A binary static analysis tool that provides security and correctness results for Windows Portable Executable and *nix ELF binary formats
☆840Feb 25, 2026Updated last week
Alternatives and similar repositories for binskim
Users that are interested in binskim are comparing it to the libraries listed below
Sorting:
- Automated Exploit generation with WinDBG☆190Oct 18, 2016Updated 9 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆240Nov 19, 2025Updated 3 months ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆294Sep 30, 2023Updated 2 years ago
- Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection☆82Mar 22, 2017Updated 8 years ago
- Reverse engineering tool for automatic structure recovering and memory use analysis based on DynamoRIO and Capstone☆324Aug 12, 2019Updated 6 years ago
- A static analyzer for PE executables.☆1,107Feb 24, 2026Updated last week
- Collection of pin tools☆52Dec 29, 2015Updated 10 years ago
- Detect, analyze and uniquely identify crashes in Windows applications☆522May 23, 2025Updated 9 months ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,267Nov 6, 2025Updated 3 months ago
- Any useful windbg plugins I've written.☆117Apr 10, 2018Updated 7 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- An instruction trace visualisation tool for dynamic program analysis☆370Dec 8, 2022Updated 3 years ago
- The Kam1n0 Assembly Analysis Platform☆626Mar 2, 2023Updated 3 years ago
- POC for IAT Parsing Payloads☆48Jan 1, 2017Updated 9 years ago
- kernel exploitation helper class☆77Nov 26, 2016Updated 9 years ago
- An amd64 symbolic emulator☆314Aug 28, 2021Updated 4 years ago
- IDA Pro plugin making easier work on BinDiff results☆80Mar 25, 2016Updated 9 years ago
- A PowerShell front-end for the Windows debugger engine.☆693Apr 3, 2024Updated last year
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆231Jan 18, 2024Updated 2 years ago
- Monitor activity of any driver☆353Nov 2, 2020Updated 5 years ago
- SymGDB - symbolic execution plugin for gdb☆218May 15, 2018Updated 7 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆753Dec 15, 2025Updated 2 months ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆466Apr 17, 2018Updated 7 years ago
- A stateful fuzzing engine.☆45Nov 14, 2018Updated 7 years ago
- PyAna - Analyzing the Windows shellcode☆247Feb 16, 2016Updated 10 years ago
- Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits☆415Jan 2, 2020Updated 6 years ago
- A hypervisor for fuzzing built with WHVP and Bochs☆380Feb 5, 2019Updated 7 years ago
- A fork of AFL for fuzzing Windows binaries☆2,535Dec 5, 2025Updated 3 months ago
- A pintool in order to unpack malware☆239Jul 30, 2016Updated 9 years ago
- A clone (of the basic core) of AFL fuzzer☆74Feb 6, 2016Updated 10 years ago
- AFL/QEMU fuzzing with full-system emulation.☆640Sep 9, 2018Updated 7 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆115May 27, 2017Updated 8 years ago
- Cross Platform Kernel Fuzzer Framework☆457Oct 11, 2018Updated 7 years ago
- reverse engineering extension plugin for windbg☆121Sep 30, 2019Updated 6 years ago
- Uncovering Class Hierarchies in C++ Programs☆127Sep 16, 2022Updated 3 years ago
- Small tool for generating ropchains using unicorn and z3☆198Feb 22, 2018Updated 8 years ago
- WinDBG Anti-RootKit Extension☆645Jul 29, 2020Updated 5 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆73Apr 14, 2017Updated 8 years ago