Trending repositories for topic program-analysis

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

UNIX-like reverse engineering framework and command-line toolset.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Corax for Java: A general static analysis framework for java code checking.

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

Performant type-checking for python.

Corax for Java: A general static analysis framework for java code checking.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

UNIX-like reverse engineering framework and command-line toolset.

Program for determining types of files for Windows, Linux and MacOS.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

Performant type-checking for python.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

DIE engine

UNIX-like reverse engineering framework and command-line toolset.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Performant type-checking for python.

A curated list of awesome LLVM (including Clang, etc) related resources.

Static Code Analysis - 静态代码分析

Quickly find differences and similarities in disassembled code

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

The official angr GUI.

cwe_checker finds vulnerable patterns in binary executables

Binary Analysis Platform

Static analysis framework for C

Quarkslab Bindiffer but not only !

A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.

Corax for Java: A general static analysis framework for java code checking.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

Static analysis framework for C

A curated list of awesome LLVM (including Clang, etc) related resources.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Quarkslab Bindiffer but not only !

DIE engine

A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.

UNIX-like reverse engineering framework and command-line toolset.

Corax for Java: A general static analysis framework for java code checking.

Program for determining types of files for Windows, Linux and MacOS.

The official angr GUI.

cwe_checker finds vulnerable patterns in binary executables

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Static Code Analysis - 静态代码分析

Quickly find differences and similarities in disassembled code

Binary Analysis Platform

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

DIE engine

UNIX-like reverse engineering framework and command-line toolset.

Quickly find differences and similarities in disassembled code

A compiler frontend for the C programming language

Performant type-checking for python.

The official angr GUI.

A new version of Soot with a completely overhauled architecture

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

Static Code Analysis - 静态代码分析

Binary Analysis Platform

A curated list of awesome LLVM (including Clang, etc) related resources.

Semgrep rules registry

A LLVM-based static analysis framework.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or furth...

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

A compiler frontend for the C programming language

Static analysis framework for C

A new version of Soot with a completely overhauled architecture

A curated list of awesome LLVM (including Clang, etc) related resources.

The official angr GUI.

VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or furth...

Corax for Java: A general static analysis framework for java code checking.

DIE engine

Semgrep rules registry

A collection of recent papers, benchmarks and datasets of AI4Code domain.

Quickly find differences and similarities in disassembled code

Program for determining types of files for Windows, Linux and MacOS.

A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.

The Ultimate program analysis framework.

An official book about Rizin

A decompiler to automatically reverse-engineer the DNN semantics from its compiled binary using program analysis

UNIX-like reverse engineering framework and command-line toolset.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Quickly find differences and similarities in disassembled code

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Corax for Java: A general static analysis framework for java code checking.

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

A precise and scalable pointer analysis for LLVM, written in Ascent

gradient-based symbolic execution engine implemented from scratch

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

Quickly find differences and similarities in disassembled code

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

UNIX-like reverse engineering framework and command-line toolset.

DIE engine

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

Performant type-checking for python.

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Rootstock, Tron and other EVM-compatible blockchains.

A new version of Soot with a completely overhauled architecture

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

Tai-e assignments for static program analysis

Corax for Java: A general static analysis framework for java code checking.

建议使用新版：https://github.com/jar-analyzer/jar-analyzer

Symbolic execution tool

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Static analyzer for C/C++ based on the theory of Abstract Interpretation.

Binary Analysis Platform

Semgrep rules registry

Static Code Analysis - 静态代码分析

Corax for Java: A general static analysis framework for java code checking.

Jar Analyzer - 一个JAR包分析工具，批量分析JAR包搜索，方法调用关系搜索，字符串搜索，Spring组件分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，进阶表达式搜索，自定义SQL查询，字节码查看，字节码指令级的动态调试分析，命令行分析，反编译JAR包一键导出，一键提取序列化数据恶意代码

Quarkslab Bindiffer but not only !

A precise and scalable pointer analysis for LLVM, written in Ascent

gradient-based symbolic execution engine implemented from scratch

Quickly find differences and similarities in disassembled code

Research Acceleration Platform that provides interface to multiple state-of-the-art program analysis tools including but not limited to fuzzing, static analysis and program repair.

VAST is an experimental compiler pipeline designed for program analysis of C and C++. It provides a tower of IRs as MLIR dialects to choose the best fit representations for a program analysis or furth...

No description

A new version of Soot with a completely overhauled architecture

A curated list of awesome LLVM (including Clang, etc) related resources.

A decompiler to automatically reverse-engineer the DNN semantics from its compiled binary using program analysis

A binary analysis framework written in Rust.

Static analysis of IEC 61131-3 programs

PASTIS: Collaborative Fuzzing Framework

A collection of recent papers, benchmarks and datasets of AI4Code domain.

A framework for program analysis with a focus on modeling programmer assumptions, context- and path-sensitive analyses, and type checking.

Static Python call graph generator

Program for determining types of files for Windows, Linux and MacOS.

Semgrep rules registry