19 projects
Ghidra
Ghidra is a software reverse engineering (SRE) framework developed by the NSA for analyzing compiled code. It includes a suite of software analysis tools that help analyze malicious code and malware, providing capabilities to disassemble, decompile, and understand software for which source code is not available.
3,724
718
$96M
Radare2
Radare2 is an open-source reverse engineering framework that provides a complete set of tools for analyzing binaries, disassembling code, debugging programs, and performing forensics. It features a hexadecimal editor, supports multiple architectures and file formats, and includes capabilities for binary analysis, exploitation, and malware analysis.
3,503
639
$40M
PANDA
PANDA (Platform for Architecture-Neutral Dynamic Analysis) is an open-source platform for dynamic software analysis. It enables recording and replay of full-system executions, allowing detailed analysis of program behavior through a flexible plugin architecture. The platform extends QEMU to support dynamic taint analysis, reverse debugging, and malware analysis.
2,080
372
$55M
Rizin
UNIX-like reverse engineering framework and command-line toolset.
1,507
201
$40M
Capstone Engine
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
1,311
311
$42M
Binary Ninja API
Public API, examples, documentation and issues for Binary Ninja
1,198
244
$29M
pwndbg
Exploit Development and Reverse Engineering with GDB & LLDB Made Easy
1,116
225
$3.9M
Miri
Miri is an interpreter for Rust's mid-level intermediate representation (MIR) that detects undefined behavior in Rust code. It acts as a dynamic analysis tool to help catch memory safety issues and other undefined behaviors at runtime that the Rust compiler cannot detect at compile time.
970
307
$2.6M
LIEF
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
878
207
$20M
DynamoRIO
Dynamic Instrumentation Tool Platform
684
109
$39M
AFLplusplus
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
CAPE
Malware Configuration And Payload Extraction
Dyninst
DyninstAPI: Tools for binary instrumentation, analysis, and modification.
Frida
Clone this repo to build Frida
GEF (GDB Enhanced Features)
GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
OWASP Mobile Application Security Testing Guide
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
Unity Assets Explorer
GUI Application to work with engine assets, asset bundles, and serialized files
rr
Record and Replay Framework