Windows kernel and user mode emulation.
☆1,994Jun 19, 2026Updated last week
Alternatives and similar repositories for speakeasy
Users that are interested in speakeasy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The FLARE team's open-source tool to identify capabilities in executable files.☆6,076Jun 22, 2026Updated last week
- A Pin Tool for tracing API calls etc☆1,667Jun 2, 2026Updated 3 weeks ago
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆870Feb 2, 2024Updated 2 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,706Jun 6, 2026Updated 3 weeks ago
- A True Instrumentable Binary Emulation Framework☆5,983Apr 28, 2026Updated 2 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆4,066Jun 24, 2026Updated last week
- ☆956Aug 14, 2025Updated 10 months ago
- Quickly debug shellcode extracted during malware analysis☆637May 23, 2023Updated 3 years ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,374Jun 6, 2026Updated 3 weeks ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆922Dec 29, 2025Updated 6 months ago
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆7,026Jun 2, 2026Updated 3 weeks ago
- State-of-the-art native debugging tools☆3,898Jun 24, 2026Updated last week
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,301Apr 2, 2026Updated 3 months ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆758Aug 18, 2025Updated 10 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,309Jun 21, 2026Updated last week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆588May 5, 2024Updated 2 years ago
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆2,150Aug 8, 2021Updated 4 years ago
- AV/EDR evasion via direct system calls.☆2,018Jan 1, 2023Updated 3 years ago
- Virtual Machine Introspection, Tracing & Debugging☆599Feb 22, 2022Updated 4 years ago
- Hook system calls, context switches, page faults and more.☆2,657May 9, 2023Updated 3 years ago
- Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…☆4,215May 20, 2026Updated last month
- Enumerate and disable common sources of telemetry used by AV/EDR.☆853Mar 11, 2021Updated 5 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,536Nov 15, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Reverse engineering framework in Python☆3,891Mar 26, 2026Updated 3 months ago
- A dynamic VMP dumper and import fixer, powered by VTIL.☆1,380Nov 4, 2020Updated 5 years ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,366Apr 18, 2026Updated 2 months ago
- Converts PE into a shellcode☆2,776Aug 30, 2025Updated 10 months ago
- DRAKVUF Black-box Binary Analysis☆1,245Jun 14, 2026Updated 2 weeks ago
- Dynamic unpacker based on PE-sieve☆818Apr 14, 2026Updated 2 months ago
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆830Mar 16, 2024Updated 2 years ago
- IDA Pro utilities from FLARE team☆2,452Oct 29, 2024Updated last year
- ☆2,192Apr 3, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A Trace Explorer for Reverse Engineers☆1,543Oct 23, 2023Updated 2 years ago
- Malware Configuration And Payload Extraction☆3,308Jun 24, 2026Updated last week
- Binee: binary emulation environment☆533Feb 25, 2023Updated 3 years ago
- A Coverage Explorer for Reverse Engineers☆2,559Feb 14, 2026Updated 4 months ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,290May 1, 2024Updated 2 years ago
- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…☆2,357Feb 15, 2026Updated 4 months ago
- Open-Source Shellcode & PE Packer☆2,111Feb 3, 2024Updated 2 years ago