dynamic-analysis

There are 61 repositories under dynamic-analysis topic.

• x64dbg

  x64dbg / x64dbg

  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

  debuggerwindowsx64disassemblerreverse-engineeringsecurityx86x86-64malware-analysissecurity-toolsbinary-analysisctfdynamic-analysisexploit-developmenthackingoscpdebuggingprogram-analysiscybersecurityoffensive-security
  Language:C++ 47166
• trufflehog

  trufflesecurity / trufflehog

  Find, verify, and analyze leaked credentials

  credentialsdevsecopsdynamic-analysisprecommitscanningsecretsecret-managementsecretssecuritysecurity-toolstrufflehogverification
  Language:Go 23104
• Mobile-Security-Framework-MobSF

  MobSF / Mobile-Security-Framework-MobSF

  Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

  android-securityapi-testingapkcwedevsecopsdynamic-analysisios-securitymalware-analysismastgmasvsmobile-securitymobsfmstgowasprestruntime-securitystatic-analysisweb-securitywindows-mobile-security
  Language:JavaScript 19751

• rshipp / awesome-malware-analysis

  Defund the Police.

  analysis-frameworkautomated-analysisawesomeawesome-listchinesechinese-translationdomain-analysisdrop-icedynamic-analysislistmalware-analysismalware-collectionmalware-researchmalware-samplesnetwork-trafficstatic-analysisthreat-intelligencethreat-sharingthreatintel
  13142

• OWASP / mastg

  The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

  mobile-apppentestingandroid-applicationios-appruntime-analysisnetwork-analysisstatic-analysisreverse-engineeringdynamic-analysismobile-securityandroidioshackingreverse-enginneringmstgtesting-cryptographycompliancy-checklistmastmastg
  Language:Python 12541
• lamda

  firerpa / lamda

  The most powerful Android RPA agent framework, next generation of mobile automation robots.

  adbagentsaiandroidappiumautomationdynamic-analysisfridamagiskmcpmcp-servermobile-securitypentestingremote-controlreverse-engineeringsecurityuiautomationuiautomator2workflowxposed
  Language:Python 7376

• tanprathan / MobileApp-Pentest-Cheatsheet

  The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

  mobile-apppentestingandroid-applicationios-appruntime-analysisnetwork-analysisstatic-analysisreverse-engineersdynamic-analysis
  5053

• JonathanSalwan / Triton

  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

  binary-analysisbinary-translationdeobfuscationdynamic-analysisemulatorinstruction-semanticslifterprogram-analysisreverse-engineeringsymbolic-executiontaint-analysis
  Language:C++ 3910
• binsider

  orhun / binsider

  Analyze ELF binaries like a boss 😼🕵️‍♂️

  analysisbinarybinary-datadynamic-analysiselfhex-editorhexdumplinuxratatuireverse-engineeringruststatic-analysisterminalterminal-uiterminal-user-interfacetui
  Language:Rust 3528

• dweinstein / awesome-frida

  Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)

  androidawesomedynamic-analysisfridahookingiosr2frida
  3351

• ac-pm / Inspeckage

  Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

  android-applicationsecurity-analysisdynamic-analysisxposed
  Language:Java 2922

• panda-re / panda

  Platform for Architecture-Neutral Dynamic Analysis

  dynamic-analysispandarepypandaqemureverse-engineering
  Language:C 2678

• iddoeldor / frida-snippets

  Hand-crafted Frida examples

  fridahookingjavajava-native-interfacemobile-securityreverse-engineeringobjective-ciosandroidinstrumentationruntime-analysisdynamic-analysisarm64aarch64
  Language:JavaScript 2490

• BinaryAnalysisPlatform / bap

  Binary Analysis Platform

  armbapbinary-analysisdisassemblerdynamic-analysisemulatorinstruction-semanticsliftermipsocamlpowerpcprogram-analysisprogram-verificationreverse-engineeringsecuritystatic-analysissymbolic-executiontaint-analysisx86
  Language:OCaml 2184
• medusa

  Ch0pin / medusa

  Mobile Edge-Dynamic Unified Security Analysis

  androidandroid-malwaredynamic-analysisfridafrida-scriptsfrida-snippetsiosios-reverse-engineeringmalwaremedusapenetration-testingpentest
  Language:JavaScript 2107
• mutant

  mbj / mutant

  Automated code reviews via mutation testing - semantic code coverage.

  mutation-testingrubycoveragerspecminitestcode-reviewcode-quality-analyzermutantuncovered-semanticsstatic-analysisdynamic-analysisstatic-anaysis
  Language:Ruby 2042

• oddcod3 / Phantom-Evasion

  Python antivirus evasion tool

  antivirusevasiondynamic-analysisobfuscatorapkinjectionpayloadmsfvenom
  Language:Python 1445

• ksluckow / awesome-symbolic-execution

  A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.

  awesome-listdynamic-analysisdynamic-symbolic-executionsymbolic-execution
  1444

• nowsecure / r2frida

  Radare2 and Frida better together.

  android-securitydynamic-analysisfridaios-securityradare2static-analysis
  Language:TypeScript 1336
• CrossHair

  pschanely / CrossHair

  An analysis tool for Python that blurs the line between testing and type systems.

  pythonstatic-analysistesting-frameworksymbolic-executiontype-systemsfuzzingcontractsdynamic-analysistestingz3concolic-executionhacktoberfest
  Language:Python 1222
• dynamic-analysis

  analysis-tools-dev / dynamic-analysis

  ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.

  dynamicanalysisdynamic-code-analysisdynamic-analysisdast
  Language:Markdown 1044

• nowsecure / fsmon

  Filesystem monitor tool for Linux/Android iOS/macOS

  androiddynamic-analysisfilesystemlinuxnowsecureosxtracing
  Language:C 977
• enlightn

  enlightn / enlightn

  Your performance & security consultant, an artisan command away.

  laravelstatic-analysisdynamic-analysisperformancesecurityauditcode-qualitycode-review
  Language:PHP 974

• saferwall / saferwall

  :cloud: Collaborative Malware Analysis Platform at Scale

  antivirusdynamic-analysismalwaremalware-analysismultiavportable-executablesandboxsecurity-toolsstatic-analysis
  Language:Go 763

• Tencent / HaboMalHunter

  HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

  malware-analysisdynamic-analysissecuritylinuxstatic-analysiself
  Language:Python 744

• olacabs / jackhammer

  Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

  security-vulnerability-assessmentvulnerability-managementstatic-code-analysismobile-securitywebappsecwordpress-securitynetwork-securitysecurity-scannersecuritydynamic-analysissource-code-analysispenetration-testingpenetration-testing-frameworkapplication-securityvulnerability-scannersvulnerability-scanningvulnerability-assessment
  Language:Java 739

• ossillate-inc / packj

  Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

  malwarenpmpypipythonsecuritysecurity-auditsecurity-toolsvulnerabilityrubygemssupply-chain-securitymalware-analysisstatic-analysisvulnerability-scannersdynamic-analysissandboxingdevopsdeveloper-toolsdevops-toolsdevsecopssupply-chain
  Language:Python 678

• mohitmishra786 / reversingBits

  A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse engineers, and low-level programmers.

  assemblybinary-analysisbinary-exploitationctf-toolsdebuggingdisassemblymalware-analysispenetration-testingprogram-analysisreverse-engineeringreversingsecurity-toolssystem-securityvulnerability-researchx86-assemblycybersecuritycybersecurity-toolsdynamic-analysisstatic-analysisx86-64
  Language:HTML 594

• mattzeunert / FromJS

  See where each character on the screen came from in code.

  dataflow-analysisdebuggingdynamic-analysis
  Language:JavaScript 539

• lepotekil / MsfMania

  Python AV Evasion Tools

  shellcode-injectioncompressiondockeredr-evasionencodingencryptionobfuscationpentestingpolymorphismpost-exploitationpython3red-teamingpe-formatcross-platformcrosscompilermodularmonolith
  Language:Python 521

• enzet / symbolic-execution

  History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)

  concolicconcolic-executiondynamic-analysisdynamic-symbolic-executionhistoryprogram-analysissolvingsymbolic-executiontimeline
  Language:Kotlin 493

• droidefense / engine

  Droidefense: Advance Android Malware Analysis Framework

  androidsecurityreverseengineermalwaremalware-analysisdalvikopcodestrojanransomwaredroidefenseenginestatic-analysisstatic-code-analysisdynamic-analysisdynamic-code-analysis
  Language:Java 477

• H4NM / WhoYouCalling

  Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

  dynamic-analysisgame-hackingmalware-analysismalware-researchnetwork-analysisetwfull-packet-capturewindows-event-tracingsysadmin-tool
  Language:C# 445

• danleh / wasabi

  A dynamic analysis framework for WebAssembly programs.

  dynamic-analysisjavascriptwasmwebassembly
  Language:WebAssembly 384

• decal / werdlists

  :keyboard: Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

  attack-modelingthreat-huntingcomputer-sciencepassword-crackerhttp-headershtml-entitiesenvironment-variablesnetwork-discoverysecurity-toolsdictionary-searchawesome-listpenetration-testingtest-automationexploit-developmentinformation-securityopen-sourcetest-datadynamic-analysisregular-expressiondomain-name
  Language:HTML 359

• ispras / casr

  Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.

  coredumpcrashcrash-reportingdynamic-analysisfuzzinggdbsdltriageexploitableapportaflrustaflplusplussecuritytestingappsecdevsecopsssdlcvulnerability-managementlibfuzzer
  Language:Rust 334