retoolkit 2023.10 releases: Reverse Engineer’s Toolkit
Reverse Engineer’s Toolkit What? This is a collection of tools you may like if you are interested in reverse engineering and/or malware analysis on x86 and x64 Windows systems. After...
Category: Reverse Engineering
Obfuscation Detection v2.0 releases: pinpoint obfuscated code
Obfuscation Detection Automatically detect control-flow flattening and other state machines Scripts and binaries to automatically detect control-flow flattening and other state machines in binaries. Control-flow flattening is a code transformation that...
efi_fuzz: coverage-guided fuzzer for UEFI NVRAM variables
efi_fuzz In recent years, firmware-level attacks against UEFI have grown in popularity and became more and more complex. Prominent examples of such attacks from this year alone include CVE-2020-12890 (SMM...
Damn Vulnerable C Program: C program containing vulnerable code
Damn Vulnerable C Program This is a simple C program, I coded to explain common types of vulnerabilities like: integer overflow integer underflow Out of bound Read Out of bound...
Doldrums: Flutter/Dart reverse engineering tool
Doldrums Doldrums is a reverse engineering tool for Flutter apps targetting Android. Concretely, it is a parser and information extractor for the Flutter/Dart Android binary, conventionally named libapp.so, for all...
PE-Packer: Windows x86 PE file packer written in C & Microsoft Assembly
PE-Packer PE-Packer is a simple packer for Windows PE files. The new PE file after packing can obstruct the process of reverse engineering. It will do the following things when packing a PE file:...
Dexcalibur v0.7.10 releases: Android reverse engineering platform
Dexcalibur Dexcalibur is an Android reverse engineering platform focus on instrumentation automation. Its particularity is to use dynamic analysis to improve static analysis heuristics. It aims to automate boring tasks...
ghidra_kernelcache: Ghidra iOS kernelcache framework for reverse engineering
ghidra_kernelcache: a Ghidra iOS kernelcache framework for reverse engineering ghidra_kernelcache framework is the end product of my experience in reverse engineering iOS kernelcache, I do manually look for vulnerabilities in...
COM-Code-Helper: IDAPython Scripts help you to reconstruct Microsoft COM Code
COM-Code-Helper Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code Especially malware reversers will find this useful, as COM Code is still regularly found in malware....
JTAGulator: Assisted discovery of on-chip debug interfaces
JTAGulator On-chip debug (OCD) interfaces can provide chip-level control of a target device and are a primary vector used by engineers, researchers, and hackers to extract program code or data,...
Coldsnap: Python Snapshot Fuzzer
Coldsnap – Python Snapshot Fuzzer Example coldsnap.py is a python-based snapshot-based ptrace-based fuzzer example. The purpose of this example is to test the performance of snapshot fuzzing entirely in python...
uEmu: tiny cute emulator plugin for IDA based on unicorn engine
uEmu uEmu is a tiny cute emulator plugin for IDA based on unicorn engine. Supports following architectures out of the box: x86, x64, ARM, ARM64, MIPS, MIPS64 What is it GOOD for? Emulate bare-metal code (bootloaders, embedded...
NinjaDroid v4.5 releases: reverse engineering Android APK packages
NinjaDroid NinjaDroid is a simple tool to reverse engineering Android APK packages. Overview: NinjaDroid uses a modified version of the Androguard AXMLParser (by Anthony Desnos) together with a series of...
sploit: binary analysis and exploitation tool in Go
sploit Sploit is a Go package that aids in binary analysis and exploitation. The motivating factor behind the development of sploit is to be able to have a well-designed API...
e9patch: powerful static binary rewriting tool
E9Patch – A Powerful Static Binary Rewriter E9Patch is a powerful static binary rewriting tool for x86_64 Linux ELF binaries. E9Patch is: Scalable: E9Patch can reliably rewrite large/complex binaries including web...
