Reverse Engineering

sfallC++

A set of engine modifications for Fallout 2, providing bug fixes, modern OS support, and extended scripting for modders.

drltraceHTML

A dynamic API calls tracer for Windows and Linux applications, built on DynamoRIO for transparent malware analysis.

UnlockECUC#

A free, open-source tool for reverse-engineering and generating ECU seed-key pairs to unlock automotive electronic control units.

ScratchABitPython

An interactive, retargetable disassembler with IDAPython-compatible plugin API for static analysis and reverse engineering.

Cuckoo-modifiedPython

A modified fork of Cuckoo Sandbox with enhanced malware analysis capabilities, improved stability, and additional features.

PyewPython

A command-line Python tool for malware analysis with hex viewing, disassembly, file format support, and plugin architecture.

Delphi Detours LibraryPascal

A Delphi and Free Pascal library for hooking functions and methods, including Windows API, COM interfaces, and object methods.

cgasmPLpgSQL

A standalone, offline terminal tool that provides x86 assembly instruction documentation without internet access.

pokegold-spaceworldAssembly

A work-in-progress disassembly of the Pokémon Gold and Silver 1997 Space World demo prototypes.

PolichombrPython

A collaborative malware analysis framework for storing samples, automating analysis, and sharing insights via IDA Pro integration.

DirPlayerRust

A web-compatible Shockwave Player emulator written in Rust for playing old browser games on modern browsers.

DarunGrim

A binary diffing and patch analysis tool for reverse engineering and vulnerability research.

PE-PackerC

A packer for Windows x86 executable files that transforms and encrypts PE files to obstruct reverse engineering.

Arduino Game Boy Printer EmulatorC++

An Arduino-based emulator that captures images from Game Boy games via the link cable, replacing the original Game Boy Printer.

Awesome ARM Exploitation

A curated collection of videos, articles, books, tools, and resources focused on ARM architecture exploitation techniques.

Pokemon-Go-Rocket-APIC#

An unofficial C# client API library for interacting with Pokémon GO game servers, enabling programmatic gameplay automation.

Firmware ExtractorPython

Extracts firmware images from various Android manufacturer archives into simple EXT2 images for easy extraction.

pokemon-reverse-engineering-toolsPython

A collection of Python tools for reverse engineering Pokémon Red and Crystal, including disassemblers, map editors, and graphics converters.

DC3-MWCPPython

A framework for parsing configuration information from malware, extracting items like addresses, passwords, and filenames.

Astral-PEC#

A low-level mutator for Windows PE files that obfuscates headers and metadata to break static analysis signatures without breaking execution.

dynStructC

A reverse engineering tool that uses DynamoRIO and Capstone to automatically recover data structures from ELF binaries by monitoring memory accesses.

dumpflashPython

A low-level utility for dumping, writing, and analyzing data from physical NAND Flash memory or virtual image files.

Pokémon TCGAssembly

A complete disassembly of the Pokémon Trading Card Game for Game Boy Color, enabling ROM analysis and modification.

mgbdisAssembly

A Game Boy ROM disassembler that generates RGBDS-compatible assembly code with support for symbol files and image extraction.

Xiaomi Yi AutoexecAGS Script

A collection of autoexec scripts and mods for Xiaomi Yi cameras, enabling custom functionality through firmware reverse engineering.

UnderworldGodotC#

An open-source engine recreation of Ultima Underworld and Ultima Underworld 2 using the Godot Engine.

antinetC#

A .NET library that prevents managed debuggers and profilers from working by exploiting undocumented CLR features.

CanoPyPython

A CAN bus visualization tool for real-time message plotting to aid in reverse engineering.

inVtero.netC#

A high-speed memory forensics tool for analyzing physical memory dumps to find/extract processes and hypervisors using virtual machine introspection.

ROPMEMUPython

A framework to analyze, dissect, and decompile complex code-reuse attacks like ROP chains from memory dumps.

HexiC++

A lightweight, header-only C++23 library for safe binary data streaming and serialization, primarily for network protocols.

idalibRust

Idiomatic Rust bindings for the IDA SDK, enabling development of standalone binary analysis tools.

MIPT CTFPython

A beginner-friendly CTF (Capture The Flag) course covering cybersecurity topics like cryptography, web security, binary exploitation, and reverse engineering.

OllyDbg OEP finder scriptsBatchfile

A collection of OllyDbg scripts for unpacking and analyzing software protections in reverse engineering.

PackerAttackerC++

A C++ Windows malware analysis tool that uses memory and code hooks to detect and extract hidden code from packers.

PakkeroGo

A Go-based binary packer that compresses, encrypts, and protects ELF binaries, scripts, and AppImages from tampering and reverse engineering.