Packages that operate on binary les in some form.


Tool count: 47

BlackArch binary
Name Version Description Homepage
amber 223.44e156d Reflective PE packer. https://github.com/EgeBalci/Amber
androguard 1567.fab36637 Reverse engineering, Malware and goodware analysis of Android applications and more. https://github.com/androguard/androguard
angr 7.8.2.21 The next-generation binary analysis platform from UC Santa Barbara's Seclab. https://github.com/angr/angr
barf 886.f819536 A multiplatform open source Binary Analysis and Reverse engineering Framework. https://github.com/programa-stic/barf-project
binaryninja-python 13.83f59f7 Binary Ninja prototype written in Python. https://github.com/Vector35/binaryninja-python
bindead 4504.67019b97b A static analysis tool for binaries https://bitbucket.org/mihaila/bindead
bindiff 4.3.0 A comparison tool for binary files, that assists vulnerability researchers and engineers to quickly find differences and similarities in disassembled code. http://www.zynamics.com/bindiff.html
binflow 4.c4140d7 POSIX function tracing. Much better and faster than ftrace. https://github.com/elfmaster/binflow
binwally 4.0aabd8b Binary and Directory tree comparison tool using the Fuzzy Hashing concept (ssdeep). https://github.com/bmaia/binwally
bvi 1.4.0 A display-oriented editor for binary files operate like "vi" editor. http://bvi.sourceforge.net/
bytecode-viewer 2.9.11 A Java 8/Android APK Reverse Engineering Suite. https://github.com/Konloch/bytecode-viewer
cminer 25.d766f7e A tool for enumerating the code caves in PE files. https://github.com/EgeBalci/Cminer/
detect-it-easy 54.323f591 A program for determining types of files. https://github.com/horsicq/Detect-It-Easy
dissector 1 This code dissects the internal data structures in ELF files. It supports x86 and x86_64 archs and runs under Linux. http://packetstormsecurity.com/files/125972/Coloured-ELF-File-Dissector.html
dutas 10.37fa3ab Analysis PE file or Shellcode. https://github.com/dungtv543/Dutas
ecfs 303.d72c0e5 Extended core file snapshot format. https://github.com/elfmaster/ecfs
elfkickers 3.1 Collection of ELF utilities (includes sstrip) http://www.muppetlabs.com/~breadbox/software/elfkickers.html
elfparser 7.39d21ca Cross Platform ELF analysis. https://github.com/jacob-baines/elfparser
eresi 1267.d0facbfd The ERESI Reverse Engineering Software Interface. https://github.com/thorkill/eresi
exescan 1.ad993e3 A tool to detect anomalies in PE (Portable Executable) files. https://github.com/cysinfo/Exescan
expimp-lookup 4.79a96c7 Looks for all export and import names that contain a specified string in all Portable Executable in a directory tree. https://github.com/tr3w/ExpImp-Lookup
haystack 1823.c178b5a A Python framework for finding C structures from process memory - heap analysis - Memory structures forensics. https://github.com/trolldbois/python-haystack
hercules-payload 220.958541e A special payload generator that can bypass all antivirus software. https://github.com/EgeBalci/HERCULES
hex2bin 2.5 Converts Motorola and Intel hex files to binary. http://hex2bin.sourceforge.net/
imagejs 54.1b0b3aa Small tool to package javascript into a valid image file. https://github.com/jklmnn/imagejs
jpegdump 0.0.3 Tool to analyzse JPEG images Reads binary files and parses the JPEG markers inside them. https://blog.didierstevens.com/2018/01/29/new-tool-jpegdump-py/
loadlibrary 35.45296de Porting Windows Dynamic Link Libraries to Linux. https://github.com/taviso/loadlibrary
metame 2.82cfd20 A simple metamorphic code engine for arbitrary executables. https://github.com/a0rtega/metame
objdump2shellcode 28.c2d6120 A tool I have found incredibly useful whenever creating custom shellcode. https://github.com/wetw0rk/objdump2shellcode
oledump 0.0.34 Analyze OLE files (Compound File Binary Format). These files contain streams of data. This tool allows you to analyze these streams. http://blog.didierstevens.com/programs/oledump-py/
oletools 0.52 Tools to analyze Microsoft OLE2 files. http://www.decalage.info/python/oletools
packer-io 1.2.3 tool for creating identical machine images for multiple platforms from a single source configuration https://github.com/hashicorp/packer
packerid 1.4 Script which uses a PEiD database to identify which packer (if any) is being used by a binary. http://handlers.sans.org/jclausing/
patchkit 36.5fe79b7 Powerful binary patching from Python. https://github.com/lunixbochs/patchkit
pixd 7.873db72 Colourful visualization tool for binary files. https://github.com/FireyFly/pixd
powerstager 12.b0201c8 A payload stager using PowerShell. https://github.com/z0noxz/powerstager
proctal 477.f72cefe Provides a command line interface and a C library to manipulate the address space of a running program on Linux. https://github.com/daniel-araujo/proctal
saruman 2.4be8db5 ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection). https://github.com/elfmaster/saruman
soot 2.5.0 A Java Bytecode Analysis and Transformation Framework. http://www.sable.mcgill.ca/soot
strace 4.21 A diagnostic, debugging and instructional userspace tracer http://sourceforge.net/projects/strace/
swftools 0.9.2 A collection of SWF manipulation and creation utilities http://www.swftools.org/
triton 1904.5d876f6f A Dynamic Binary Analysis (DBA) framework. https://github.com/JonathanSalwan/Triton
upx 3.94 Ultimate executable compressor. http://upx.sourceforge.net/
valgrind 3.13.0 Tool to help find memory-management problems in programs http://valgrind.org/
veles 2017.06.0.1 New open source tool for binary data analysis. https://codisec.com/veles/
wcc 55.f141963 The Witchcraft Compiler Collection. https://github.com/endrazine/wcc
wxhexeditor 659.0fda2ba A free hex editor / disk editor for Linux, Windows and MacOSX. http://wxhexeditor.sourceforge.net/