Open highlighted repo slot
Put your repository first
Promote a GitHub repo at the top of Awesome repository list views for 7 days.
GitHub projects from awesome lists
Search names, descriptions, topics, tags, and stacks, then tune results by ecosystem, freshness, health, and cross-list signal.
Open highlighted repo slot
Promote a GitHub repo at the top of Awesome repository list views for 7 days.
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
UNIX-like reverse engineering framework and command-line toolset
Exploit Development and Reverse Engineering with GDB & LLDB Made Easy
Android virtual machine and deobfuscator
IntelOwl: manage your Threat Intelligence at scale
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
State-of-the-art native debugging tools
Android Reverse-Engineering Workbench for VS Code
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Portable Executable reversing tool with a friendly GUI
Malware Configuration And Payload Extraction
No description.
A bunch of Windows anti-debugging tricks for x86 and x64.
A Binary Genetic Traits Lexer Framework
Linker/Compiler/Tool detector for Windows, Linux and MacOS.
Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.
Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Drltrace is a library calls tracer for Windows and Linux applications.
IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
This repo contains IOC, malware and malware analysis associated with Public cloud
Brovan is a user-mode x86_64 binary emulator for your malware analysis & reverse engineering.
MCP server for VirusTotal API — analyze URLs, files, IPs, and domains with comprehensive security reports, relationship analysis, and pagination support.
MCP server for VirusTotal API — analyze URLs, files, IPs, and domains with comprehensive security reports, relationship analysis, and pagination support.
Drive x64dbg with your AI. MCP server: 23 mega-tools / 153 endpoints for breakpoints, memory, disasm, tracing, anti-debug & PE dumping. Claude/Cursor/Windsurf/Cline. All local.
your ai debugger, vibe hacking tool
Workflow-centric function triage and prioritization plugin for IDA Pro
Recover and statically analyze manually-mapped DLLs whose PE headers are wiped at runtime. Pure-stdlib Python, no driver, no debugger required. Includes a Claude Code skill.