Trending repositories for topic binary-analysis

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

Articles and tools related to research in the Apple environment (mainly macOS).

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

The FLARE team's open-source tool to identify capabilities in executable files.

Public API, examples, documentation and issues for Binary Ninja

DIE engine

State-of-the-art native debugging tools

Dynamic Instrumentation Tool Platform

cwe_checker finds vulnerable patterns in binary executables

EMBA - The firmware security analyzer

BinAbsInspector: Vulnerability Scanner for Binaries

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

Signature maker plugin for IDA 8.x and 9.x

DyninstAPI: Tools for binary instrumentation, analysis, and modification.

A curated list of awesome resources related to executable packing

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

Articles and tools related to research in the Apple environment (mainly macOS).

Public API, examples, documentation and issues for Binary Ninja

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

Signature maker plugin for IDA 8.x and 9.x

cwe_checker finds vulnerable patterns in binary executables

Program for determining types of files for Windows, Linux and MacOS.

DIE engine

Dynamic Instrumentation Tool Platform

The FLARE team's open-source tool to identify capabilities in executable files.

State-of-the-art native debugging tools

DyninstAPI: Tools for binary instrumentation, analysis, and modification.

BinAbsInspector: Vulnerability Scanner for Binaries

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

UNIX-like reverse engineering framework and command-line toolset

A curated list of awesome resources related to executable packing

Toolkit to emulate firmware and analyse it for security vulnerabilities

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

State-of-the-art native debugging tools

Articles and tools related to research in the Apple environment (mainly macOS).

The FLARE team's open-source tool to identify capabilities in executable files.

DIE engine

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

EMBA - The firmware security analyzer

Dynamic Instrumentation Tool Platform

Public API, examples, documentation and issues for Binary Ninja

cwe_checker finds vulnerable patterns in binary executables

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Signature maker plugin for IDA 8.x and 9.x

Toolkit to emulate firmware and analyse it for security vulnerabilities

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

Articles and tools related to research in the Apple environment (mainly macOS).

A Ghidra headless analyzer tailored for Qt binary analysis

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Signature maker plugin for IDA 8.x and 9.x

The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.

Unofficial CMake build for Ghidra's C++ SLEIGH code

Public API, examples, documentation and issues for Binary Ninja

The Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber

Program for determining types of files for Windows, Linux and MacOS.

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

A fast and accurate disassembler

cwe_checker finds vulnerable patterns in binary executables

BootStomp: a bootloader vulnerability finder

📡🐧 Linux kernel syscall implementation tracker

DIE engine

Toolkit to emulate firmware and analyse it for security vulnerabilities

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

State-of-the-art native debugging tools

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Program for determining types of files for Windows, Linux and MacOS.

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

UNIX-like reverse engineering framework and command-line toolset

The FLARE team's open-source tool to identify capabilities in executable files.

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

DIE engine

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

State-of-the-art native debugging tools

Dynamic Instrumentation Tool Platform

A plugin for IDA that can help to analyze binary file, it can be based on models such as gpt-3.5 turbo, gpt-4 trained by OpenAI, the same as ChatGPT.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Toolkit to emulate firmware and analyse it for security vulnerabilities

A curated list of awesome resources related to executable packing

Signature maker plugin for IDA 8.x and 9.x

Public API, examples, documentation and issues for Binary Ninja

cwe_checker finds vulnerable patterns in binary executables

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Articles and tools related to research in the Apple environment (mainly macOS).

PE32 (x86) and PE32+ (x64) binaries analysis tool, resources viewer/extractor.

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

A Ghidra headless analyzer tailored for Qt binary analysis

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Signature maker plugin for IDA 8.x and 9.x

Unofficial CMake build for Ghidra's C++ SLEIGH code

A curated list of awesome binary analysis automation training, resources, and tools.

A list of open source reverse engineering tools with a focus on binary analysis

IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.

Program for determining types of files for Windows, Linux and MacOS.

A plugin for IDA that can help to analyze binary file, it can be based on models such as gpt-3.5 turbo, gpt-4 trained by OpenAI, the same as ChatGPT.

:gem: Go library to parse Executable and Linkable Format (ELF) files.

Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

EMBA - The firmware security analyzer

A fast and accurate disassembler

SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SC...

A plugin for IDA that can dump the ELF file easily.

A modern, modular, and robust TUI hex editor.

Collection of forensic tools

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Visualize binary files

Articles and tools related to research in the Apple environment (mainly macOS).

Web based binary analysis

Binary Diff Utility

ThingFinder is a tool designed to facilitate searching and analysing code, whether it's source code or compiled binary executables. It provides a modular interface for adding new parsers for identifyi...

A curated list of awesome binary analysis automation training, resources, and tools.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

The FLARE team's open-source tool to identify capabilities in executable files.

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

State-of-the-art native debugging tools

DIE engine

Collection of forensic tools

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A curated list of awesome resources related to executable packing

A plugin for IDA that can help to analyze binary file, it can be based on models such as gpt-3.5 turbo, gpt-4 trained by OpenAI, the same as ChatGPT.

Signature maker plugin for IDA 8.x and 9.x

Dynamic Instrumentation Tool Platform

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Public API, examples, documentation and issues for Binary Ninja

Binary Analysis Platform

A powerful static binary rewriting tool

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

Collection of forensic tools

A symbolic execution engine for EVM smart contract binaries.

IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.

Binary Diff Utility

A command line tool for extracting machine learning ready data from software binaries powered by Radare2

Signature maker plugin for IDA 8.x and 9.x

SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SC...

Web based binary analysis

📡🐧 Linux kernel syscall implementation tracker

A Ghidra headless analyzer tailored for Qt binary analysis

Unofficial CMake build for Ghidra's C++ SLEIGH code

A binary visualization tool to aid with reverse engineering and malware detection similar to Cantor.Dust

A framework for program analysis with a focus on modeling programmer assumptions, context- and path-sensitive analyses, and type checking.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

:gem: Go library to parse Executable and Linkable Format (ELF) files.

The FLARE team's open-source tool to identify capabilities in executable files.

Function signature matching and signature generation plugin for Binary Ninja