dynamic-analysis

There are 57 repositories under dynamic-analysis topic.

• x64dbg

  x64dbg / x64dbg

  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

  debuggerwindowsx64disassemblerreverse-engineeringsecurityx86x86-64malware-analysissecurity-toolsbinary-analysisctfdynamic-analysisexploit-developmenthackingoscpdebuggingprogram-analysiscybersecurityoffensive-security
  Language:C++ 45591
• trufflehog

  trufflesecurity / trufflehog

  Find, verify, and analyze leaked credentials

  credentialsdevsecopsdynamic-analysishacktoberfestprecommitscanningsecretsecret-managementsecretssecuritysecurity-toolstrufflehogverification
  Language:Go 18396
• Mobile-Security-Framework-MobSF

  MobSF / Mobile-Security-Framework-MobSF

  Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

  android-securityapi-testingapkcwedevsecopsdynamic-analysisios-securitymalware-analysismastgmasvsmobile-securitymobsfmstgowasprestruntime-securitystatic-analysisweb-securitywindows-mobile-security
  Language:JavaScript 18215

• rshipp / awesome-malware-analysis

  Defund the Police.

  analysis-frameworkautomated-analysisawesomeawesome-listchinesechinese-translationdomain-analysisdrop-icedynamic-analysislistmalware-analysismalware-collectionmalware-researchmalware-samplesnetwork-trafficstatic-analysisthreat-intelligencethreat-sharingthreatintel
  12342

• OWASP / owasp-mastg

  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  androidandroid-applicationcompliancy-checklistdynamic-analysishackingiosios-appmastmastgmobile-appmobile-securitymstgnetwork-analysispentestingreverse-engineeringreverse-enginneringruntime-analysisstatic-analysistesting-cryptography
  Language:Python 12041

• tanprathan / MobileApp-Pentest-Cheatsheet

  The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

  android-applicationdynamic-analysisios-appmobile-appnetwork-analysispentestingreverse-engineersruntime-analysisstatic-analysis
  4825

• JonathanSalwan / Triton

  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

  reverse-engineeringsymbolic-executionbinary-analysisprogram-analysistaint-analysisbinary-translationdeobfuscationinstruction-semanticslifterdynamic-analysisemulator
  Language:C++ 3646

• dweinstein / awesome-frida

  Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)

  androidawesomedynamic-analysisfridahookingiosr2frida
  3174
• binsider

  orhun / binsider

  Analyze ELF binaries like a boss 😼🕵️‍♂️

  analysisbinarybinary-datadynamic-analysiselfhex-editorhexdumplinuxratatuireverse-engineeringruststatic-analysisterminalterminal-uiterminal-user-interfacetui
  Language:Rust 3054

• ac-pm / Inspeckage

  Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

  android-applicationdynamic-analysissecurity-analysisxposed
  Language:Java 2861

• panda-re / panda

  Platform for Architecture-Neutral Dynamic Analysis

  dynamic-analysispandarepypandaqemureverse-engineering
  Language:C 2559

• iddoeldor / frida-snippets

  Hand-crafted Frida examples

  fridahookingjavajava-native-interfacemobile-securityreverse-engineeringobjective-ciosandroidinstrumentationruntime-analysisdynamic-analysisarm64aarch64
  Language:JavaScript 2373

• BinaryAnalysisPlatform / bap

  Binary Analysis Platform

  binary-analysisreverse-engineeringprogram-analysisstatic-analysisdynamic-analysisprogram-verificationinstruction-semanticstaint-analysisdisassemblerlifterocamlarmx86securityemulatorbappowerpcmipssymbolic-execution
  Language:OCaml 2105
• mutant

  mbj / mutant

  Automated code reviews via mutation testing - semantic code coverage.

  code-quality-analyzercode-reviewcoveragedynamic-analysisminitestmutantmutation-testingrspecrubystatic-analysisstatic-anaysisuncovered-semantics
  Language:Ruby 1967
• medusa

  Ch0pin / medusa

  Binary instrumentation framework based on FRIDA

  androidandroid-malwaredynamic-analysisfridafrida-scriptsfrida-snippetsmalwaremedusapenetration-testingpentest
  Language:Python 1796

• oddcod3 / Phantom-Evasion

  Python antivirus evasion tool

  antivirusevasiondynamic-analysisobfuscatorapkinjectionpayloadmsfvenom
  Language:Python 1404

• ksluckow / awesome-symbolic-execution

  A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.

  symbolic-executiondynamic-analysisdynamic-symbolic-executionawesome-list
  1364

• nowsecure / r2frida

  Radare2 and Frida better together.

  fridaradare2ios-securityandroid-securitystatic-analysisdynamic-analysis
  Language:TypeScript 1237
• CrossHair

  pschanely / CrossHair

  An analysis tool for Python that blurs the line between testing and type systems.

  pythonstatic-analysistesting-frameworksymbolic-executiontype-systemsfuzzingcontractsdynamic-analysistestingz3concolic-executionhacktoberfest
  Language:Python 1086
• dynamic-analysis

  analysis-tools-dev / dynamic-analysis

  ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.

  analysisdastdynamicdynamic-analysisdynamic-code-analysis
  Language:Markdown 980
• enlightn

  enlightn / enlightn

  Your performance & security consultant, an artisan command away.

  laravelstatic-analysisdynamic-analysisperformancesecurityauditcode-qualitycode-review
  Language:PHP 942

• nowsecure / fsmon

  monitor filesystem on iOS / OS X / Android / FirefoxOS / Linux

  androiddynamic-analysisfilesystemlinuxnowsecureosxtracing
  Language:C 939

• saferwall / saferwall

  :cloud: Collaborative Malware Analysis Platform at Scale

  antivirusdynamic-analysismalwaremalware-analysismultiavportable-executablesandboxsecurity-toolsstatic-analysis
  Language:Go 740

• Tencent / HaboMalHunter

  HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

  malware-analysisdynamic-analysissecuritylinuxstatic-analysiself
  Language:Python 735

• olacabs / jackhammer

  Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

  application-securitydynamic-analysismobile-securitynetwork-securitypenetration-testingpenetration-testing-frameworksecuritysecurity-scannersecurity-vulnerability-assessmentsource-code-analysisstatic-code-analysisvulnerability-assessmentvulnerability-managementvulnerability-scannersvulnerability-scanningwebappsecwordpress-security
  Language:Java 727

• ossillate-inc / packj

  Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

  malwarenpmpypipythonsecuritysecurity-auditsecurity-toolsvulnerabilityrubygemssupply-chain-securitymalware-analysisstatic-analysisvulnerability-scannersdynamic-analysissandboxingdevopsdeveloper-toolsdevops-toolsdevsecopssupply-chain
  Language:Python 661

• mattzeunert / FromJS

  See where each character on the screen came from in code.

  debuggingdynamic-analysisdataflow-analysis
  Language:JavaScript 539

• lepotekil / MsfMania

  Python AV Evasion Tools

  fudevasionpe-loaderpythondynamic-analysisbypass-antivirusantivirus-evasionmetasploitmsfvenominjectionmalwarebackdoorundetectablemeterpreterreverse-shellshellcode-injectionprivilege-escalationcobalt-strikeredteampentest
  Language:Python 501

• enzet / symbolic-execution

  History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)

  dynamic-symbolic-executionsymbolic-executionhistorytimelineconcolic-executionconcolicprogram-analysisdynamic-analysissolving
  Language:Kotlin 490

• droidefense / engine

  Droidefense: Advance Android Malware Analysis Framework

  androidsecurityreverseengineermalwaremalware-analysisdalvikopcodestrojanransomwaredroidefenseenginestatic-analysisstatic-code-analysisdynamic-analysisdynamic-code-analysis
  Language:Java 478

• mohitmishra786 / reversingBits

  A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse engineers, and low-level programmers.

  assemblybinary-analysisbinary-exploitationctf-toolscybersecuritycybersecurity-toolsdebuggingdisassemblydynamic-analysismalware-analysispenetration-testingprogram-analysisreverse-engineeringreversingsecurity-toolsstatic-analysissystem-securityvulnerability-researchx86-64x86-assembly
  Language:HTML 463

• danleh / wasabi

  A dynamic analysis framework for WebAssembly programs.

  dynamic-analysiswebassemblywasmjavascript
  Language:WebAssembly 369

• H4NM / WhoYouCalling

  Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

  dynamic-analysisgame-hackingmalware-analysismalware-researchnetwork-analysisetwfull-packet-capturewindows-event-tracingsysadmin-tool
  Language:C# 369

• decal / werdlists

  :keyboard: Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

  attack-modelingthreat-huntingcomputer-sciencepassword-crackerhttp-headershtml-entitiesenvironment-variablesnetwork-discoverysecurity-toolsdictionary-searchawesome-listpenetration-testingtest-automationexploit-developmentinformation-securityopen-sourcetest-datadynamic-analysisregular-expressiondomain-name
  Language:HTML 336

• 0xor0ne / debugoff

  Linux anti-debugging and anti-analysis rust library

  debugginganti-analysisanti-debuggingdynamic-analysisobfuscationruststatic-analysisantianalysisantidebugantidebugging
  Language:Rust 316

• ispras / casr

  Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.

  coredumpcrashcrash-reportingdynamic-analysisfuzzinggdbsdltriageexploitableapportaflrustaflplusplussecuritytestingappsecdevsecopsssdlcvulnerability-managementlibfuzzer
  Language:Rust 305