Binary Analysis

#rust-tool#portable-executable#elf-parser

bingrepRust

A binary file analysis tool that colorizes and displays internal structures of ELF, Mach-O, PE, and archive formats.

Stars1.8k

Forks68

Last commit5 months ago

fn2yaraC++

A static binary analysis framework for automated reverse engineering and security analysis of compiled executables.

#disassembly#yara-signatures#api-analysis

Stars1.7k

Forks210

Last commit12 days ago

Executable Packing

A curated list of awesome resources (papers, tools, packers) related to executable packing, unpacking, and detection for malware analysis and cybersecurity.

#malware-packers#portable-executable#infosec-resources

Awesome executable packing

Last commit8 days ago

A curated list of awesome resources, tools, and literature on executable packing, unpacking, and detection for malware analysis and cybersecurity.

#malware-packers#obfuscation#awesome-list

#malware-packers#portable-executable#unpacking-tools

Last commit8 days ago

Executable Packing

A curated list of awesome resources for executable packing, unpacking, and detection, covering packers, tools, and literature.

#exploit-management#cli-tool#python

Last commit8 days ago

ViperPython

A binary analysis and management framework for organizing malware samples, exploits, and research scripts.

#pe#executable-format#mach

Forks345

Last commit3 years ago

goblinRust

A cross-platform, zero-copy binary parsing crate for ELF, Mach-O, PE, and archive formats, written in Rust.

Stars1.5k

Forks198

Last commit14 days ago

IaitōC++

A Qt and C++ GUI for the radare2 reverse engineering framework, designed to make binary analysis accessible.

#qt#radare2#qt5

Stars1.5k

Forks117

Last commit5 years ago

BARFPython

A multiplatform open-source framework for binary analysis and reverse engineering, supporting x86 and ARM architectures.

#arm#rop-gadgets#python

Stars1.4k

Forks171

Last commit6 years ago

TwiggyRust

A code size profiler for WebAssembly that analyzes call graphs to identify and eliminate bloat.

#rust-tool#developer-tools#webassembly

Stars1.4k

Forks75

Last commit3 months ago

cwe_checkerRust

A static analysis tool that detects Common Weakness Enumerations (CWEs) in binary executables across multiple CPU architectures.

#multi-architecture#ghidra#vulnerability-detection

Stars1.3k

Forks140

#execution-tracing#system-introspection#intel-vt-x

DRAKVUFC++

A virtualization-based agentless black-box binary analysis system for stealthy execution tracing.

Stars1.2k

Forks265

Last commit15 days ago

VelesC++

Binary data analysis and visualization tool that converts raw bytes into interactive visual patterns for rapid insight.

#qt#file-analysis#shaders

Stars1.2k

Forks120

Last commit7 years ago

PETools

A Windows toolkit for analyzing, editing, and manipulating Portable Executable (PE) files and processes.

#pefile#portable-executable#process-dumper

Stars1.2k

Forks143

Last commit7 months ago

IDRC++

Interactive Delphi Reconstructor (IDR) is a decompiler for Delphi-compiled Windows executables and DLLs, focusing on static analysis.

#delphi-decompiler#source-code-recovery#malware-analysis

Stars1.1k

Forks254

Last commit2 years ago

Protobuf inspectorPython

A tool to reverse-engineer and parse Protocol Buffers encoded blobs without knowing their definition.

#data-inspection#wire-format#python-library

Stars1.1k

Forks105

Last commit5 years ago

EXEInfo-PE

Free Windows executable and binary data detector that identifies packers, compilers, protectors, and file formats.

#exeinfo#pe-files#security-tools

Stars1.1k

Forks114

Last commit1 month ago

VivisectPython

A Python framework for disassembly, static analysis, symbolic execution, and debugging of binaries and malware.

#disassembler#emulation#python

Stars996

Forks191

Last commit2 days ago

Mach-O file format reference

A mirror of Apple's official documentation describing the Mach-O file format used for macOS and iOS executables.

#apple#executable-format#osx

Stars878

Forks169

#nuget#microsoft#security-scanning

BinSkimC#

A lightweight static analysis tool that validates security and correctness characteristics of Windows PE and Linux ELF binaries.

Stars854

Forks171

Last commit3 days ago

DECAF (Dynamic Executable Code Analysis Framework)C

A dynamic binary analysis framework based on QEMU for whole-system taint analysis and security research.

#taint-analysis#malware-analysis#intrusion-detection

Embed dependency information into Rust binaries for vulnerability auditing in production.

#supply-chain-security#sbom#cargo-subcommand

Stars828

Forks40

Last commit11 days ago

PE-bear

A freeware reversing tool for PE files, designed for fast and flexible malware analysis.

#pe-format#pe-files#windows-reversing

Stars779

Forks71

Last commit3 years ago

PEPackC

A command-line toolkit for analyzing and working with Portable Executable (PE) binaries on multiple platforms.

#pe-file#command-line-tools#portable-executable

Stars774

#taint-analysis#ctf-tools#control-flow-recovery

Last commit2 months ago

demovfuscatorC++

A deobfuscator that recovers control flow from binaries compiled with the M/o/Vfuscator one-instruction compiler.

Stars762

Forks59

#fireeye-data-science#command-line-tool#strings-analysis

StringSifterPython

A machine learning tool that ranks strings by relevance for malware analysis, helping analysts prioritize suspicious strings.

Stars756

Forks127

Last commit2 months ago

AndromedaC++

Interactive reverse engineering tool for Android applications, written in C/C++ for performance.

#apk-analysis#android#android-reverse-engineering

Stars712

Forks75

Last commit6 years ago

PESecurityPowerShell

PowerShell module to check Windows binaries for security features like ASLR, DEP, SafeSEH, and Authenticode.

#windows-security#control-flow-guard#security-hardening

Stars664

Forks148