ENNAENNA
🧬

Reverse Engineering

28 tools indexed

Binary analysis, disassembly, decompilation, and debugging tools for reverse engineering executables, malware, and firmware. These tools help security researchers understand how compiled software works, identify vulnerabilities, and analyze malicious code without access to source.

dnSpy

C#

.NET debugger, decompiler, and assembly editor. Inspect and modify .NET and Unity assemblies without source code.

dotnetdecompilerdebuggerassembly-editor
29.3k5.5k5y ago

ILSpy

C#

Open-source .NET decompiler and assembly browser. Produces clean C# from compiled binaries with cross-platform support.

dotnetdecompilerassembly-browsercross-platform
25.0k3.6k2mo ago

x64dbg

C++

Open-source x64/x32 debugger for Windows. Full-featured binary debugger with plugin ecosystem for malware analysis and reverse engineering.

debuggerdisassemblermalware-analysisx64
48.2k2.7k2mo ago

Detect It Easy

C++/Qt

Binary packer and compiler detection. Identifies compilers, linkers, packers, and protectors used to build PE, ELF, and Mach-O files.

packer-detectionbinary-analysispeelf
10.7k8972mo ago

angr

Python

Binary analysis framework. Symbolic execution, CFG recovery, and vulnerability discovery for compiled binaries in Python.

symbolic-executionbinary-analysiscfrvulnerability-discovery
8.6k1.2k2mo ago

RetDec

C++

Retargetable decompiler by Avast. Converts machine code back to C from x86, ARM, MIPS, and PowerPC binaries.

decompilerllvmmulti-archarm
8.5k9901y ago

Rizin

C

Reverse engineering framework forked from radare2. Modernized API, improved UX, with Cutter as its official GUI.

disassemblerdebuggeremulationmulti-arch
3.5k5592mo ago

Unicorn Engine

C

Lightweight CPU emulator framework. Emulate x86, ARM, MIPS, and more for binary analysis, fuzzing, and instrumentation.

emulatorcpuqemushellcode
8.9k1.5k4mo ago

Capstone

C

Multi-architecture disassembly framework. The engine behind Ghidra, radare2, and dozens of security tools.

disassemblermulti-archlibraryframework
8.7k1.7k2mo ago

ImHex

C++

Feature-rich hex editor with pattern language, data analysis, disassembly, and entropy visualization.

hex-editorbinary-analysispatternsreverse-engineering
53.3k2.4k2mo ago

pwndbg

Python

GDB plugin for exploit developers and reverse engineers with context display, heap analysis, and PEDA-like commands.

gdbdebuggingexploit-devheap
10.4k1.2k2mo ago

EMBA

Shell

Firmware security analyzer for IoT and embedded devices performing static and dynamic analysis via emulation.

firmwareiotembeddedemulation
3.4k3002mo ago

GEF

Python

GDB Enhanced Features plugin for exploit developers and reverse engineers.

gdbdebuggingexploit
8.1k8172mo ago

Triton

C++

Dynamic binary analysis framework with symbolic execution and taint analysis.

binary-analysissymbolic-executiontaint
4.1k5822mo ago

Z3

C++

High-performance SMT solver from Microsoft Research used in RE and verification.

smtsolvertheorem-prover
12.2k1.6k2mo ago

xortool

Python

Analyze and break multi-byte XOR cipher encrypted data with key guessing.

xorcryptocipheranalysis
1.5k1831y ago

cwe_checker

Rust

Detect common bug classes (CWEs) in compiled binaries using Ghidra backend.

binarycwevulnerabilityghidra
1.3k1411y ago

Bytecode Viewer

Java

Java/Android reverse engineering suite with multiple decompilers, disassemblers, and an integrated hex editor.

javaandroiddecompilerreverse-engineering
15.5k1.2k3mo ago

JD-GUI

Java

Standalone graphical Java decompiler. Displays Java source code from CLASS files and JAR archives.

javadecompilerguiclass-files
15.1k2.5k1y ago

dex2jar

Java

Converts Android DEX bytecode to Java CLASS files, enabling analysis with standard Java decompilers.

androiddexdecompilerdalvik
13.1k2.2k1y ago

pyinstxtractor

Python

Extracts the contents of PyInstaller-generated executables, recovering the original Python scripts and resources.

pyinstallerpythonextractiondecompilation
4.3k7472mo ago

Kaitai Struct

Scala

Declarative binary format parser generator. Define a format once in YAML, generate parsers for 12+ programming languages.

binary-parsingformat-specificationcode-generationdeclarative
4.6k2062mo ago

al-khaser

C++

Malware evasion technique reference implementation. Demonstrates VM detection, sandbox evasion, and anti-debugging tricks.

anti-analysisevasionvm-detectionsandbox-detection
6.9k1.3k3mo ago

FLARE FLOSS

Python

Mandiant's obfuscated string extraction tool for malware analysis. Recovers strings hidden by encoding, encryption, and stacking.

string-extractionmalware-analysisdeobfuscationmandiant
4.0k5262mo ago

FakeNet-NG

Python

Mandiant's dynamic network analysis tool. Simulates internet services to capture malware C2 communications locally.

malware-analysisnetwork-simulationdynamic-analysisc2-capture
2.1k3803mo ago

PCILeech

C

Direct Memory Access attack toolkit. Reads and writes target system memory via PCIe/Thunderbolt/USB hardware interfaces.

dma-attackmemory-forensicshardwarepcie
7.6k9952mo ago

PEDA

Python

Python Exploit Development Assistance for GDB. Enhanced debugging display with exploit development features.

gdbexploit-developmentdebuggingbinary-exploitation
6.1k8301y ago

Voltron

Python

Debugger UI toolkit providing split-pane views for LLDB, GDB, VDB, and WinDbg with customizable layouts.

debugger-uigdblldbmulti-pane
6.3k4211y ago