awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索Open-source alternativesSelf-hosted software博客网站地图
项目关于How we rank媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

5 个仓库

Awesome GitHub RepositoriesDisassembler Frameworks

Modular systems providing a consistent API for adding support for new processor architectures.

Distinct from Modular Plugin Frameworks: Specific to disassembly engine plugins rather than general third-party code extensions.

Explore 5 awesome GitHub repositories matching software engineering & architecture · Disassembler Frameworks. Refine with filters or upvote what's useful.

Awesome Disassembler Frameworks GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • capstone-engine/capstonecapstone-engine 的头像

    capstone-engine/capstone

    8,858在 GitHub 上查看↗

    Capstone is a multi-architecture disassembly framework and binary analysis engine. It translates raw machine code from various CPU architectures, such as x86, ARM, and RISC-V, into human-readable assembly instructions. The engine distinguishes itself by providing instruction semantic decomposition, which lists implicit registers read and written, and the ability to customize instruction mnemonics to meet specific technical analysis standards. It also features resilient stream disassembly, allowing the process to resynchronize and continue after encountering invalid instructions or embedded da

    Provides a comprehensive framework for translating raw binary machine code from multiple CPU architectures into human-readable assembly.

    Carmarm64bpf
    在 GitHub 上查看↗8,858
  • aquynh/capstoneaquynh 的头像

    aquynh/capstone

    8,839在 GitHub 上查看↗

    Capstone is a multi-architecture disassembly framework and binary translation system. It converts binary machine code into human-readable assembly instructions for a wide variety of hardware instruction set architectures and virtual machines. The framework supports a diverse range of targets, including x86, ARM, RISC-V, and MIPS, as well as virtual machine environments like WebAssembly and the Ethereum Virtual Machine. It functions as an instruction analysis tool capable of extracting granular decomposition data and semantic information from disassembled code. The engine is designed for low-

    Provides a consistent API for adding new processor supports without altering the primary processing loop.

    C
    在 GitHub 上查看↗8,839
  • mandiant/capamandiant 的头像

    mandiant/capa

    6,062在 GitHub 上查看↗

    capa is a binary capability scanner that identifies high-level behaviors and actions an executable can perform, such as network communication or file manipulation. It functions as a malware behavior analysis tool and a MITRE ATT&CK mapping framework, scanning PE, ELF, .NET, and shellcode files through both static analysis and dynamic sandbox report processing. The tool distinguishes itself through a YAML-based detection rule engine that defines detection logic in human-readable files, with conditions expressed as feature combinations and logical operators. It integrates with IDA Pro, Ghidra,

    Provides a plugin-based abstraction layer that translates native disassembler APIs into a unified feature extraction interface.

    Python
    在 GitHub 上查看↗6,062
  • mandiant/flare-flossmandiant 的头像

    mandiant/flare-floss

    3,886在 GitHub 上查看↗

    Flare-floss is a security utility and static binary string extractor designed to uncover hidden text and configuration data within compiled binaries. It functions as an obfuscated string decoder and reverse engineering tool to translate encoded strings into readable text for security auditing. The project employs emulated execution to capture the decrypted state of strings in memory by running small chunks of binary code in a virtual CPU. It further utilizes static analysis disassembly, intermediate representation analysis, and heuristic-based pattern matching to identify and decode strings t

    Employs disassembly to identify code patterns and locate functions responsible for string decryption.

    Pythondeobfuscationflaregsoc-2026
    在 GitHub 上查看↗3,886
  • korcankaraokcu/pincekorcankaraokcu 的头像

    korcankaraokcu/PINCE

    2,767在 GitHub 上查看↗

    PINCE is a dynamic debugger, instruction tracer, and memory scanner designed for the analysis and manipulation of running processes. It functions as a process memory manipulator and editor, allowing for the identification, modification, and monitoring of values within a target application's active memory. The tool distinguishes itself through memory pointer analysis, tracing addresses and offsets to locate static pointers that lead to dynamic data across different sessions. It also enables the execution of internal functions within a running process by manipulating the instruction pointer and

    Identifies jumps and calls within memory regions by searching for specific machine code patterns using regular expressions.

    Pythonassemblercheat-enginedebugging-tool
    在 GitHub 上查看↗2,767
  1. Home
  2. Software Engineering & Architecture
  3. Modular Plugin Frameworks
  4. Disassembler Frameworks

探索子标签

  • Disassembler Plugin AbstractionsPlugin interfaces that translate native disassembler APIs into a common feature extraction interface. **Distinct from Disassembler Frameworks:** Distinct from Disassembler Frameworks: focuses on abstracting multiple disassembler backends through plugins, not adding processor architecture support.
  • Pattern-Based Disassembly1 个子标签Use of disassembly frameworks to identify specific code sequences and function signatures. **Distinct from Disassembler Frameworks:** Focuses on using a disassembler to find patterns for string decryption rather than the architecture of the framework itself