ENNAENNA

Radare2

馃敩 Digital ForensicsC

Radare2 is a portable reverse engineering framework that integrates disassembly, debugging, analysis, patching, and scripting capabilities in a single command-line interface. Known for its extensibility and modularity, it supports a wide range of binary formats and architectures. Written in C, Radare2 is a preferred tool among security researchers and reverse engineers for its powerful analysis features and cross-platform compatibility.

23.5kstars
3.2kforks
809issues
Updated 15d ago
+I use this
View on GitHubOfficial WebsiteDocumentationGetting Started Guide

Installation

$ apt install radare2

Tags

reverse-engineeringdisassemblerdebuggerscriptingbinary-analysisccommandlineforensicshacktoberfestmalware-analysisradare2security

Details

Category
馃敩 Digital Forensics
Language
C
Platforms
馃惂linux馃崕macos馃獰windows

Links

GitHub Repository

github.com/radareorg/radare2

Official Website

www.radare.org

Documentation

book.rada.re

Releases

github.com/radareorg/radare2/releases

Issues

github.com/radareorg/radare2/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Used in 2 Workflows

馃

Malware Analysis Workflow

Advanced7 steps 路 4-12 hours

馃К

Binary Reverse Engineering

Advanced8 steps 路 4-12 hours

Community Reviews

Alternatives & Comparisons

Ghidra

Java

NSA's reverse engineering framework. Disassembly, decompilation, graphing, and scripting for binary analysis.

Compare Radare2 vs Ghidra

dnSpy

C#

.NET debugger, decompiler, and assembly editor. Inspect and modify .NET and Unity assemblies without source code.

Compare Radare2 vs dnSpy

ILSpy

C#

Open-source .NET decompiler and assembly browser. Produces clean C# from compiled binaries with cross-platform support.

Compare Radare2 vs ILSpy

x64dbg

C++

Open-source x64/x32 debugger for Windows. Full-featured binary debugger with plugin ecosystem for malware analysis and reverse engineering.

Compare Radare2 vs x64dbg

Detect It Easy

C++/Qt

Binary packer and compiler detection. Identifies compilers, linkers, packers, and protectors used to build PE, ELF, and Mach-O files.

Compare Radare2 vs Detect It Easy

angr

Python

Binary analysis framework. Symbolic execution, CFG recovery, and vulnerability discovery for compiled binaries in Python.

Compare Radare2 vs angr

RetDec

C++

Retargetable decompiler by Avast. Converts machine code back to C from x86, ARM, MIPS, and PowerPC binaries.

Compare Radare2 vs RetDec

Rizin

C

Reverse engineering framework forked from radare2. Modernized API, improved UX, with Cutter as its official GUI.

Compare Radare2 vs Rizin

Unicorn Engine

C

Lightweight CPU emulator framework. Emulate x86, ARM, MIPS, and more for binary analysis, fuzzing, and instrumentation.

Compare Radare2 vs Unicorn Engine

Capstone

C

Multi-architecture disassembly framework. The engine behind Ghidra, radare2, and dozens of security tools.

Compare Radare2 vs Capstone

More in Digital Forensics

Volatility 3

Python

Advanced memory forensics framework. Extracts artifacts from RAM dumps - processes, network connections, registry.

memoryram-dumpartifact-extraction

Autopsy

Java

Digital forensics platform with GUI. Disk image analysis, timeline analysis, keyword search, hash filtering.

disk-forensicsguitimeline

Ghidra

Java

NSA's reverse engineering framework. Disassembly, decompilation, graphing, and scripting for binary analysis.

reverse-engineeringdecompilerbinary-analysis

Binwalk

Python

Firmware analysis tool. Searches binary images for embedded files, executables, and file systems.

firmwarebinaryextraction

YARA

C

Pattern matching swiss knife for malware researchers. Create rules to identify and classify malware samples.

malwarepattern-matchingrules

Velociraptor

Go

Endpoint visibility and collection tool. Hunt for artifacts across thousands of endpoints simultaneously.

endpointhuntingdfir