4 مستودعات
The process of converting executable binary data into human-readable assembly language for analysis.
Distinct from Binary Assembly: Distinct from Binary Assembly: this is the inverse process, converting machine code back to text rather than text to binary.
Explore 4 awesome GitHub repositories matching operating systems & systems programming · Binary Disassembly. Refine with filters or upvote what's useful.
هذا المشروع عبارة عن دليل تقني شامل ودورة تدريبية للتحليل العكسي لتطبيقات iOS. يعمل كدليل لتشريح الملفات الثنائية للهواتف المحمولة باستخدام أدوات التفكيك (disassembly) وتصحيح الأخطاء (debugging) لتحليل منطق التطبيق الداخلي وسلوكه. تعمل المادة كمرجع لنظريات لغة تجميع ARM و Objective-C، مما يوفر الإطار اللازم لترجمة كود الآلة منخفض المستوى إلى منطق مفهوم للبشر. يجمع بين الدراسة النظرية والتمارين العملية للتحقق من استخدام أدوات التحليل العكسي على ملفات ثنائية واقعية. يغطي النطاق التحليل الثنائي الساكن، وتصحيح أخطاء وقت التشغيل الديناميكي، ودراسة بنية نظام iOS. يتضمن ذلك تعيين تسلسل هرمي لنظام الملفات وتنظيم البيانات لتحديد أصول التطبيق وملفات التكوين.
Provides a comprehensive guide on converting compiled machine code into human-readable assembly for iOS binary analysis.
HyperDbg is a hardware-assisted kernel-mode debugging platform that leverages virtualization to monitor and control system execution. By utilizing hypervisor-level primitives, it enables deep system analysis and instrumentation without relying on standard operating system debugging interfaces. The framework provides a comprehensive environment for inspecting both kernel and user-mode processes, allowing for granular control over execution flow and system state. The project distinguishes itself through a transparent debugging layer designed to remain invisible to the target environment. It emp
Converts raw binary instructions into human-readable assembly language for analysis.
APKLab is an integrated security analysis platform and reverse engineering IDE for Android applications. It provides a unified environment for decompiling binaries into source code, repackaging modified applications into signed installers, and performing comprehensive security analysis. The platform distinguishes itself by combining static and dynamic analysis workflows. It enables the injection of runtime hooks and gadget libraries to monitor application behavior, while providing specialized patching capabilities to intercept and decrypt encrypted network traffic via a proxy. The toolkit co
Decodes application binaries into Smali assembly code for detailed analysis and modification.
PE-bear is a graphical portable executable analysis tool designed for inspecting, disassembling, and modifying the structure of Windows PE binary files. It functions as a static analysis framework used to identify malicious patterns and reverse engineer program logic. The project provides a binary diffing tool to identify structural and content differences between two executable files. It also includes a section editor for modifying binary layouts by adding or altering sections and imports. The tool covers a range of binary analysis capabilities, including machine code disassembly, file layo
Translates binary data into human-readable assembly instructions starting from a specific address or file offset.