Packages that operate on binary in some form.

Tool count: 71

BlackArch binary
Name Version Description Homepage
amber 256.f6eb2dc Reflective PE packer.
amoco v2.4.1.r318.g7f7e529 Yet another tool for analysing binaries.
androguard 3.3.5 Reverse engineering, Malware and goodware analysis of Android applications and more.
angr 9.1.11752 The next-generation binary analysis platform from UC Santa Barbaras Seclab.
angr-management 9.1.11752 This is the GUI for angr.
angr-py2 The next-generation binary analysis platform from UC Santa Barbaras Seclab.
avet 133.2f1d882 AntiVirus Evasion Tool
barf 923.9547ef8 A multiplatform open source Binary Analysis and Reverse engineering Framework.
bgrep 24.28029c9 Binary grep.
binaryninja-python 13.83f59f7 Binary Ninja prototype written in Python.
bindead 4504.67019b97b A static analysis tool for binaries
bindiff 6.0.0 A comparison tool for binary files, that assists vulnerability researchers and engineers to quickly find differences and similarities in disassembled code.
binflow 5.7fb02a9 POSIX function tracing. Much better and faster than ftrace.
binwally 4.0aabd8b Binary and Directory tree comparison tool using the Fuzzy Hashing concept (ssdeep).
bsdiff 4.3 Tools for building and applying patches to binary files.
bvi 1.4.2 A display-oriented editor for binary files operate like "vi" editor.
bytecode-viewer 2.11.2 A Java 8/Android APK Reverse Engineering Suite.
cminer 25.d766f7e A tool for enumerating the code caves in PE files.
cpp2il 2022.0.7.r17.g20ccab2 A tool to reverse unity's IL2PP toolchain
detect-it-easy 3.02 A program for determining types of files.
dissector 1 This code dissects the internal data structures in ELF files. It supports x86 and x86_64 archs and runs under Linux.
dutas 10.37fa3ab Analysis PE file or Shellcode.
dwarf 1084.fd859ae Full featured multi arch/os debugger built on top of PyQt5 and frida.
dynamorio 9.0.19046 A dynamic binary instrumentation framework.
ecfs 305.1758063 Extended core file snapshot format.
elfkickers 3.2 Collection of ELF utilities (includes sstrip)
elfparser 7.39d21ca Cross Platform ELF analysis.
elfutils 0.191 Handle ELF object files and DWARF debugging information (utilities)
eresi 1291.4769c175 The ERESI Reverse Engineering Software Interface.
exescan 1.ad993e3 A tool to detect anomalies in PE (Portable Executable) files.
expimp-lookup 4.79a96c7 Looks for all export and import names that contain a specified string in all Portable Executable in a directory tree.
expose 1110.30264af A Dynamic Symbolic Execution (DSE) engine for JavaScript
haystack 1823.c178b5a A Python framework for finding C structures from process memory - heap analysis - Memory structures forensics.
hercules-payload 222.2607a3a A special payload generator that can bypass all antivirus software.
hex2bin 2.5 Converts Motorola and Intel hex files to binary.
imagejs 56.a442f94 Small tool to package javascript into a valid image file.
jpegdump 0.0.7 Tool to analyzse JPEG images Reads binary files and parses the JPEG markers inside them.
klee 2.1 A symbolic virtual machine built on top of the LLVM compiler infrastructure.
leena 2.5119f56 Symbolic execution engine for JavaScript
loadlibrary 104.c40033b Porting Windows Dynamic Link Libraries to Linux.
ltrace 0.7.3 Tracks runtime library calls in dynamically linked programs
manticore 0.3.7.r73.g88610053 Symbolic execution tool.
metame 14.8d583a0 A simple metamorphic code engine for arbitrary executables.
objdump2shellcode 28.c2d6120 A tool I have found incredibly useful whenever creating custom shellcode.
oledump 0.0.76 Analyze OLE files (Compound File Binary Format). These files contain streams of data. This tool allows you to analyze these streams.
packer 1.10.3 tool for creating identical machine images for multiple platforms from a single source configuration
packerid 1.4 Script which uses a PEiD database to identify which packer (if any) is being used by a binary.
patchkit 37.95dc699 Powerful binary patching from Python.
pixd 9.f49add4 Colourful visualization tool for binary files.
powerstager 14.0149dc9 A payload stager using PowerShell.
procdump 63.5f23548 Generate coredumps based off performance triggers.
proctal 482.67bf7e8 Provides a command line interface and a C library to manipulate the address space of a running program on Linux.
python-oletools 0.60.1 Tools to analyze Microsoft OLE2 files.
python-peid 2.2.1 Python implementation of the Packed Executable iDentifier (PEiD).
python2-oletools 0.60.1 Tools to analyze Microsoft OLE2 files.
quickscope 456.8d74a41 Statically analyze windows, linux, osx, executables and also APK files.
rbasefind 41.a661118 A firmware base address search tool.
redress v0.8.0.alpha4.r6.g28a8814 A tool for analyzing stripped Go binaries.
saruman 2.4be8db5 ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection).
sgn 36.f54fa65 Shikata ga nai encoder ported into go with several improvements.
soot 3.4.0 A Java Bytecode Analysis and Transformation Framework.
strace 6.9 A diagnostic, debugging and instructional userspace tracer
stringsifter 39.33c0cd5 Machine learning tool that automatically ranks strings based on their relevance for malware analysis.
swftools 0.9.2 A collection of SWF manipulation and creation utilities.
triton 4164.924bcbb2 A Dynamic Binary Analysis (DBA) framework.
upx 4.2.4 Extendable, high-performance executable packer for several executable formats
valgrind 3.23.0 Tool to help find memory-management problems in programs
veles 637.e65de5a New open source tool for binary data analysis.
wcc 86.b3f4557 The Witchcraft Compiler Collection.
wxhexeditor 733.f439d8f A free hex editor / disk editor for Linux, Windows and MacOSX.
zelos 272.506554d A comprehensive binary emulation and instrumentation platform.