Alternatives and similar repositories for Z

Users that are interested in Z are comparing it to the libraries listed below

• sterrasec / anti-disassembly-poc
  A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.
  ☆72Updated 7 months ago
• Untouchable17 / Reverse-TCP-Shell
  Reverse Shell - technique is commonly used in cyber attacks
  ☆19Updated last year
• Invoke-RE / binja-lattice-mcp
  Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.
  ☆49Updated 6 months ago
• thalium / vminer
  ☆90Updated 9 months ago
• rad9800 / RansomFS
  ☆31Updated 9 months ago
• NadavLor / windbg-ext-mcp
  WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…
  ☆50Updated 2 months ago
• AlSch092 / ObfuscateThis
  Templated Obfuscation example in C++ for protecting/hiding values in memory
  ☆39Updated 10 months ago
• 0xdea / augur
  Reverse engineering assistant that extracts strings and related pseudocode from a binary file.
  ☆84Updated last week
• djolertrk / kLLDB
  LLDB based debugger for Linux Kernel
  ☆27Updated 8 months ago
• volticks / CVE-2025-21692-poc
  Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75
  ☆39Updated 2 months ago
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆132Updated 7 months ago
• imperva / frida-jit-unpacker
  The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.
  ☆64Updated last year
• Invoke-RE / ungarble_bn
  Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project
  ☆39Updated 8 months ago
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆62Updated 3 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆87Updated last year
• vmsplit / IceVMM
  minimal hypervisor for aarch64 (WIP)
  ☆28Updated this week
• djolertrk / kovid-obfuscation-passes
  A set of LLVM and GCC based plugins that perform code obfuscation.
  ☆134Updated last month
• monsieurPale / RSA-Backdoor
  ☆163Updated last week
• kkent030315 / detect-anyrun
  ANY.RUN sandbox detection collection
  ☆22Updated last year
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆120Updated 6 months ago
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 7 months ago
• sapdragon / hint-break
  Code proving a 25-year blind spot in all disassemblers. PoC for Intel x64/x86 “ghost instructions.”
  ☆106Updated last month
• akhomlyuk / Ya_Decrypt
  Yandex browser password recovery
  ☆11Updated 7 months ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆42Updated 2 years ago
• akamai / Linux-Process-Injection
  ☆83Updated last year
• N0fix / IDA_rust_metadata_finder
  IDA plugin to recover source code from panic information on rust
  ☆17Updated 6 months ago
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆99Updated 6 months ago
• milankovo / zydisinfo
  ☆28Updated last month
• m3rcer / IRvana
  Slaying multi-language LLVM IR with obfuscation passes to achieve JIT execution
  ☆123Updated 3 weeks ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 8 months ago