PyRank

Binary Analysis Python Packages

Python packages with the GitHub topic binary-analysis. Sorted by relevance, with stars and monthly downloads.
lief-project
lief

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

1.8M 5K 727
mandiant
flare-capa

The FLARE team's open-source tool to identify capabilities in executable files.

41K 6K 700
trailofbits
manticore

Symbolic execution tool

30K 4K 495
kenoph
nampa

Nampa - FLIRT for (binary) ninjas

27K 99 17
fkie-cad
fritap

Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.

8K 503 46
aboutcode-org
aboutcode-pipeline

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

8K 201 191
packing-box
peid

Python implementation of the Packed Executable iDentifier (PEiD)

6K 145 15
mrexodia
ida-pro-mcp

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

4K 9K 1K
aph10
bids-analyser

BIDS (Binary Identification of Dependencies with Search). The BIDS project will deliver tooling to analyse ELF binaries and extract key features and store these for indexing and searching using an inverted index. This project is sponsored by NLNET https://nlnet.nl/project/BIDS/.

4K 6 2
aboutcode-org
scancodeio

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

3K 201 191
jonathansalwan
triton-library

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

2K 4K 585
grammatech
gtirb

Intermediate Representation for Binary analysis and transformation

2K 358 38
packing-box
bintropy

Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

2K 49 4
avatartwo
avatar2

Python core of avatar²

1K 572 107
packing-box
reminder-detector

Implementation of the packing detection heuristic from the paper "Packed PE File Detection for Malware Forensics" of Han et al.

1K 2 0
packing-box
pypackerdetect

Re-implementation and packaging of PyPackerDetect

1K 28 4
mahmoudimus
sigmaker

Sigmaker is an IDA Pro 9.0+ cross-platform signature maker plugin that works on MacOS/Linux/Windows. It creates unique binary pattern signatures to identify specific functions or addresses within binaries, even after updates. It helps reverse engineers preserve their analysis work by generating resilient signatures that can quickly relocate important code locations in new binary versions.

1K 174 13
v-arapidis
openremap

Open-source ECU binary identification, diffing, and patching toolkit. Free alternative to the identification and binary-diff workflows locked inside WinOLS, ECM Titanium, and similar commercial tools.

857 4 0
grammatech
ddisasm

A fast and accurate disassembler

834 749 68
grammatech
gtirb-pprinter

Pretty printer from GTIRB to assembly code

783 50 13
patacca
flatline

Python wrapper around the Ghidra decompiler

769 1 0
mebeim
systrack

📡🐧 Linux kernel syscall implementation tracker

662 271 19
MrEx-Right
exploitlab

A modern, lightweight, and robust exploit development library for CTFs and vulnerability research.

619 - -
RevEng-AI
reait

RevEng.AI Toolkit and Python API

597 33 5