info
Stars: ✭ 22 (-93.06%)
Frida ScriptsA collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.
Stars: ✭ 665 (+109.78%)
Vac BypassValve Anti-Cheat bypass written in C.
Stars: ✭ 241 (-23.97%)
Makinmakin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Stars: ✭ 645 (+103.47%)
pax-utils[MIRROR] ELF related utils for ELF 32/64 binaries that can check files for security relevant properties
Stars: ✭ 58 (-81.7%)
AndromedaAndromeda - Interactive Reverse Engineering Tool for Android Applications
Stars: ✭ 627 (+97.79%)
RecafThe modern Java bytecode editor
Stars: ✭ 3,374 (+964.35%)
checksec.rsFast multi-platform (ELF/PE/MachO) binary checksec written in Rust.
Stars: ✭ 71 (-77.6%)
Invtero.netinVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
Stars: ✭ 237 (-25.24%)
IdarlingCollaborative Reverse Engineering plugin for IDA Pro & Hex-Rays
Stars: ✭ 588 (+85.49%)
SimpleatorSimpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Stars: ✭ 260 (-17.98%)
BinexportExport disassemblies into Protocol Buffers
Stars: ✭ 586 (+84.86%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (-25.24%)
NetzobNetzob: Protocol Reverse Engineering, Modeling and Fuzzing
Stars: ✭ 584 (+84.23%)
novabootA tool that automates booting of operating systems on target hardware or in qemu
Stars: ✭ 32 (-89.91%)
Awesome Radare2A curated list of awesome projects, articles and the other materials powered by Radare2
Stars: ✭ 580 (+82.97%)
RellicRellic produces goto-free C output from LLVM bitcode
Stars: ✭ 234 (-26.18%)
MonkeydevCaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.
Stars: ✭ 5,492 (+1632.49%)
batBattery management utility for Linux laptops.
Stars: ✭ 107 (-66.25%)
UofwThe unofficial Official FirmWare, a complete latest PSP firmware reverse engineering project
Stars: ✭ 230 (-27.44%)
Tigress protectionPlaying with the Tigress binary protection. Break some of its protections and solve some of its challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.
Stars: ✭ 550 (+73.5%)
drop-tcp-sockThis module allows one to kill TCP sockets (including TIME-WAIT state).
Stars: ✭ 58 (-81.7%)
Lazy importerlibrary for importing functions from dlls in a hidden, reverse engineer unfriendly way
Stars: ✭ 544 (+71.61%)
Uefi retoolA tool for UEFI firmware reverse engineering
Stars: ✭ 227 (-28.39%)
JnitraceA Frida based tool that traces usage of the JNI API in Android apps.
Stars: ✭ 534 (+68.45%)
LinuxXanMod: Linux kernel source code tree
Stars: ✭ 310 (-2.21%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (+61.51%)
Radare2bookRadare2 official book
Stars: ✭ 502 (+58.36%)
devheartListen to Tux's heartbeat with this awesome Linux Kernel Module ❤️
Stars: ✭ 58 (-81.7%)
Ipv6 HostsFork of https://code.google.com/archive/p/ipv6-hosts/, focusing on automation
Stars: ✭ 4,408 (+1290.54%)
FhexA Full-Featured HexEditor compatible with Linux/Windows/MacOS
Stars: ✭ 225 (-29.02%)
proton wsl2Proton Kernel for the Windows Subsystem for Linux 2 (WSL 2). Highly experimental and always at the mercy of Windows Update.
Stars: ✭ 23 (-92.74%)
Mjapptools【越狱-逆向】处理iOS APP信息的命令行工具
Stars: ✭ 479 (+51.1%)
LibrwA re-implementation of the RenderWare Graphics engine
Stars: ✭ 223 (-29.65%)
PokerubyDecompilation of Pokémon Ruby/Sapphire
Stars: ✭ 476 (+50.16%)
virtblkiosimVirtual Linux block device driver for simulating and performing I/O.
Stars: ✭ 30 (-90.54%)
StringsifterA machine learning tool that ranks strings based on their relevance for malware analysis.
Stars: ✭ 469 (+47.95%)
Kaitai structKaitai Struct: declarative language to generate binary data parsers in C++ / C# / Go / Java / JavaScript / Lua / Perl / PHP / Python / Ruby
Stars: ✭ 2,736 (+763.09%)
GeaconPractice Go programming and implement CobaltStrike's Beacon in Go
Stars: ✭ 460 (+45.11%)
LumenA private Lumina server for IDA Pro
Stars: ✭ 257 (-18.93%)
TerracognitaReads from existing Cloud Providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration
Stars: ✭ 452 (+42.59%)
UnicornUnicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, X86)
Stars: ✭ 4,934 (+1456.47%)
The Backdoor FactoryPatch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Stars: ✭ 2,904 (+816.09%)
PokegoldDisassembly of Pokémon Gold/Silver
Stars: ✭ 215 (-32.18%)
UmlgraphDeclarative specification and drawing of UML diagrams
Stars: ✭ 314 (-0.95%)
IdacodeAn integration for IDA and VS Code which connects both to easily execute and debug IDAPython scripts.
Stars: ✭ 312 (-1.58%)
Macbook《macOS软件安全与逆向分析》随书源码
Stars: ✭ 302 (-4.73%)
Nt wrapperA wrapper library around native windows sytem APIs
Stars: ✭ 287 (-9.46%)
InfectpeInfectPE - Inject custom code into PE file [This project is not maintained anymore]
Stars: ✭ 266 (-16.09%)
ksmbdksmbd kernel server(SMB/CIFS server)
Stars: ✭ 98 (-69.09%)
portablebpfYou came here so you could have a base code to serve you as an example on how to develop a BPF application, compatible to BCC and/or LIBBPF, specially LIBBPF, having the userland part made in C or PYTHON.
Stars: ✭ 32 (-89.91%)
Intel nuc ledIntel NUC7i[x]BN and NUC6CAY LED Control for Linux
Stars: ✭ 77 (-75.71%)