Security Analysis
Showing 36 of 41 projects
A command line and GUI tool for decompiling Android Dex and APK files into readable Java source code.
A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more.
Uses graph theory to map hidden attack paths in Active Directory environments for security analysis.
A network protocol analyzer that captures and interactively browses traffic running on a computer network.
A web-based network traffic monitoring and security analysis application for real-time network visibility.
A .NET deobfuscator and unpacker that restores assemblies obfuscated by tools like Dotfuscator, SmartAssembly, and .NET Reactor.
A performant, incremental type checker for Python with integrated security analysis via Pysa.
A reconnaissance tool that finds potentially sensitive files in public GitHub repositories for security analysis.
A static analysis tool for finding errors and security vulnerabilities in PHP applications.
A comprehensive collection of Yara rules for malware detection, vulnerability identification, and security analysis.
A generic Android deobfuscator that uses virtual execution to simplify obfuscated code for human analysis.
A Python script to extract and fix PyInstaller executable contents for decompilation.
A symbolic-execution-based security analysis tool for detecting vulnerabilities in Ethereum and EVM-compatible smart contracts.
A Python tool that pulls infrastructure assets and relationships from AWS, GCP, Azure, and 30+ other platforms into a Neo4j graph for security analysis.
A fast, standalone tool for rapid threat hunting and forensic analysis of Windows event logs and other forensic artefacts.
An Xposed module for dynamic analysis of Android apps via API hooks, unexported activity launching, and runtime inspection.
A binary analysis IDE for inspecting, navigating, editing, and annotating control flow graphs and call graphs of disassembled code.
A curated directory of static analysis tools for PHP, covering bug detection, coding standards, metrics, and automated fixes.
A curated collection of DeFi and blockchain research papers, tools, and security resources for developers and researchers.
A Python security analysis tool that automatically discovers and reports comprehensive information about a given domain.
A reverse engineering framework for Flutter apps, enabling traffic interception and dynamic analysis via patched Flutter engines.
A full-featured, multi-architecture debugger built on PyQt5 and Frida for reverse engineering and security analysis.
Scans files and process memory for Cobalt Strike beacons and extracts their configuration.
A Windows Registry forensics tool for extracting and analyzing data from registry hives using Perl-based plugins.
A Python framework for creating protocol decoders and detectors to analyze APT tradecraft in network traffic.
A security analysis framework for WebAssembly modules and blockchain smart contracts (BTC/ETH/NEO/EOS).
A security analysis tool that visualizes Sysmon event logs using Elasticsearch and Kibana to investigate suspicious activity.
A web interface for the Volatility memory forensics framework that runs plugins, stores results in MongoDB, and enables cross-plugin search.
Collects assets and relationships from cloud, SaaS, and security systems into a Neo4j graph for security analysis.
Open source Terraform module registry with UI, Git integration, security alerts, cost estimation, and deep analysis.
A framework to analyze, dissect, and decompile complex code-reuse attacks like ROP chains from memory dumps.
A remote data analysis and classification service that evaluates HTTP requests and emulates vulnerabilities for honeypot systems.
An abstract interpreter for Rust's MIR that performs static analysis to find bugs and verify correctness properties.
An advanced Apache logfile security analyzer for post-attack forensics, detecting web application attacks using multiple detection techniques.
A browser emulation tool that detects exploits targeting browser and browser plugin vulnerabilities by analyzing various file types.
A Python script that generates graphs and charts from password cracking results (hashcat/john potfiles) for security analysis.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.