Alternatives and similar repositories for Z

Users that are interested in Z are comparing it to the libraries listed below

• Invoke-RE / binja-lattice-mcp
  Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.
  ☆53Updated 8 months ago
• sterrasec / anti-disassembly-poc
  A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.
  ☆74Updated 9 months ago
• 0xdea / augur
  Reverse engineering assistant that extracts strings and related pseudocode from a binary file.
  ☆91Updated last week
• thalium / vminer
  ☆89Updated 11 months ago
• AlSch092 / ObfuscateThis
  Templated Obfuscation example in C++ for protecting/hiding values in memory
  ☆39Updated 11 months ago
• NadavLor / windbg-ext-mcp
  WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…
  ☆63Updated 4 months ago
• elastic / die-rust
  Native Rust bindings for @horsicq's Detect-It-Easy
  ☆18Updated 2 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆82Updated 10 months ago
• N0fix / IDA_rust_metadata_finder
  IDA plugin to recover source code from panic information on rust
  ☆17Updated 8 months ago
• Untouchable17 / Reverse-TCP-Shell
  Reverse Shell - technique is commonly used in cyber attacks
  ☆19Updated last year
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 9 months ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆41Updated 2 years ago
• kkent030315 / detect-anyrun
  ANY.RUN sandbox detection collection
  ☆22Updated last year
• milankovo / zydisinfo
  ☆30Updated last week
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆115Updated last week
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆120Updated 8 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆90Updated last year
• zx0CF1 / shredder-rs
  A high-fidelity x86_64 polymorphic mutation engine focused on instruction-level fragmentation and context preservation.
  ☆103Updated last week
• h311d1n3r / Arion
  A high-performance C++ framework for emulating executable binaries
  ☆128Updated 2 months ago
• sapdragon / hint-break
  Code proving a 25-year blind spot in all disassemblers. PoC for Intel x64/x86 “ghost instructions.”
  ☆109Updated 2 months ago
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆51Updated 5 months ago
• akhomlyuk / Ya_Decrypt
  Yandex browser password recovery
  ☆11Updated 9 months ago
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆89Updated last year
• djolertrk / kLLDB
  LLDB based debugger for Linux Kernel
  ☆28Updated 9 months ago
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆130Updated 9 months ago
• rand-tech / pcm
  MCP for reverse engineering
  ☆47Updated 9 months ago
• codereversing / ted_api
  ☆35Updated 3 years ago
• Toroto006 / windows-kernel-driver-pipeline
  This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…
  ☆21Updated last year
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆36Updated 2 years ago
• rad9800 / RansomFS
  ☆31Updated 10 months ago