Trending repositories for topic binary-analysis

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

State-of-the-art native debugging tool

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

LIEF - Library to Instrument Executable Formats

DIE engine

Dynamic Instrumentation Tool Platform

A curated list of awesome resources related to executable packing

BinAbsInspector: Vulnerability Scanner for Binaries

Public API, examples, documentation and issues for Binary Ninja

Symbolic execution tool

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

Collection of forensic tools

The PE file analysis toolkit

A powerful static binary rewriting tool

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

A curated list of awesome resources related to executable packing

State-of-the-art native debugging tool

Public API, examples, documentation and issues for Binary Ninja

Collection of forensic tools

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

BinAbsInspector: Vulnerability Scanner for Binaries

Dynamic Instrumentation Tool Platform

The PE file analysis toolkit

LIEF - Library to Instrument Executable Formats

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Program for determining types of files for Windows, Linux and MacOS.

A powerful static binary rewriting tool

UNIX-like reverse engineering framework and command-line toolset

Symbolic execution tool

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

LIEF - Library to Instrument Executable Formats

DIE engine

State-of-the-art native debugging tool

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Dynamic Instrumentation Tool Platform

Public API, examples, documentation and issues for Binary Ninja

A curated list of awesome resources related to executable packing

The OpenSource Disassembler

Signature maker plugin for IDA 8.x

An impish, cross-platform binary parsing crate, written in Rust

BinAbsInspector: Vulnerability Scanner for Binaries

Binary Analysis Platform

Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection

A plugin for IDA that can dump the ELF file easily.

Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption logic, password strings, vulnerabilities, etc.

Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection

Signature maker plugin for IDA 8.x

A plugin for IDA that can dump the ELF file easily.

Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption logic, password strings, vulnerabilities, etc.

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Public API, examples, documentation and issues for Binary Ninja

A curated list of awesome resources related to executable packing

State-of-the-art native debugging tool

LIEF - Library to Instrument Executable Formats

Program for determining types of files for Windows, Linux and MacOS.

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Collection of forensic tools

Dynamic Instrumentation Tool Platform

The OpenSource Disassembler

An impish, cross-platform binary parsing crate, written in Rust

The PE file analysis toolkit

UNIX-like reverse engineering framework and command-line toolset

BinAbsInspector: Vulnerability Scanner for Binaries

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

LIEF - Library to Instrument Executable Formats

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

State-of-the-art native debugging tool

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

DIE engine

Dynamic Instrumentation Tool Platform

A curated list of awesome resources related to executable packing

EMBA - The firmware security analyzer

Binary Analysis Platform

A symbolic execution engine for EVM smart contract binaries.

A powerful static binary rewriting tool

Framework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode

Signature maker plugin for IDA 8.x

Collection of forensic tools

Public API, examples, documentation and issues for Binary Ninja

A plugin for IDA that can help to analyze binary file, it is based on the gpt-3.5-turbo model trained by OpenAI, the same as ChatGPT.

A symbolic execution engine for EVM smart contract binaries.

The code repository for the Snake&Apple article series.

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

Signature maker plugin for IDA 8.x

Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection

A plugin for IDA that can dump the ELF file easily.

Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption logic, password strings, vulnerabilities, etc.

A list of open source reverse engineering tools with a focus on binary analysis

Binary Code Similarity Analysis (BCSA) Benchmark

IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.

A curated list of awesome resources related to executable packing

Library for parsing internal structures of PE32/PE32+ binary files.

Collection of forensic tools

A Ghidra headless analyzer tailored for Qt binary analysis

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

A modern, modular, and robust TUI hex editor.

State-of-the-art native debugging tool

The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.

A research decompiler implemented as a Binary Ninja plugin.

Binary Code Similarity Analysis (BCSA) Tool

Collection of forensic tools

IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.

Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption logic, password strings, vulnerabilities, etc.

SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool

The code repository for the Snake&Apple article series.

Binary Diff Utility

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

EMBA - The firmware security analyzer

LIEF - Library to Instrument Executable Formats

State-of-the-art native debugging tool

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Collection of forensic tools

A plugin for IDA that can help to analyze binary file, it is based on the gpt-3.5-turbo model trained by OpenAI, the same as ChatGPT.

A curated list of awesome resources related to executable packing

Dynamic Instrumentation Tool Platform

cwe_checker finds vulnerable patterns in binary executables

Symbolic execution tool

BinAbsInspector: Vulnerability Scanner for Binaries

Binary Analysis Platform

An impish, cross-platform binary parsing crate, written in Rust

A modern, modular, and robust TUI hex editor.

Signature maker plugin for IDA 8.x

Collection of forensic tools

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

A symbolic execution engine for EVM smart contract binaries.

Binary Diff Utility

A modern, modular, and robust TUI hex editor.

Implementation of CCS'2022 paper "SymLM: Predicting Function Names in Stripped Binaries via Context-Sensitive Execution-Aware Code Embeddings"

A binary visualization tool to aid with reverse engineering and malware detection similar to Cantor.Dust

Unofficial CMake build for Ghidra's C++ SLEIGH code

The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.

A plugin for IDA that can help to analyze binary file, it is based on the gpt-3.5-turbo model trained by OpenAI, the same as ChatGPT.

A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

:gem: Go library to parse Executable and Linkable Format (ELF) files.

Python implementation of the Packed Executable iDentifier (PEiD)

📡🐧 Linux kernel syscall implementation tracker

A list of open source reverse engineering tools with a focus on binary analysis

A research decompiler implemented as a Binary Ninja plugin.

A (SLEIGH) disassembler that supports multiple architectures

Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

A curated list of awesome resources related to executable packing