awesome-repositories.com
Blog
awesome-repositories.com

Découvrez les meilleurs dépôts open-source grâce à notre recherche par IA.

ExplorerRecherches sélectionnéesAlternatives open sourceLogiciels auto-hébergésBlogPlan du site
ProjetÀ proposNotre méthodologiePresseServeur MCP
Mentions légalesConfidentialitéConditions d'utilisation
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

71 dépôts

Awesome GitHub RepositoriesReverse Engineering

Tools for disassembling and analyzing compiled binary code.

Explore 71 awesome GitHub repositories matching part of an awesome list · Reverse Engineering. Refine with filters or upvote what's useful.

Awesome Reverse Engineering GitHub Repositories

Trouvez les meilleurs dépôts grâce à l'IA.Nous recherchons les dépôts les plus pertinents grâce à l'IA.
  • genymobile/scrcpyAvatar de Genymobile

    Genymobile/scrcpy

    143,637Voir sur GitHub↗

    This project provides a desktop-based interface for remote control and screen mirroring of Android devices. It functions by establishing a persistent, multiplexed communication channel over the Android Debug Bridge, allowing for the transmission of raw binary data streams between a host computer and a connected mobile device. The tool distinguishes itself by injecting a lightweight binary into the mobile runtime to access system-level APIs for direct screen buffer capture and input event injection. By translating desktop mouse and keyboard signals into native Linux kernel events, it enables r

    Displays and controls Android devices via USB or TCP/IP.

    Candroidcffmpeg
    Voir sur GitHub↗143,637
  • nationalsecurityagency/ghidraAvatar de NationalSecurityAgency

    NationalSecurityAgency/ghidra

    69,740Voir sur GitHub↗

    Ghidra is a software reverse engineering suite designed to analyze compiled binaries and reconstruct program logic without access to original source code. It provides an interactive environment for disassembly and decompilation, utilizing a platform-independent intermediate representation to maintain consistency across diverse hardware architectures. The framework supports automated binary analysis through programmatic routines, enabling the investigation of complex code patterns and security indicators. The platform distinguishes itself through a modular architecture that allows for extensiv

    Advanced reverse engineering and decompilation suite.

    Javadisassemblerreverse-engineeringsoftware-analysis
    Voir sur GitHub↗69,740
  • skylot/jadxAvatar de skylot

    skylot/jadx

    49,088Voir sur GitHub↗

    Jadx is a comprehensive Java decompilation suite designed to transform compiled binary application files into readable source code. It functions as a static analysis workbench, providing a graphical interface for navigating, searching, and inspecting the internal logic of complex software packages. By utilizing a bytecode-to-Java pipeline, the project reconstructs high-level logical structures from low-level binary instructions, making it a primary tool for Android application reverse engineering. The project distinguishes itself through a sophisticated control flow reconstruction engine and

    Decompiles Android APKs into readable Java source code.

    Javaandroiddecompilerdex
    Voir sur GitHub↗49,088
  • x64dbg/x64dbgAvatar de x64dbg

    x64dbg/x64dbg

    48,652Voir sur GitHub↗

    This project is a graphical Windows debugger designed for the analysis and manipulation of compiled binary applications. It functions as a comprehensive binary analysis suite, providing a real-time environment for inspecting CPU registers, monitoring memory states, and tracing instruction execution to investigate system-level software behavior. The tool distinguishes itself through an event-driven debugging loop that allows for precise process control and state modification during runtime. It supports advanced analysis techniques, including hardware-breakpoint injection for monitoring memory

    Open-source debugger for x64 and x32 Windows applications.

    C++binary-analysisctfcybersecurity
    Voir sur GitHub↗48,652
  • 0xd4d/dnspyAvatar de 0xd4d

    0xd4d/dnSpy

    29,539Voir sur GitHub↗

    dnSpy is a specialized toolset for the reverse engineering, analysis, and modification of compiled .NET binaries. It functions as a decompiler that converts assemblies back into readable high-level source code, an assembly editor for modifying bytecode and metadata, and a debugger for inspecting compiled binaries. The project integrates a hex editor specifically for inspecting and modifying raw bytes and Common Intermediate Language structures. It allows for the direct modification of binary contents to change application behavior without requiring the original project source files. The tool

    Disassembler and debugger for .NET.

    C#
    Voir sur GitHub↗29,539
  • dnspy/dnspyAvatar de dnSpy

    dnSpy/dnSpy

    28,993Voir sur GitHub↗

    dnSpy is a desktop application designed for the analysis, debugging, and modification of compiled .NET assemblies. It functions as an assembly analysis suite and decompiler, translating binary instruction streams back into readable source code to facilitate reverse engineering when original source files are unavailable. The tool distinguishes itself through an integrated binary patching engine and metadata editor, which allow for the direct modification of executable logic and internal metadata tables. It supports in-process debugging instrumentation, enabling users to inject runtime hooks, s

    Integrated debugger and assembly editor for .NET applications.

    C#
    Voir sur GitHub↗28,993
  • icsharpcode/ilspyAvatar de icsharpcode

    icsharpcode/ILSpy

    25,447Voir sur GitHub↗

    ILSpy is a .NET decompiler and binary analyzer designed to convert compiled .NET assemblies back into readable C# source code. It functions as a metadata explorer and a common intermediate language viewer, enabling the analysis of compiled code and the execution of reverse engineering workflows. The project distinguishes itself through specialized translation capabilities, such as converting compiled binary XML (BAML) back into human-readable XAML for user interface analysis. It also provides tools for inspecting native machine code and extracting metadata from program database (PDB) files.

    Cross-platform .NET decompiler with PDB generation support.

    C#
    Voir sur GitHub↗25,447
  • radare/radare2Avatar de radare

    radare/radare2

    24,129Voir sur GitHub↗

    radare2 is a reverse engineering framework and binary analysis toolset. It functions as a multi-architecture disassembler, low-level binary debugger, and hexadecimal editor for inspecting executable structures and interpreting machine code when original source files are unavailable. The framework provides capabilities for decompiling machine instructions, performing symbolic analysis, and diffing binary files to identify structural changes across versions. It also includes a digital forensic analyzer and disk analyzer for browsing filesystem formats in userland. The toolset supports binary p

    Versatile and portable framework for reverse engineering tasks.

    C
    Voir sur GitHub↗24,129
  • vxunderground/malwaresourcecodeAvatar de vxunderground

    vxunderground/MalwareSourceCode

    18,415Voir sur GitHub↗

    This project is a curated archive and cybersecurity research dataset of raw source code from various malware families. It serves as a malware analysis library designed to help researchers study the inner workings of different threats and identify attack patterns across multiple platforms and programming languages. The repository supports security research by providing raw text distribution of original source code. This allows for the study of platform vulnerabilities, threat intelligence gathering, and the development of security products and detection signatures. The collection is organized

    Supports practicing decompilation and binary analysis by providing known functional source code for comparison.

    Assemblymalwaremalware-detectionmalware-development
    Voir sur GitHub↗18,415
  • upx/upxAvatar de upx

    upx/upx

    17,595Voir sur GitHub↗

    UPX is a command-line utility designed to reduce the file size of compiled programs and shared libraries. It functions as an executable binary compressor that maintains the ability for files to run natively without requiring additional runtime dependencies or external decompression software. The tool operates by parsing executable headers and applying entropy-based compression to code segments. It achieves this by injecting a self-extracting stub into the binary, which facilitates in-place memory decompression during the initial execution phase. This process includes platform-specific binary

    Compresses and decompresses executable files.

    C++
    Voir sur GitHub↗17,595
  • perfare/assetstudioAvatar de Perfare

    Perfare/AssetStudio

    15,474Voir sur GitHub↗

    AssetStudio is a desktop application designed for browsing, inspecting, and extracting assets from proprietary game engine archive files. It provides a comprehensive interface for navigating complex file structures to identify, preview, and export individual media components such as textures, audio, and 3D meshes. The software distinguishes itself through its ability to parse and reconstruct serialized object hierarchies and script data. By resolving assembly dependencies and traversing internal metadata trees, it translates proprietary game data into standard industry formats, including supp

    Explores and exports assets from bundles.

    C#unityunity3d
    Voir sur GitHub↗15,474
  • java-decompiler/jd-guiAvatar de java-decompiler

    java-decompiler/jd-gui

    15,024Voir sur GitHub↗

    This project is a desktop application designed for the reverse engineering and inspection of compiled Java code. It functions as a graphical interface that translates Java bytecode back into readable source code, allowing users to examine the internal logic of class files and archives when original source files are unavailable. The tool provides a structured environment for navigating complex file hierarchies, including nested archives like JAR and WAR files. By maintaining an in-memory representation of loaded classes, it enables rapid searching and cross-referencing of code elements. The ap

    Visual tool for browsing Java class files.

    Java
    Voir sur GitHub↗15,024
  • pyinstaller/pyinstallerAvatar de pyinstaller

    pyinstaller/pyinstaller

    13,019Voir sur GitHub↗

    PyInstaller is a cross-platform binary packager and application freezer that bundles Python scripts and their dependencies into standalone executables. It allows programs to be distributed and run on target operating systems without requiring a local installation of the Python interpreter. The tool functions as a standalone executable bundler, packaging the application with all necessary modules and libraries into a single file or folder. It includes integration for digital binary signing to satisfy operating system security requirements for distributed software. The system utilizes static a

    Bundles Python applications into standalone executables.

    Pythonbundlepackagepy2app
    Voir sur GitHub↗13,019
  • horsicq/detect-it-easyAvatar de horsicq

    horsicq/Detect-It-Easy

    10,266Voir sur GitHub↗

    Detect-It-Easy is a binary file identifier and analysis toolkit designed to determine file formats, compilers, and packers. It functions as a binary file identifier that utilizes signature matching and heuristic analysis to identify executable and archive formats. The project includes a custom file signature engine and a scriptable rule system for defining and applying detection logic to identify specific binary patterns. It features specialized detectors for Android packages, such as APK and DEX files, and a malware packer detector to identify protections, obfuscators, and virus families. T

    Identifies file types and compiler information for binaries.

    JavaScriptbinary-analysisdebuggerdetect
    Voir sur GitHub↗10,266
  • perfare/il2cppdumperAvatar de Perfare

    Perfare/Il2CppDumper

    9,094Voir sur GitHub↗

    Il2CppDumper is a reverse engineering tool that recovers original .NET assembly structure from Unity games compiled with il2cpp. It parses il2cpp binaries across multiple executable formats including ELF, Mach-O, PE, NSO, and WASM, and reconstructs the original DLL structure from embedded metadata tables, enabling decompilation and analysis of game code. The tool generates disassembler scripts for IDA, Ghidra, and Binary Ninja that apply recovered type definitions and structure layouts to the binary analysis. It also strips protection layers from memory-dumped libil2cpp.so files and simple PE

    Reverse engineering tool for Unity IL2CPP binaries.

    C#il2cppreverse-engineeringunity
    Voir sur GitHub↗9,094
  • angr/angrAvatar de angr

    angr/angr

    8,898Voir sur GitHub↗

    Angr is a binary analysis framework and static analysis tool used for reverse engineering compiled binaries. It serves as a binary decompiler and a lifting platform that translates machine code into a common intermediate representation to enable cross-architecture analysis. The framework integrates a symbolic execution engine and constraint solvers to determine the inputs required to reach specific program states. It also employs untrusted code sandboxing to isolate guest code from the host environment during analysis. Its capabilities cover control flow and data flow analysis, including the

    Framework for binary analysis and symbolic execution.

    Python
    Voir sur GitHub↗8,898
  • mandiant/flare-vmAvatar de mandiant

    mandiant/flare-vm

    8,799Voir sur GitHub↗

    Flare-VM est un environnement d'analyse de logiciels malveillants Windows composé de scripts d'installation qui automatisent le provisionnement d'une machine virtuelle. Il fournit une suite complète d'outils de rétro-ingénierie, incluant des décompilateurs et des débogueurs, ainsi que les configurations système et variables d'environnement nécessaires à la recherche en sécurité. Le projet fonctionne comme un orchestrateur d'images de machine virtuelle, permettant la création, la gestion et l'exportation automatisées d'appliances d'analyse spécialisées. Il propose une sélection d'outils pilotée par la configuration et la possibilité d'étendre la logique d'installation via des modifications de registre personnalisées et des définitions de mise en page système. Le système inclut des capacités de configuration réseau isolée pour empêcher toute communication externe via le mode hôte uniquement. Il gère également le cycle de vie complet des états d'analyse via une gestion d'état basée sur des snapshots, incluant la possibilité de nettoyer ou d'exporter des snapshots en tant que fichiers d'appliance vérifiés.

    Provides a curated environment tailored for disassembling and analyzing compiled binary code.

    PowerShell
    Voir sur GitHub↗8,799
  • google/android-classysharkAvatar de google

    google/android-classyshark

    7,565Voir sur GitHub↗

    Android Classyshark is a binary analysis toolset designed to extract structural data from Android executable files. It functions as a bytecode viewer and binary XML parser to analyze compiled Java and Android binaries. The project converts binary XML files into readable formats for the inspection of application manifests, layouts, and resource files. It also provides the ability to analyze class interfaces, members, and dependency counts without requiring access to the original source code. The toolset supports static analysis and the export of binary information into plain text formats for

    Viewer for inspecting Android and Java executables.

    Java
    Voir sur GitHub↗7,565
  • rpisec/mbeAvatar de RPISEC

    RPISEC/MBE

    5,989Voir sur GitHub↗

    MBE est une ressource éducative en recherche de sécurité fournissant des cours sur l'exploitation binaire et un environnement de wargame CTF déployable. Il fonctionne comme un programme structuré de laboratoires et de matériel conçu pour apprendre l'ingénierie inverse et la corruption de mémoire. Le projet fournit une infrastructure de laboratoire conteneurisée et une chaîne d'outils d'analyse binaire pour assurer un cadre contrôlé pour la recherche de vulnérabilités. Il utilise des environnements isolés pour déployer des tâches d'exploitation binaire, empêchant les interférences et l'instabilité du système. Le système couvre le provisionnement d'environnements vulnérables via l'orchestration de machines virtuelles et l'isolation par conteneurs. Il gère également la distribution de binaires statiques et le déploiement automatisé de débogueurs et de désassembleurs standardisés.

    Reverse engineering challenges and accompanying educational lectures.

    Cctfexploitationwargame
    Voir sur GitHub↗5,989
  • mrexodia/ida-pro-mcpAvatar de mrexodia

    mrexodia/ida-pro-mcp

    5,620Voir sur GitHub↗

    Integrates AI capabilities into the IDA Pro disassembler.

    Pythonaiaiagentbinary-analysis
    Voir sur GitHub↗5,620
Préc.123…4Suivant
  1. Home
  2. Part of an Awesome List
  3. Developer Tools
  4. Reverse Engineering