Penetration testing commands for Reverse Engineering

Reverse engineering focuses on dissecting software, firmware, or systems to understand their inner workings, often revealing vulnerabilities or undocumented features.

NameDescriptionPrice
androguardTool for reverse engineering and malware analysis of Android applicationsFree
angrPlatform-agnostic binary analysis frameworkFree
ANY RUNOnline virtual machine for malware hunting, sandbox with interactive access, real-time data-flowFree
Apk2GoldAndroid decompiler (wrapper for apktool, dex2jar, and jd-gui)Free
ApktoolAndroid disassembler and rebuilderFree
arm_nowTool that allows instant setup of virtual machines on various architectures for reverse, exploit, fuzzing and programming purposeFree
BarfBinary Analysis and Reverse engineering FrameworkFree
bearparserPE parsing library (from PE-bear)Free
Binary NinjaCrossplatform binary analysis frameworkPaid
binbloom Raw binary firmware analysis software; tries to determine the firmware loading addressFree
binutilsGNU collection of binary toolsFree
binwalkAnalyze, reverse engineer and extract firmware images (and other files, also usefull for Digital Forensics)Free
boomerangx86 binaries to C decompilerFree
CAPEv2Malware sandbox derived from Cuckoo with the goal of adding automated malware unpacking, config and payload extractionFree
CerberusUnstrip Rust and Go binaries (ELF and PE) for static analysis; based on hashing and scoring systems, it can retrieve lots of symbol namesFree
CFF ExplorerPE EditorFree
ctf_importLibrary to run basic functions from stripped binariesFree
Cuckoo 3Python 3 port of Cuckoo, automated malware analysis systemFree
CutterQt and C++ GUI for radare2Free
DbgShellFront-end for the Windows debugger engineFree
de4dot.NET deobfuscator and unpackerFree
Decompiler ExplorerMulti-decompiler engine; supports angr, BinaryNinja, Boomerang, dewolf, Ghidra, Hex-Rays, RecStudio, Reko, Relyze, RetDec, SnowmanFree
Decompiler.comC#, Python, Android and Java online decompilerFree
Defuse online disassemblerOnline x86 (32/64 bits) assembler and disassemblerFree
DexcaliburAndroid reverse engineering platform focus on instrumentation automation (decompile/disass intercepted bytecode at runtime, write hook code, search interesting patternPaid
dnSpy.NET assembly debugger, decompiler and editorFree
dnSpyEx.NET assembly debugger, decompiler and editor; fork of dnSpyFree
dotPeek.NET decompiler and assembly browserFree
DRAKVUF SandboxAutomated black-box hypervisor-level malware analysis systemFree
DroidefenseAndroid apps/malware analysis/reversing toolFree
DroidGuard VM SamplesDifferent versions of the DroidGuard VM as well as different version of the bytecode running through this VMFree
edbCross platform AArch32/x86/x86-64 debuggerFree
EMBASecurity analyzer for firmware of embedded devicesFree
FlareProcesses SWF and extract scripts from itFree
FlasmDisassembler tool for SWF bytecodeFree
Flutter SpyExplore, analyze, and gain valuable data & insights from reverse engineered Flutter appsFree
FridaDynamic code instrumentation toolkitFree
GDBGNU debuggerFree
GhidraSoftware reverse engineering (SRE) suite of tools: disassembly, assembly, decompilation, graphing, scripting, etc.Free
Hiewx86_64 disassembler for multiple formatsPaid
HonggfuzzSecurity oriented software fuzzer; supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)Free
HopperDisassembler, decompiler and debuggerPaid
IDA ProDisassembler and debuggerPaid
ILSpy.NET assembly browser and decompiler to C#Free
ImHexHexadecimal editor tailored for reverse engineers; byte patching, data import / export, data inspector, huge file support, file hashing, disassembler for many architectures, data analyzerFree
ImmunityDbgWindows debugger with Python scripting supportFree
jadxDEX to Java decompilerFree
Java Decompilers.JAR and .Class to Java decompilerFree
JD-GUIGUI tool decompiling JAVAFree
JEBDisassembler, decompiler and debuggerPaid
JPEXS Free Flash DecompilerA.k.a ffdec, flash SWF decompilerFree
JSDetoxJavascript deobfustcatorFree
Kaitai StructDeclarative language to generate binary data parsers in various languagesFree
KemonmacOS kernel pre and post callback-based frameworkFree
KrakatauJava decompiler, assembler, and disassemblerFree
lddTool that print shared library dependenciesFree
MedusaInteractive multi-architecture and multi-formats disassembler running on Windows and LinuxFree
MetasmAssembler, disassembler, compiler and debuggerFree
netzobProtocol reverse engineering, modeling and fuzzingFree
ODAAdvanced multi-architecture online disassembler supporting a lot of architectures and object file formatsFree
OllyDbgWindows debuggerFree
PANDAPlatform for architecture-neutral dynamic analysisFree
PASTISFuzzing framework aiming at combining various software testing techniques within the same workflow to perform collaborative fuzzing also called ensemble fuzzing; supported engines are Honggfuzz, AFL++, TritonDSEFree
PE Explorer DisassemblerWindows disassemblerPaid
PE InsiderPE viewer, closed source and windows onlyFree
Pe-bearPE reverse tool: recognizes packers, fast disassembler, visualization of sections layout, selective comparing of two chosen PE filesFree
Plasmax86/ARM/MIPS interactive disassemblerFree
QiraTimeless debugger (QIRA = QEMU Interactive Runtime Analyser)Free
RABCDAsmActionScript disassemblerFree
radare2Crossplatform binary analysis framework, disassembler, decompiler and debugger, support collaborative analysisFree
rbkbRuby BlackBag; a miscellaneous collection of command-line tools and ruby library helpers related to pen-testing and reversingFree
RecafEdit Java bytecode, insert single line Java statements into the bytecode, recompile decompiled codeFree
ReFlutterFlutter reverse engineering framework: allow traffic monitoring and interception, print classes and functions, display absolute code offset for functions, etc.Free
Relyzex86 and ARM graphical interactive disassembler with Ruby plugin frameworkPaid
RetDecMulti file formats and architectures machine-code decompilerFree
sandsifterx86 processor fuzzerFree
SnowmanNative code to C/C++ decompiler, supporting x86, AMD64, and ARM architectures, exists as standalone app or as a plug-inFree
straceDebugger for LinuxFree
SwftoolsCollection of utilities to work with SWF filesFree
theZooRepository of live malwares for malware analysisFree
TritonDynamic binary analysis framework, automate reverse engineeringFree
TritonDSETriton-based DSE library with loading and exploration capabilitiesFree
TTD-BindingsBindings for Microsoft WinDBG Time Travel Debugging (TTD)Free
TweezerIdentifying function names in stripped binaries and un-named functionsFree
UglifyJS2JavaScript obfuscator or beautifier toolkitFree
uncompylePython 2.7 binaries (.pyc) decompilerFree
uncompyle6Python 1.5, 2.1 to 2.7, 3.1 to 3.6 binaries (.pyc) decompilerFree
VaisSWF vulnerability and information scannerFree
WinDbgWindows debuggerFree
x64dbgWindows debuggerFree
XenoScanProcesses memory scannerFree
XoriDisassembly and static analysis library that provides triage analysis dataFree
xxxswfSmall script for carving, scanning, compressing, decompressing and analyzing SWF filesFree