Skip to content

Reversing


Reverse Engineering Tools [Sofiane]

  • angr - Platform-agnostic binary analysis framework.
  • Capstone - Lightweight multi-platform, multi-architecture disassembly framework.
  • Detect It Easy(DiE) - Program for determining types of files for Windows, Linux and MacOS.
  • Evan's Debugger - OllyDbg-like debugger for GNU/Linux.
  • Frida - Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.
  • Fridax - Read variables and intercept/hook functions in Xamarin/Mono JIT and AOT compiled iOS/Android applications.
  • Ghidra - Suite of free software reverse engineering tools developed by NSA's Research Directorate originally exposed in WikiLeaks's "Vault 7" publication and now maintained as open source software.
  • Immunity Debugger - Powerful way to write exploits and analyze malware.
  • Interactive Disassembler (IDA Pro) - Proprietary multi-processor disassembler and debugger for Windows, GNU/Linux, or macOS; also has a free version, IDA Free.
  • Medusa - Open source, cross-platform interactive disassembler.
  • OllyDbg - x86 debugger for Windows binaries that emphasizes binary code analysis.
  • PyREBox - Python scriptable Reverse Engineering sandbox by Cisco-Talos.
  • Radare2 - Open source, crossplatform reverse engineering framework.
  • UEFITool - UEFI firmware image viewer and editor.
  • Voltron - Extensible debugger UI toolkit written in Python.
  • WDK/WinDbg - Windows Driver Kit and WinDbg.
  • binwalk - Fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images.
  • boxxy - Linkable sandbox explorer.
  • dnSpy - Tool to reverse engineer .NET assemblies.
  • plasma - Interactive disassembler for x86/ARM/MIPS. Generates indented pseudo-code with colored syntax code.
  • pwndbg - GDB plug-in that eases debugging with GDB, with a focus on features needed by low-level software developers, hardware hackers, reverse-engineers, and exploit developers.
  • rVMI - Debugger on steroids; inspect userspace processes, kernel drivers, and preboot environments in a single tool.
  • x64dbg - Open source x64/x32 debugger for windows.

Books

Reverse Engineering Books

Courses

Reverse Engineering Courses

Channels

Binary Analysis Channels

Practice

Practice Reverse Engineering. Be careful with malware.

Hex Editors

Hex Editors

  • HxD
  • 010 Editor
  • Hex Workshop
  • HexFiend
  • Hiew
  • Bless - High quality, full featured, cross-platform graphical hex editor written in Gtk#.
  • Frhed - Binary file editor for Windows.
  • Hex Fiend - Fast, open source, hex editor for macOS with support for viewing binary diffs.
  • HexEdit.js - Browser-based hex editing.
  • Hexinator - World's finest (proprietary, commercial) Hex Editor.
  • hexedit - Simple, fast, console-based hex editor.
  • wxHexEditor - Free GUI hex editor for GNU/Linux, macOS, and Windows.

Binary Format

Binary Format Tools

Disassemblers/Decompilers

Disassemblers/Decompilers

Binary Analysis

Binary Analysis Resources

Bytecode Analysis

Bytecode Analysis Tools

Import Reconstruction

Import Reconstruction Tools

Dynamic Analysis

Dynamic Analysis Tools

Debugging

Debugging Tools

Mac Decrypt

Mac Decrypting Tools

Document Analysis

Document Analysis Tools

Scripting

Scripting

Android

Android tools

Yara

Yara Resources