Trending repositories for topic binary-analysis

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

The FLARE team's open-source tool to identify capabilities in executable files.

DIE engine

State-of-the-art native debugging tools

Obfuscator-llvm Control Flow Flattening Deobfuscator

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

EMBA - The firmware security analyzer

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

Obfuscator-llvm Control Flow Flattening Deobfuscator

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

DIE engine

State-of-the-art native debugging tools

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Program for determining types of files for Windows, Linux and MacOS.

The FLARE team's open-source tool to identify capabilities in executable files.

UNIX-like reverse engineering framework and command-line toolset

EMBA - The firmware security analyzer

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

DIE engine

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

Obfuscator-llvm Control Flow Flattening Deobfuscator

State-of-the-art native debugging tools

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

The FLARE team's open-source tool to identify capabilities in executable files.

EMBA - The firmware security analyzer

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

A plugin for IDA that can help to analyze binary file, it can be based on commonly used AI big models such as OpenAI and DeepSeek.

An impish, cross-platform binary parsing crate, written in Rust

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

A curated list of awesome resources related to executable packing

Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.

Collection of forensic tools

Public API, examples, documentation and issues for Binary Ninja

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

Obfuscator-llvm Control Flow Flattening Deobfuscator

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

A framework for program analysis with a focus on modeling programmer assumptions, context- and path-sensitive analyses, and type checking.

A symbolic execution engine for EVM smart contract binaries.

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

Tantō slices functions into more consumable chunks

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

A Ghidra headless analyzer tailored for Qt binary analysis

Articles and tools related to research in the Apple environment (mainly macOS).

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.

DIE engine

Collection of forensic tools

A plugin for IDA that can help to analyze binary file, it can be based on commonly used AI big models such as OpenAI and DeepSeek.

Program for determining types of files for Windows, Linux and MacOS.

An impish, cross-platform binary parsing crate, written in Rust

A modern, modular, and robust TUI hex editor.

Obfuscator-llvm Control Flow Flattening Deobfuscator

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Program for determining types of files for Windows, Linux and MacOS.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Obfuscator-llvm Control Flow Flattening Deobfuscator

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

The FLARE team's open-source tool to identify capabilities in executable files.

State-of-the-art native debugging tools

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

DIE engine

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A plugin for IDA that can help to analyze binary file, it can be based on commonly used AI big models such as OpenAI and DeepSeek.

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

EMBA - The firmware security analyzer

Collection of forensic tools

Dynamic Instrumentation Tool Platform

A curated list of awesome resources related to executable packing

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

Obfuscator-llvm Control Flow Flattening Deobfuscator

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

Articles and tools related to research in the Apple environment (mainly macOS).

Tantō slices functions into more consumable chunks

PE Parsing, but blazing fast

weggli ruleset scanner for source code and binaries

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

一个自由强大跨平台的十六进制编辑器 / A free, powerful, cross-platform hex editor

Collection of forensic tools

:gem: Go library to parse Executable and Linkable Format (ELF) files.

FLARE Team's Binary Navigator

A framework for program analysis with a focus on modeling programmer assumptions, context- and path-sensitive analyses, and type checking.

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.

A Ghidra headless analyzer tailored for Qt binary analysis

A command line tool for extracting machine learning ready data from software binaries powered by Radare2

A symbolic execution engine for EVM smart contract binaries.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

FLARE Team's Binary Navigator

Visualize binary files

Obfuscator-llvm Control Flow Flattening Deobfuscator

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

Nyxelf is a highly effective tool tailored for analyzing malicious Linux ELF binaries, offering comprehensive support for both static and dynamic analysis techniques.

Web based binary analysis

一个自由强大跨平台的十六进制编辑器 / A free, powerful, cross-platform hex editor

A Model Context Protocol (MCP) server that enables AI assistants to interact with IDA Pro for reverse engineering and binary analysis tasks.

IDA Pro 9.0+ cross-platform port of @A200K's IDA-Pro-SigMaker to Python

ThingFinder is a tool designed to facilitate searching and analysing code, whether it's source code or compiled binary executables. It provides a modular interface for adding new parsers for identifyi...

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

weggli ruleset scanner for source code and binaries

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

The FLARE team's open-source tool to identify capabilities in executable files.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

State-of-the-art native debugging tools

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

EMBA - The firmware security analyzer

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

DIE engine

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A guide that explains how programs transform from source code to executables. Deep dive into ELF format, linking processes, and binary optimization techniques. Perfect for systems programmers, C devel...

Dynamic Instrumentation Tool Platform

A plugin for IDA that can help to analyze binary file, it can be based on commonly used AI big models such as OpenAI and DeepSeek.

A curated list of awesome resources related to executable packing

FLARE Team's Binary Navigator

Collection of forensic tools

Public API, examples, documentation and issues for Binary Ninja

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

CLI tool and Ghidra plug-in for analyzing binaries using under-constrained symbolic execution

Nyxelf is a highly effective tool tailored for analyzing malicious Linux ELF binaries, offering comprehensive support for both static and dynamic analysis techniques.

FLARE Team's Binary Navigator

A curated list of awesome binary analysis automation training, resources, and tools.

Articles and tools related to research in the Apple environment (mainly macOS).

Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.

Web based binary analysis

A symbolic execution engine for EVM smart contract binaries.

SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SC...

CLAP(Contrastive Language-Assembly Pre-training) learns transferable binary code representations with natural language supervision

Obfuscator-llvm Control Flow Flattening Deobfuscator

weggli ruleset scanner for source code and binaries

A command line tool for extracting machine learning ready data from software binaries powered by Radare2

A Ghidra headless analyzer tailored for Qt binary analysis

📡🐧 Linux kernel syscall implementation tracker

PE Parsing, but blazing fast

Collection of forensic tools

Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.