awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

115 Repos

Awesome GitHub RepositoriesReverse Engineering Tools

Frameworks and utilities for disassembling, decompiling, and analyzing binary code.

Explore 115 awesome GitHub repositories matching part of an awesome list · Reverse Engineering Tools. Refine with filters or upvote what's useful.

Awesome Reverse Engineering Tools GitHub Repositories

Finde die besten Repos mit KI.Wir suchen mit KI nach den am besten passenden Repositories.
  • nationalsecurityagency/ghidraAvatar von NationalSecurityAgency

    NationalSecurityAgency/ghidra

    69,740Auf GitHub ansehen↗

    Ghidra is a software reverse engineering suite designed to analyze compiled binaries and reconstruct program logic without access to original source code. It provides an interactive environment for disassembly and decompilation, utilizing a platform-independent intermediate representation to maintain consistency across diverse hardware architectures. The framework supports automated binary analysis through programmatic routines, enabling the investigation of complex code patterns and security indicators. The platform distinguishes itself through a modular architecture that allows for extensiv

    Comprehensive suite for reverse engineering and binary analysis.

    Javadisassemblerreverse-engineeringsoftware-analysis
    Auf GitHub ansehen↗69,740
  • werwolv/imhexAvatar von WerWolv

    WerWolv/ImHex

    53,892Auf GitHub ansehen↗

    ImHex is a professional-grade hex editor and binary data analysis platform designed for inspecting, modifying, and reverse engineering raw file contents. It functions as a schema-driven engine that interprets complex binary structures by applying custom definitions to map and visualize byte-level data. The platform distinguishes itself through a dedicated domain-specific language that allows users to define structural schemas for automated file parsing. This capability is supported by a dynamic plugin architecture and an event-driven registry, which enable the integration of external modules

    Hex editor for reverse engineers.

    C++analyzerbinary-analysisc-plus-plus
    Auf GitHub ansehen↗53,892
  • dbeaver/dbeaverAvatar von dbeaver

    dbeaver/dbeaver

    50,678Auf GitHub ansehen↗

    DBeaver is a universal database client and administration environment designed for managing diverse relational and non-relational database systems. It provides a unified graphical interface that enables users to perform data manipulation, schema migration, and performance monitoring across multiple platforms. By utilizing a standardized driver abstraction layer, the application translates generic requests into database-specific commands, ensuring consistent interaction regardless of the underlying technology. The project distinguishes itself through an extensible, plugin-based architecture th

    Universal database management and editing tool.

    Javaaicopilotdatabase
    Auf GitHub ansehen↗50,678
  • skylot/jadxAvatar von skylot

    skylot/jadx

    49,088Auf GitHub ansehen↗

    Jadx is a comprehensive Java decompilation suite designed to transform compiled binary application files into readable source code. It functions as a static analysis workbench, providing a graphical interface for navigating, searching, and inspecting the internal logic of complex software packages. By utilizing a bytecode-to-Java pipeline, the project reconstructs high-level logical structures from low-level binary instructions, making it a primary tool for Android application reverse engineering. The project distinguishes itself through a sophisticated control flow reconstruction engine and

    Decompiles Android application packages.

    Javaandroiddecompilerdex
    Auf GitHub ansehen↗49,088
  • x64dbg/x64dbgAvatar von x64dbg

    x64dbg/x64dbg

    48,652Auf GitHub ansehen↗

    This project is a graphical Windows debugger designed for the analysis and manipulation of compiled binary applications. It functions as a comprehensive binary analysis suite, providing a real-time environment for inspecting CPU registers, monitoring memory states, and tracing instruction execution to investigate system-level software behavior. The tool distinguishes itself through an event-driven debugging loop that allows for precise process control and state modification during runtime. It supports advanced analysis techniques, including hardware-breakpoint injection for monitoring memory

    Open-source user-mode debugger for Windows.

    C++binary-analysisctfcybersecurity
    Auf GitHub ansehen↗48,652
  • mitmproxy/mitmproxyAvatar von mitmproxy

    mitmproxy/mitmproxy

    43,943Auf GitHub ansehen↗

    Mitmproxy is an interactive, programmable network proxy engine designed for traffic analysis and protocol manipulation. It functions as a gateway that intercepts, inspects, and modifies network traffic in real-time, supporting HTTP, HTTPS, WebSocket, DNS, and generic TCP or UDP streams. By acting as a trusted certificate authority, the proxy can dynamically generate and sign certificates to decrypt and analyze secure TLS-encrypted connections. The project distinguishes itself through a highly extensible, event-driven architecture that allows users to automate traffic transformation using cust

    Interactive proxy for intercepting and modifying HTTP/HTTPS traffic.

    Pythondebugginghttphttp2
    Auf GitHub ansehen↗43,943
  • 0xd4d/dnspyAvatar von 0xd4d

    0xd4d/dnSpy

    29,539Auf GitHub ansehen↗

    dnSpy is a specialized toolset for the reverse engineering, analysis, and modification of compiled .NET binaries. It functions as a decompiler that converts assemblies back into readable high-level source code, an assembly editor for modifying bytecode and metadata, and a debugger for inspecting compiled binaries. The project integrates a hex editor specifically for inspecting and modifying raw bytes and Common Intermediate Language structures. It allows for the direct modification of binary contents to change application behavior without requiring the original project source files. The tool

    Edits, decompiles, and debugs .NET assemblies.

    C#
    Auf GitHub ansehen↗29,539
  • icsharpcode/ilspyAvatar von icsharpcode

    icsharpcode/ILSpy

    25,447Auf GitHub ansehen↗

    ILSpy is a .NET decompiler and binary analyzer designed to convert compiled .NET assemblies back into readable C# source code. It functions as a metadata explorer and a common intermediate language viewer, enabling the analysis of compiled code and the execution of reverse engineering workflows. The project distinguishes itself through specialized translation capabilities, such as converting compiled binary XML (BAML) back into human-readable XAML for user interface analysis. It also provides tools for inspecting native machine code and extracting metadata from program database (PDB) files.

    Browses and decompiles .NET assemblies.

    C#
    Auf GitHub ansehen↗25,447
  • radare/radare2Avatar von radare

    radare/radare2

    24,129Auf GitHub ansehen↗

    radare2 is a reverse engineering framework and binary analysis toolset. It functions as a multi-architecture disassembler, low-level binary debugger, and hexadecimal editor for inspecting executable structures and interpreting machine code when original source files are unavailable. The framework provides capabilities for decompiling machine instructions, performing symbolic analysis, and diffing binary files to identify structural changes across versions. It also includes a digital forensic analyzer and disk analyzer for browsing filesystem formats in userland. The toolset supports binary p

    Comprehensive framework for reverse engineering and binary analysis.

    C
    Auf GitHub ansehen↗24,129
  • rizinorg/cutterAvatar von rizinorg

    rizinorg/cutter

    18,957Auf GitHub ansehen↗

    Cutter is a binary analysis platform and graphical user interface for the Rizin reverse engineering framework. It provides an environment for analyzing the internal logic and data structures of compiled binaries through integrated disassembly and visualization. The platform supports a containerized deployment model to provide isolated environments for binary analysis, which is used to examine suspicious binaries without risking the host system. It is an extensible security tool that allows for the addition of custom analysis capabilities and visualizers via native plugins and scripts. The to

    Reverse engineering platform powered by Rizin.

    C++
    Auf GitHub ansehen↗18,957
  • java-decompiler/jd-guiAvatar von java-decompiler

    java-decompiler/jd-gui

    15,024Auf GitHub ansehen↗

    This project is a desktop application designed for the reverse engineering and inspection of compiled Java code. It functions as a graphical interface that translates Java bytecode back into readable source code, allowing users to examine the internal logic of class files and archives when original source files are unavailable. The tool provides a structured environment for navigating complex file hierarchies, including nested archives like JAR and WAR files. By maintaining an in-memory representation of loaded classes, it enables rapid searching and cross-referencing of code elements. The ap

    Standalone graphical utility for displaying Java source code.

    Java
    Auf GitHub ansehen↗15,024
  • refirmlabs/binwalkAvatar von ReFirmLabs

    ReFirmLabs/binwalk

    14,045Auf GitHub ansehen↗

    Binwalk is a firmware analysis and reverse engineering tool designed to identify, extract, and analyze embedded files and data types within binary firmware blobs. It functions as a binary file signature scanner and entropy analyzer to decompose firmware images into their constituent components. The tool distinguishes itself by combining signature-based pattern matching for known binary headers with entropy analysis. By calculating data randomness across file offsets, it can locate compressed or encrypted sections that do not possess known signatures. The project covers binary data forensics

    Tool for analyzing, reverse engineering, and extracting firmware images.

    Rust
    Auf GitHub ansehen↗14,045
  • devttys0/binwalkAvatar von devttys0

    devttys0/binwalk

    14,048Auf GitHub ansehen↗

    Binwalk is a firmware analysis tool and binary data carver used to identify and extract embedded files and data segments from binary images. It functions as an embedded file extractor and data entropy analyzer to retrieve fragments from binary blobs when original file system structures are missing. The tool employs signature-based pattern matching and linear byte-stream scanning to detect known byte sequences and isolate hidden files. It uses sliding-window entropy analysis to locate regions of a file that are compressed or encrypted. The system supports recursive file carving, utilizing heu

    Analyzes and extracts data from firmware images.

    Rust
    Auf GitHub ansehen↗14,048
  • pxb1988/dex2jarAvatar von pxb1988

    pxb1988/dex2jar

    13,112Auf GitHub ansehen↗

    dex2jar is an Android dex decompiler and reverse engineering tool designed to convert Dalvik executable bytecode into Java class files. It functions as a bytecode converter that transforms compiled Android binaries into a format compatible with standard Java analysis tools. The project facilitates Android app decompilation and Java bytecode recovery by translating executable files into readable structures. This allows for the analysis of application logic and the identification of security vulnerabilities or malicious behavior during Android malware analysis. The tool performs static bytecod

    Utilities for converting Android dex files to Java class files.

    Java
    Auf GitHub ansehen↗13,112
  • lucasg/dependenciesAvatar von lucasg

    lucasg/Dependencies

    11,607Auf GitHub ansehen↗

    Dependencies is a static analysis utility designed to inspect Windows portable executable files and map their library dependency hierarchies. It functions as a diagnostic interface for validating library imports and identifying the specific modules required for an application to execute on a Windows system. The tool distinguishes itself by performing deep binary analysis, including the resolution of complex Windows API set schemas and forwarded export redirections. It identifies libraries loaded on demand through delay-load module analysis and performs recursive traversal to map the full tree

    Replacement for dependency walker to analyze binary imports.

    C#csharpdllwindows
    Auf GitHub ansehen↗11,607
  • horsicq/detect-it-easyAvatar von horsicq

    horsicq/Detect-It-Easy

    10,266Auf GitHub ansehen↗

    Detect-It-Easy is a binary file identifier and analysis toolkit designed to determine file formats, compilers, and packers. It functions as a binary file identifier that utilizes signature matching and heuristic analysis to identify executable and archive formats. The project includes a custom file signature engine and a scriptable rule system for defining and applying detection logic to identify specific binary patterns. It features specialized detectors for Android packages, such as APK and DEX files, and a malware packer detector to identify protections, obfuscators, and virus families. T

    Identifies file types and compiler information for various platforms.

    JavaScriptbinary-analysisdebuggerdetect
    Auf GitHub ansehen↗10,266
  • pwndbg/pwndbgAvatar von pwndbg

    pwndbg/pwndbg

    10,051Auf GitHub ansehen↗

    pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi

    Enhances GDB for low-level debugging and exploit development.

    Pythonbinary-ninjacapture-the-flagctf
    Auf GitHub ansehen↗10,051
  • beautify-web/js-beautifyAvatar von beautify-web

    beautify-web/js-beautify

    8,973Auf GitHub ansehen↗

    js-beautify is a web language beautifier and code formatter designed to standardize the layout and structure of JavaScript, HTML, and CSS files. It reorganizes source code into a consistent, readable style by applying configurable indentation and spacing rules. The project includes a utility for unpacking minified scripts, which transforms compressed or obfuscated JavaScript into a human-readable format. It provides a command-line interface for executing bulk code reformatting across multiple files. The tool supports customizable formatting rules and language-specific overrides, which can be

    Utility for deobfuscating and formatting JavaScript code.

    JavaScript
    Auf GitHub ansehen↗8,973
  • aquynh/capstoneAvatar von aquynh

    aquynh/capstone

    8,839Auf GitHub ansehen↗

    Capstone is a multi-architecture disassembly framework and binary translation system. It converts binary machine code into human-readable assembly instructions for a wide variety of hardware instruction set architectures and virtual machines. The framework supports a diverse range of targets, including x86, ARM, RISC-V, and MIPS, as well as virtual machine environments like WebAssembly and the Ethereum Virtual Machine. It functions as an instruction analysis tool capable of extracting granular decomposition data and semantic information from disassembled code. The engine is designed for low-

    Lightweight multi-platform, multi-architecture disassembly framework.

    C
    Auf GitHub ansehen↗8,839
  • avast-tl/retdecAvatar von avast-tl

    avast-tl/retdec

    8,556Auf GitHub ansehen↗

    Retdec is an LLVM-based machine code decompiler and static binary analysis tool designed for binary reverse engineering. It translates binary executable code into high-level representations to facilitate the reconstruction of program logic from compiled machine code. The system utilizes a retargetable frontend architecture and a multi-stage lifting pipeline to convert raw bytes into a common intermediate language. It differentiates custom program logic from known library code through signature-based identification and provides utilities for binary symbol demangling to restore human-readable n

    Retargetable machine-code decompiler based on LLVM.

    C++
    Auf GitHub ansehen↗8,556
Vorherige12345…6Nächste
  1. Home
  2. Part of an Awesome List
  3. Developer Tools
  4. Reverse Engineering Tools