YaCo – Collaborative Reverse-Engineering for IDA YaCo is a Hex-Rays IDA plugin enabling collaborative reverse-engineering on IDA databases for multiple users. Incremental database changes are stored & synchronized through Git distributed version control system. Both...
Xori – Custom disassembly framework Xori is an automation-ready disassembly and static analysis library that consumes shellcode or PE binaries and provides triage analysis data. Architectures: i386 x86-64 File Formats...
Kemon An Open-Source Pre and Post Callback-Based Framework for macOS Kernel Monitoring. With the power of it, we can easily implement LPC communication monitoring, MAC policy filtering, kernel driver firewall,...
angrop angrop is a rop gadget finder and chain builder Overview angrop is a tool to automatically generate rop chains. It is built on top of angr’s symbolic execution engine...
QuarkslaB Dynamic Binary Instrumentation (QBDI) is a modular, cross-platform, and cross-architecture DBI framework. It aims to support Linux, macOS, Android, iOS, and Windows operating systems running on x86, x86-64, ARM,...
Hyara (IDA Plugin) Hyara is IDA Plugin that provides convenience when writing yard rules. You can designate the start and end addresses to automatically create rules. It was created based...
Binary String Toolkit Summary The Binary String Toolkit or BST for short is a rather simple utility to convert binary strings to various formats suitable for inclusions in source codes,...
readpe readpe is a full-featured, open-source, multiplatform command-line toolkit to work with PE (Portable Executables) binaries. Use Getting headers and sections readpe is the right tool for parsing PE files...
Fuzzinator Fuzzinator is a framework helping you to deal with the common fuzzing tasks, like running fuzz jobs, updating the targets, and reducing the inputs that induced failures. The figure below...
xAnalyzer is a plugin for the x86/x64 x64dbg debugger by @mrexodia. This plugin is based on the APIInfo Plugin by @mrfearless, although some improvements and additions have been made. xAnalyzer is capable of doing...
Forensics / Reverse Engineering
by do son · Published September 9, 2018 · Last modified October 10, 2021
SwishDbgExt is a Microsoft WinDbg debugging extension that expands the set of available commands by Microsoft WinDbg, but also fixes and improves existing commands. This extension has been developed by...
angr angr is a platform-agnostic binary analysis framework developed by the Computer Security Lab at UC Santa Barbara and their associated CTF team, Shellphish. Several challenges must be overcome to...
arm_now is a qemu powered tool that allows instant setup of virtual machines on arm CPU, mips, PowerPC, nios2, x86 and more, for reverse, exploit, fuzzing and programming purpose. Supported...
Frick Frick is a kick-ass Frida cli for reverse engineer inspired by the epic GDB init gef by @hugsy, with commands design similar to uDdbg. Features for the eyes interactive...
House: A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python. It is designed for helping assess mobile applications by implementing dynamic function hooking and...
Support Securityonline.info site. Thanks!
