3 Repos
Capabilities to launch and coordinate with external disassembly tools for static analysis.
Distinguishing note: Existing candidates focus on annotations or general AI tool integration, not the launching of external disassembly software.
Explore 3 awesome GitHub repositories matching development tools & productivity · Disassembler Integrations. Refine with filters or upvote what's useful.
pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi
Starts compatible external disassembly tools for deep static analysis of the active process.
Apkleaks ist ein statisches Analysetool und ein Sicherheits-Auditor, der dazu entwickelt wurde, hartcodierte Secrets, API-Endpunkte und sensible Daten aus Android-Anwendungspaketen (APK) zu extrahieren. Es arbeitet als Secret-Scanner, der kompilierte Binärdateien analysiert, ohne sie auszuführen, um potenzielle Informationslecks und unsichere Endpunkte zu identifizieren. Das Tool verwendet eine regex-basierte Datenextraktions-Engine, um sensible Strings innerhalb von dekompiliertem Code zu identifizieren. Es unterstützt Anpassungen durch JSON-definierte Suchmuster und bietet Konfigurations-Flags, um das Verhalten des zugrunde liegenden Disassemblers anzupassen. Die Analyse-Pipeline umfasst Binär-Dekompilierung, Textextraktion und Mustererkennung. Identifizierte Sicherheitslecks und Anmeldedaten können zur Offline-Überprüfung in Text- oder JSON-Dateien exportiert werden.
Integrates with external disassembly tools to convert application binaries into human-readable source code.
capa is a static analysis tool that scans executable files to identify what a program can do, detecting capabilities such as API calls, byte sequences, and structural patterns without executing the code. It supports multiple file formats including PE, ELF, .NET, and shellcode, and can also process runtime behavior traces from sandbox reports generated by CAPE, DRAKVUF, or VMRay. The tool integrates directly with reverse engineering environments through plugins for IDA Pro and Ghidra, allowing analysts to view capability matches and author detection rules within their disassembler of choice. C
Integrates directly with IDA Pro and Ghidra to surface capability matches within disassembler workflows.