search

General

Statically Analyze Code

hashtag
BinNavi

IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.

Website: https://github.com/google/binnaviarrow-up-right Author: Google/Zynamics License: Apache License 2.0: https://github.com/google/binnavi/blob/master/LICENSEarrow-up-right Notes: Only available on older version of REMnux based on Ubuntu 20.04 (Focal). binnavi State File: remnux.tools.binnaviarrow-up-right

hashtag
Ghidra

Software reverse engineering tool suite.

Website: https://ghidra-sre.orgarrow-up-right Author: National Security Agency License: Apache License 2.0: https://github.com/NationalSecurityAgency/ghidra/blob/master/LICENSEarrow-up-right Notes: Close CodeBrowser before exiting Ghidra to prevent Ghidra from freezing when you reopen the tool (it's a Ghidra bug). State File: remnux.packages.ghidraarrow-up-right

hashtag
Cutter

Reverse engineering platform powered by Rizin.

Website: https://cutter.rearrow-up-right Author: https://github.com/rizinorg/cutter/graphs/contributorsarrow-up-right License: GNU General Public License (GPL) v3.0: https://github.com/rizinorg/cutter/blob/master/COPYINGarrow-up-right Notes: If you're planning to use Cutter when running REMnux as a Docker container, you'll need to include the --privileged parameter when invoking the REMnux distro image in Docker. State File: remnux.tools.cutterarrow-up-right

hashtag
Detect-It-Easy

Determine types of files and examine file properties.

Website: https://github.com/horsicq/Detect-It-Easyarrow-up-right Author: hors: https://twitter.com/horsicqarrow-up-right License: MIT License: https://github.com/horsicq/Detect-It-Easy/blob/master/LICENSEarrow-up-right Notes: GUI tool: die, command-line tool: diec. State File: remnux.tools.detect-it-easyarrow-up-right

hashtag
Qiling

Emulate code execution of PE files, shellcode, etc. for a variety of OS and hardware platforms.

Website: https://www.qiling.ioarrow-up-right Author: https://github.com/qilingframework/qiling/blob/master/AUTHORS.TXTarrow-up-right License: GNU General Public License (GPL) v2.0: https://github.com/qilingframework/qiling/blob/master/COPYINGarrow-up-right Notes: Use qltool to analyze artifacts. Before analyzing Windows artifacts, gather Windows DLLs and other components using the dllscollector.batarrow-up-right script. Read the tool's documentationarrow-up-right to get started. State File: remnux.python3-packages.qilingarrow-up-right

hashtag
Vivisect

Statically examine and emulate binary files.

Website: https://github.com/vivisect/vivisectarrow-up-right Author: invisigoth: [email protected], installable vivisect module by Willi Ballenthin: https://twitter.com/williballenthinarrow-up-right License: Apache License 2.0: https://github.com/vivisect/vivisect/blob/master/LICENSE.txtarrow-up-right Notes: vivbin, vdbbin State File: remnux.python3-packages.vivisectarrow-up-right

hashtag
objdump

Disassemble binary files.

Website: https://en.wikipedia.org/wiki/Objdumparrow-up-right Author: Unknown License: GNU General Public License (GPL) State File: remnux.packages.binutilsarrow-up-right

PreviousStatically Analyze CodeNextUnpacking

Last updated