# Binary Disassembly and Reverse Engineering > Search results for `reverse engineer and disassemble compiled binaries` on awesome-repositories.com. 114 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/reverse-engineer-and-disassemble-compiled-binaries **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/reverse-engineer-and-disassemble-compiled-binaries).** ## Results - [capstone-engine/capstone](https://awesome-repositories.com/repository/capstone-engine-capstone.md) (8,858 ⭐) — Capstone is a multi-architecture disassembly framework and binary analysis engine. It translates raw machine code from various CPU architectures, such as x86, ARM, and RISC-V, into human-readable assembly instructions. The engine distinguishes itself by providing instruction semantic decomposition, which lists implicit registers read and written, and the ability to customize instruction mnemonics to meet specific technical analysis standards. It also features resilient stream disassembly, allowing the process to resynchronize and continue after encountering invalid instructions or embedded da - [compiler-explorer/compiler-explorer](https://awesome-repositories.com/repository/compiler-explorer-compiler-explorer.md) (18,850 ⭐) — Compiler Explorer is an online tool and analysis platform used to translate source code into assembly in real time. It functions as a cross-compiler analysis tool, allowing users to examine how various compilers and versions translate the same source code into machine code to analyze optimizations and generation patterns. The platform supports low-level language debugging and the comparison of assembly output across different compiler toolchains. It also provides a self-hosted environment option for users who need to run private deployments with custom binaries or operate within secure offlin - [cheat-engine/cheat-engine](https://awesome-repositories.com/repository/cheat-engine-cheat-engine.md) (18,453 ⭐) — Cheat Engine is a software reverse engineering suite and memory editor designed for the Windows environment. It functions as a comprehensive platform for inspecting, analyzing, and modifying the internal logic and data structures of running applications. The tool provides capabilities for real-time memory scanning and manipulation, allowing users to locate and alter specific values within a process's address space. It distinguishes itself through advanced debugging features, including hardware-assisted debugging, kernel-mode driver injection for bypassing memory protections, and dynamic binar - [firerpa/lamda](https://awesome-repositories.com/repository/firerpa-lamda.md) (7,834 ⭐) — This project is an Android RPA framework designed for automating user interfaces and system tasks on rooted Android devices using Python and ADB. It provides a suite of tools for rooted device management, allowing for programmatic control of system settings, application lifecycles, and shell command execution via a remote API. The framework distinguishes itself through a combination of dynamic instrumentation and AI integration. It can inject scripts into running processes to hook Java interfaces and modifies application behavior in real time. Additionally, it supports large language model in - [aquynh/capstone](https://awesome-repositories.com/repository/aquynh-capstone.md) (8,839 ⭐) — Capstone is a multi-architecture disassembly framework and binary translation system. It converts binary machine code into human-readable assembly instructions for a wide variety of hardware instruction set architectures and virtual machines. The framework supports a diverse range of targets, including x86, ARM, RISC-V, and MIPS, as well as virtual machine environments like WebAssembly and the Ethereum Virtual Machine. It functions as an instruction analysis tool capable of extracting granular decomposition data and semantic information from disassembled code. The engine is designed for low- - [pret/pokemon-reverse-engineering-tools](https://awesome-repositories.com/repository/pret-pokemon-reverse-engineering-tools.md) (351 ⭐) — Tools for building and disassembling Pokémon Red and Pokémon Crystal - [angr/angr](https://awesome-repositories.com/repository/angr-angr.md) (8,898 ⭐) — Angr is a binary analysis framework and static analysis tool used for reverse engineering compiled binaries. It serves as a binary decompiler and a lifting platform that translates machine code into a common intermediate representation to enable cross-architecture analysis. The framework integrates a symbolic execution engine and constraint solvers to determine the inputs required to reach specific program states. It also employs untrusted code sandboxing to isolate guest code from the host environment during analysis. Its capabilities cover control flow and data flow analysis, including the - [mojobojo/ladx-disassembly](https://awesome-repositories.com/repository/mojobojo-ladx-disassembly.md) (888 ⭐) — Disassembly of Legend of Zelda: Links Awakening DX - [radare/radare2](https://awesome-repositories.com/repository/radare-radare2.md) (24,129 ⭐) — radare2 is a reverse engineering framework and binary analysis toolset. It functions as a multi-architecture disassembler, low-level binary debugger, and hexadecimal editor for inspecting executable structures and interpreting machine code when original source files are unavailable. The framework provides capabilities for decompiling machine instructions, performing symbolic analysis, and diffing binary files to identify structural changes across versions. It also includes a digital forensic analyzer and disk analyzer for browsing filesystem formats in userland. The toolset supports binary p - [cloakhq/cloakbrowser](https://awesome-repositories.com/repository/cloakhq-cloakbrowser.md) (26,322 ⭐) — CloakBrowser is a modified Chromium browser and anti-detect profile manager designed to bypass bot detection and automation signals. It serves as a replacement for standard browser engines in automation frameworks, using source-level binary patching to remove automation flags and spoof internal hardware signals. The project focuses on identity masking through the generation and maintenance of unique hardware and software fingerprints, including canvas noise and screen dimensions. It synchronizes browser timezones and locales with network proxy exit points and replaces programmatic input with - [h3nnn4n/reverse-engineering-the-gameboy-tetris](https://awesome-repositories.com/repository/h3nnn4n-reverse-engineering-the-gameboy-tetris.md) (27 ⭐) — This is my personal attempt on reverse engineering the Tetris gameboy. - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [dnspy/dnspy](https://awesome-repositories.com/repository/dnspy-dnspy.md) (28,993 ⭐) — dnSpy is a desktop application designed for the analysis, debugging, and modification of compiled .NET assemblies. It functions as an assembly analysis suite and decompiler, translating binary instruction streams back into readable source code to facilitate reverse engineering when original source files are unavailable. The tool distinguishes itself through an integrated binary patching engine and metadata editor, which allow for the direct modification of executable logic and internal metadata tables. It supports in-process debugging instrumentation, enabling users to inject runtime hooks, s - [plasma-disassembler/plasma](https://awesome-repositories.com/repository/plasma-disassembler-plasma.md) (3,073 ⭐) — Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax. - [ghostty-org/ghostty](https://awesome-repositories.com/repository/ghostty-org-ghostty.md) (56,570 ⭐) — Ghostty is a cross-platform terminal emulator that utilizes GPU-accelerated rendering to provide high-performance text output and low-latency input. It functions as a unified terminal environment, maintaining consistent feature parity and configuration across different operating systems through a specialized windowing abstraction layer. The application is built on a declarative configuration engine that allows users to manage settings, keybindings, and visual themes using modular, plain-text files. It supports dynamic hot-reloading, enabling users to apply configuration changes in real-time w - [dnspyex/dnspy](https://awesome-repositories.com/repository/dnspyex-dnspy.md) (9,798 ⭐) — dnSpy is a specialized suite of tools for the reverse engineering of .NET assemblies, functioning as a decompiler, assembly editor, and debugger. It translates compiled intermediate language back into high-level source code and provides an execution environment for stepping through compiled binaries to inspect runtime state without the original source files. The project includes a BAML decompiler that converts binary application markup language into a disassembled format and translates it into extensible markup language for user interface analysis. It also functions as a binary analysis tool - [avast/retdec](https://awesome-repositories.com/repository/avast-retdec.md) (8,556 ⭐) — RetDec is a reverse engineering framework and static binary analysis tool. Its primary purpose is to function as an LLVM-based machine code decompiler that translates binary machine code from multiple architectures into high-level C source code. The system employs a multi-stage lifting pipeline to recover program logic, using an intermediate representation to apply optimizations before emitting source code. It distinguishes itself through the ability to identify compilers and packers, perform executable unpacking, and reconstruct class hierarchies and original program structures. The framewo - [ccfos/nightingale](https://awesome-repositories.com/repository/ccfos-nightingale.md) (13,108 ⭐) — Nightingale is a Prometheus-compatible monitoring and alerting platform designed to centralize telemetry management across multiple time-series databases. It functions as a multi-source alerting engine and metric data pipeline that ingests telemetry via remote write protocols and triggers alarms based on data from sources such as Prometheus, Elasticsearch, Loki, and ClickHouse. The system is distinguished by its automated alert healing system, which executes predefined scripts and RPC-based corrective actions when monitoring thresholds are breached. It supports distributed alert processing, a - [avast-tl/retdec](https://awesome-repositories.com/repository/avast-tl-retdec.md) (8,556 ⭐) — Retdec is an LLVM-based machine code decompiler and static binary analysis tool designed for binary reverse engineering. It translates binary executable code into high-level representations to facilitate the reconstruction of program logic from compiled machine code. The system utilizes a retargetable frontend architecture and a multi-stage lifting pipeline to convert raw bytes into a common intermediate language. It differentiates custom program logic from known library code through signature-based identification and provides utilities for binary symbol demangling to restore human-readable n - [arendst/tasmota](https://awesome-repositories.com/repository/arendst-tasmota.md) (24,502 ⭐) — Tasmota is a universal firmware platform for ESP8266 and ESP32 microcontrollers, designed to provide local control and management of smart home hardware. It functions as an event-driven automation controller that replaces proprietary factory firmware, allowing users to manage relays, sensors, and lighting systems without relying on external cloud services. The system is built on a modular driver architecture that enables dynamic hardware configuration and peripheral support through a web-based management interface. The platform distinguishes itself through a template-driven hardware mapping s - [panzerschrek/chasm-reverse](https://awesome-repositories.com/repository/panzerschrek-chasm-reverse.md) (176 ⭐) — Tools for reverse-engineering of game "Chasm: The Rift" - [snsinfu/reverse-tunnel](https://awesome-repositories.com/repository/snsinfu-reverse-tunnel.md) (241 ⭐) — Reverse tunnel TCP and UDP - [trinea/android-common](https://awesome-repositories.com/repository/trinea-android-common.md) (5,022 ⭐) — android-common is a collection of shared utility components and framework libraries for Android development. It provides specialized toolkits for reverse engineering, system utility management, data caching, and high-performance user interface components. The project includes a reverse engineering toolkit for inspecting application internals through package decompilation and manifest data extraction. It also features a system utility toolkit for managing file operations and executing shell commands within the Android operating system. The library covers several capability areas, including da - [skylot/jadx](https://awesome-repositories.com/repository/skylot-jadx.md) (49,088 ⭐) — Jadx is a comprehensive Java decompilation suite designed to transform compiled binary application files into readable source code. It functions as a static analysis workbench, providing a graphical interface for navigating, searching, and inspecting the internal logic of complex software packages. By utilizing a bytecode-to-Java pipeline, the project reconstructs high-level logical structures from low-level binary instructions, making it a primary tool for Android application reverse engineering. The project distinguishes itself through a sophisticated control flow reconstruction engine and - [jirutka/nginx-binaries](https://awesome-repositories.com/repository/jirutka-nginx-binaries.md) (80 ⭐) — Nginx and njs binaries for Linux (x86_64, aarch64, ppc64le), macOS and Windows. Linux binaries are static so works on every Linux. - [denoland/deno](https://awesome-repositories.com/repository/denoland-deno.md) (107,110 ⭐) — Deno is a high-performance runtime for JavaScript and TypeScript that prioritizes security and developer productivity. Built on the V8 engine, it provides a secure execution environment that enforces a default-deny security model, requiring explicit user authorization for access to system resources like the file system, network, and environment variables. The runtime natively supports modern web-standard APIs, ensuring consistent behavior and portability across different environments. What distinguishes Deno is its integrated approach to the software development lifecycle. It bundles essentia - [pwndbg/pwndbg](https://awesome-repositories.com/repository/pwndbg-pwndbg.md) (10,051 ⭐) — pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi - [dani-garcia/vaultwarden](https://awesome-repositories.com/repository/dani-garcia-vaultwarden.md) (62,749 ⭐) — Vaultwarden is a self-hosted password management server designed to store and synchronize sensitive credentials, identities, and organizational data across multiple client devices. It functions as a database-backed web application that provides an API layer for secure client-server communication, enabling users to manage personal vaults and organizational data sharing with multi-factor authentication. The project distinguishes itself through a comprehensive administrative infrastructure that provides centralized control over server configuration, user accounts, and system diagnostics via a de - [adamchainz/pytest-reverse](https://awesome-repositories.com/repository/adamchainz-pytest-reverse.md) (29 ⭐) — pytest-reverse - [java-decompiler/jd-gui](https://awesome-repositories.com/repository/java-decompiler-jd-gui.md) (15,024 ⭐) — This project is a desktop application designed for the reverse engineering and inspection of compiled Java code. It functions as a graphical interface that translates Java bytecode back into readable source code, allowing users to examine the internal logic of class files and archives when original source files are unavailable. The tool provides a structured environment for navigating complex file hierarchies, including nested archives like JAR and WAR files. By maintaining an in-memory representation of loaded classes, it enables rapid searching and cross-referencing of code elements. The ap - [biggranger/canbus-vehicle-reverse-engineering](https://awesome-repositories.com/repository/biggranger-canbus-vehicle-reverse-engineering.md) (27 ⭐) — My CANBUS documentation for my 2006 Grand Cherokee, 2008 Durango, 2010 Wrangler - [crystal-lang/crystal](https://awesome-repositories.com/repository/crystal-lang-crystal.md) (20,299 ⭐) — Crystal is a statically typed, compiled programming language designed for high performance and memory safety. It leverages an LLVM-based compiler to translate source code into optimized machine-executable binaries, while its type-inference-based static analysis enforces strict safety rules during the build process. The language distinguishes itself through a fiber-based concurrent runtime that manages lightweight execution units for asynchronous input and output without blocking the main process. It also features a powerful compile-time macro system that allows for the inspection and transfor - [aflplusplus/aflplusplus](https://awesome-repositories.com/repository/aflplusplus-aflplusplus.md) (6,605 ⭐) — AFL++ is a coverage-guided fuzzing framework that discovers crashes and hangs in software by mutating inputs while tracking which code paths are exercised. It functions as both a fuzzing engine and a campaign manager, supporting targets with or without source code through compile-time instrumentation, dynamic binary instrumentation, and emulation. The framework includes tools for crash triage and analysis, test case minimization, and campaign deployment across local or distributed environments. The framework distinguishes itself through its breadth of instrumentation backends, allowing users - [simoneavogadro/android-reverse-engineering-skill](https://awesome-repositories.com/repository/simoneavogadro-android-reverse-engineering-skill.md) (0 ⭐) - [mandiant/flare-floss](https://awesome-repositories.com/repository/mandiant-flare-floss.md) (3,886 ⭐) — Flare-floss is a security utility and static binary string extractor designed to uncover hidden text and configuration data within compiled binaries. It functions as an obfuscated string decoder and reverse engineering tool to translate encoded strings into readable text for security auditing. The project employs emulated execution to capture the decrypted state of strings in memory by running small chunks of binary code in a virtual CPU. It further utilizes static analysis disassembly, intermediate representation analysis, and heuristic-based pattern matching to identify and decode strings t - [j3pic/lisp-binary](https://awesome-repositories.com/repository/j3pic-lisp-binary.md) (102 ⭐) — A library to easily read and write complex binary formats. - [square/leakcanary](https://awesome-repositories.com/repository/square-leakcanary.md) (29,923 ⭐) — LeakCanary is a diagnostic tool designed to identify memory leaks by monitoring object lifecycles and analyzing heap snapshots. It automatically detects objects that fail to be garbage collected after their expected lifespan, providing developers with actionable insights to prevent performance degradation and application crashes. The project distinguishes itself by offloading memory-intensive heap parsing to a separate background process, which minimizes performance impact on the main application during runtime. It includes sophisticated deobfuscation capabilities that map obfuscated stack tr - [elysiajs/elysia](https://awesome-repositories.com/repository/elysiajs-elysia.md) (18,531 ⭐) — Elysia is a high-performance TypeScript web framework designed for building type-safe backend services. It provides a modular, plugin-based architecture that allows developers to compose server logic, middleware, and validation schemas into scalable application instances. By leveraging native web standards, the framework ensures portability across diverse JavaScript runtimes, including Node.js, Deno, and various edge computing environments. The framework distinguishes itself through its focus on end-to-end type safety, automatically synchronizing request and response definitions between the s - [composer/composer](https://awesome-repositories.com/repository/composer-composer.md) (29,457 ⭐) — Composer is a command-line dependency management tool for PHP that automates the process of resolving, downloading, and installing external code libraries. It functions by evaluating version constraints defined in a project's configuration file to calculate a compatible dependency tree, ensuring that applications maintain consistent behavior across different development and production environments. The tool utilizes a structured manifest file as the single source of truth for project requirements and generates a deterministic lock file to record the exact version and hash of every installed d - [not-chciken/jungle-book-gb-disassembly](https://awesome-repositories.com/repository/not-chciken-jungle-book-gb-disassembly.md) (4 ⭐) — Disassembly of "The Jungle Book" for Game Boy from 1994. - [de4dot/de4dot](https://awesome-repositories.com/repository/de4dot-de4dot.md) (7,428 ⭐) — de4dot is a .NET deobfuscator and unpacker designed to reverse obfuscation and restore readable code and metadata within .NET assemblies. It functions as a bytecode analyzer that simplifies control flow, strips anti-debugging protections, and extracts original payloads from packed executable wrappers. The project distinguishes itself through a modular deobfuscation pipeline and a sandbox environment used for dynamic string decryption, which executes decryption methods to replace encrypted strings with plain-text values. It can identify specific obfuscation tools through pattern-based binary a - [elm/compiler](https://awesome-repositories.com/repository/elm-compiler.md) (7,794 ⭐) — This project is a functional programming compiler and JavaScript transpiler that transforms a statically typed language into optimized JavaScript for web browsers. It serves as a frontend architecture framework, providing a static type system and a package manager that enforces semantic versioning. The compiler uses a type-checking engine with automatic type inference to prevent runtime errors and guide code refactoring. It implements a structural pattern for managing application state and rendering user interfaces through a virtual DOM, utilizing immutable data and purity-based state transit - [florinpop17/app-ideas](https://awesome-repositories.com/repository/florinpop17-app-ideas.md) (95,036 ⭐) — App-ideas is a development platform that integrates autonomous AI agents into local environments to orchestrate code review, automated fix application, and workflow management. It functions as a command-line interface that connects external AI assistants to your codebase, enabling iterative development cycles through plugin-based integration and natural language triggers. The platform distinguishes itself through a robust static analysis engine that traverses syntax trees to enforce structural coding standards and identify violations. Users can define custom review rules, architectural prefer - [lauriewired/ghidramcp](https://awesome-repositories.com/repository/lauriewired-ghidramcp.md) (7,649 ⭐) — GhidraMCP is a Model Context Protocol server that exposes Ghidra binary analysis and decompilation functions to external intelligence models. It acts as a bridge that connects the Ghidra reverse engineering suite to external tools through a standardized communication protocol, facilitating automated reverse engineering and software auditing. The project enables the extraction of decompiled code and program structural data to populate the context windows of language models. It features a binary symbol management tool capable of dynamic symbol resolution, allowing method and data names to be up - [glfw/glfw](https://awesome-repositories.com/repository/glfw-glfw.md) (14,716 ⭐) — This project is a cross-platform library designed for desktop application development, providing a unified interface for window management, input handling, and hardware-accelerated graphics. It serves as a foundational framework that abstracts platform-specific windowing protocols and graphics APIs, enabling developers to create interactive software that functions consistently across Windows, macOS, and Linux. The library distinguishes itself by providing deep integration with low-level graphics APIs, specifically OpenGL and Vulkan. It manages the complexities of graphics context initializati - [korcankaraokcu/pince](https://awesome-repositories.com/repository/korcankaraokcu-pince.md) (2,767 ⭐) — PINCE is a dynamic debugger, instruction tracer, and memory scanner designed for the analysis and manipulation of running processes. It functions as a process memory manipulator and editor, allowing for the identification, modification, and monitoring of values within a target application's active memory. The tool distinguishes itself through memory pointer analysis, tracing addresses and offsets to locate static pointers that lead to dynamic data across different sessions. It also enables the execution of internal functions within a running process by manipulating the instruction pointer and - [maxalyokhin/binary-synth](https://awesome-repositories.com/repository/maxalyokhin-binary-synth.md) (129 ⭐) — Audio synthesis from binary code of any file - [metaperl/binary-martingale](https://awesome-repositories.com/repository/metaperl-binary-martingale.md) (48 ⭐) — Computer program to automatically trade binary options martingale style - [pxb1988/dex2jar](https://awesome-repositories.com/repository/pxb1988-dex2jar.md) (13,112 ⭐) — dex2jar is an Android dex decompiler and reverse engineering tool designed to convert Dalvik executable bytecode into Java class files. It functions as a bytecode converter that transforms compiled Android binaries into a format compatible with standard Java analysis tools. The project facilitates Android app decompilation and Java bytecode recovery by translating executable files into readable structures. This allows for the analysis of application logic and the identification of security vulnerabilities or malicious behavior during Android malware analysis. The tool performs static bytecod - [gofiber/fiber](https://awesome-repositories.com/repository/gofiber-fiber.md) (39,849 ⭐) — Fiber is a high-performance web framework designed for building scalable HTTP services with minimal memory overhead. It provides a comprehensive runtime environment for managing the full request lifecycle, utilizing an optimized radix tree for high-speed route matching and an object pooling system to reduce garbage collection pressure during traffic processing. The framework distinguishes itself through its multi-process architecture, which supports prefork socket reuse to distribute incoming traffic across all available CPU cores. It offers a modular approach to application development, feat