nccgroup/ghostrings

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nccgroup/ghostrings)

nccgroup / ghostrings

Ghidra scripts for recovering string definitions in Go binaries

☆127

Alternatives and similar repositories for ghostrings

Users that are interested in ghostrings are comparing it to the libraries listed below

Sorting:

dod-cyber-crime-center / pyhidra
View on GitHub
Pyhidra is a Python library that provides direct access to the Ghidra API within a native CPython interpreter using jpype.
☆206Oct 29, 2024Updated last year
cyberkaida / golang-ghidra
View on GitHub
A Ghidra extension for Golang analysis
☆29May 21, 2023Updated 2 years ago
mandiant / Ghidrathon
View on GitHub
The FLARE team's open-source extension to add Python 3 scripting to Ghidra.
☆776May 8, 2024Updated last year
zxgio / ghidra_stack_strings
View on GitHub
A script to detect stack-strings by using emulation (leveraging Unicorn)
☆35Dec 6, 2025Updated 2 months ago
vic4key / VB-Exe-Parser
View on GitHub
VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
☆17Oct 8, 2016Updated 9 years ago
rcx / ida-scripts
View on GitHub
Collection of IDA Pro/Hex-Rays configs, scripts, and plugins
☆23Mar 20, 2020Updated 5 years ago
mandiant / GoReSym
View on GitHub
Go symbol recovery tool
☆935Updated this week
0xdea / ghidra-scripts
View on GitHub
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.
☆289Jan 31, 2026Updated last month
Vector35 / official-plugins
View on GitHub
Repository for officially supported Binary Ninja plugins
☆57Feb 24, 2026Updated last week
goretk / pygore
View on GitHub
pyGoRE - Python library for analyzing Go binaries
☆66Feb 12, 2022Updated 4 years ago
rmalmain / 39C3-build-a-fake-phone-find-real-bugs
View on GitHub
The companion repository for the 39C3 talk: Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU
☆36Feb 4, 2026Updated 3 weeks ago
mitre / pydecipher
View on GitHub
pydecipher: unfreeze and deobfuscate your frozen python code
☆63Oct 1, 2023Updated 2 years ago
kc0bfv / pcode-emulator
View on GitHub
A PCode Emulator for Ghidra.
☆113Feb 7, 2021Updated 5 years ago
msm-code / ghidralib
View on GitHub
A Pythonic Ghidra standard library
☆185Feb 6, 2026Updated 3 weeks ago
scrt / avdebugger
View on GitHub
☆100Mar 31, 2022Updated 3 years ago
SamL98 / GhidraStackStrings
View on GitHub
Hacky scripts to fixup stack strings in Ghidra's decompiler.
☆36May 22, 2022Updated 3 years ago
OSUSecLab / QtRE
View on GitHub
A Ghidra headless analyzer tailored for Qt binary analysis
☆75Oct 7, 2024Updated last year
k3idii / ION
View on GitHub
Indicators of Normality
☆11Jul 22, 2022Updated 3 years ago
Ayrx / WhatAPK
View on GitHub
Command line utility for APK fingerprinting
☆13Jan 10, 2023Updated 3 years ago
clearbluejar / ghidriff
View on GitHub
Python Command-Line Ghidra Binary Diffing Engine
☆740Sep 25, 2025Updated 5 months ago
reb311ion / replica
View on GitHub
Ghidra Analysis Enhancer 🐉
☆312May 30, 2020Updated 5 years ago
Martyx00 / ghinja
View on GitHub
Plugin to embed Ghidra Decompiler into Binary Ninja
☆97Jun 8, 2022Updated 3 years ago
CooperShield / rustache_injector
View on GitHub
A rust based DLL injection project
☆31Sep 18, 2022Updated 3 years ago
GaloisInc / MATE
View on GitHub
MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.
☆194Oct 29, 2022Updated 3 years ago
advanced-threat-research / GhidraScripts
View on GitHub
Scripts to run within Ghidra, maintained by the Trellix ARC team
☆127Jul 1, 2025Updated 8 months ago
0ffffffffh / dragondance
View on GitHub
Binary code coverage visualizer plugin for Ghidra
☆298Jun 27, 2024Updated last year
mooncat-greenpy / Ghidra_GolangAnalyzerExtension
View on GitHub
Analyze Golang with Ghidra
☆217Jan 25, 2026Updated last month
llnl / OGhidra
View on GitHub
OGhidra bridges Large Language Models (LLMs) via Ollama with the Ghidra reverse engineering platform, enabling AI-driven binary analysis …
☆114Feb 20, 2026Updated last week
kohnakagawa / PracticalPCode
View on GitHub
Practical P-Code examples
☆66Feb 12, 2021Updated 5 years ago
0x6d696368 / ghidra_scripts
View on GitHub
Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.
☆160Feb 22, 2020Updated 6 years ago
WithSecureLabs / GarbageMan
View on GitHub
GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
☆119Apr 8, 2023Updated 2 years ago
borzacchiello / seninja
View on GitHub
symbolic execution plugin for binary ninja
☆349Jan 26, 2026Updated last month
black-binary / sleigh
View on GitHub
A (SLEIGH) disassembler that supports multiple architectures
☆91Apr 30, 2022Updated 3 years ago
binarly-io / idapcode
View on GitHub
IDA plugin that displays the P-code for the current function
☆72Nov 18, 2025Updated 3 months ago
nccgroup / JA3_outlier
View on GitHub
Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
☆16Aug 10, 2022Updated 3 years ago
domenukk / dragondance
View on GitHub
Binary code coverage visualizer plugin for Ghidra - just without crashes on unknown insns
☆20Nov 2, 2024Updated last year
GhidraJupyter / ghidra-jupyter-kotlin
View on GitHub
☆128Jan 5, 2026Updated last month
d3v1l401 / FindCrypt-Ghidra
View on GitHub
IDA Pro's FindCrypt ported to Ghidra, with an updated and customizable signature database
☆546Jun 25, 2023Updated 2 years ago
medigateio / ida_medigate
View on GitHub
Medigate plugin for c++ reverse engineering and other utils
☆298May 25, 2023Updated 2 years ago