An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

UNIX-like reverse engineering framework and command-line toolset

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Defund the Police.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Exploit Development and Reverse Engineering with GDB Made Easy

Program for determining types of files for Windows, Linux and MacOS.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

The FLARE team's open-source tool to identify capabilities in executable files.

Reverse Engineer's Toolkit

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

Android virtual machine and deobfuscator

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory ext…

IntelOwl: manage your Threat Intelligence at scale

A curated list of awesome YARA rules, tools, and people.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do