A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

The modern Java bytecode editor

Decompiler from Java bytecode to Java, used in IntelliJ IDEA.

Quickly find differences and similarities in disassembled code

iOS and macOS Decompiler

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

Procyon is a suite of Java metaprogramming tools, including a rich reflection API, a LINQ-inspired expression tree API for runtime code generation, and a Java decompiler.

MCP server for reverse engineering tasks in Ghidra 👩‍💻

Use angr in Ghidra

Ghidra extension for exporting relocatable object files

ShotDroid is a pentesting tool for android. There are 3 tools that have their respective functions, Get files from Android directory, internal and external storage, Android Keylogger + Reverse Shel…

dProtect is a Proguard-based obfuscator for Java and Kotlin

Analysis scripts for Ghidra to work with Android NDK libraries.

Integrate LLM models directly into Ghidra for automated code refactoring and analysis.

Ghidra .NET Native AOT Analyzer Plugin

Android reverse-engineering tool / smali editor

Burp Suite extension to decrypt/encrypt any encrypted traffic (AES/RSA/Encodings and more) with custom code in any language

Runtime memory analysis framework to identify Android malware

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

Quickly find differences and similarities in disassembled code

The PoC implementations for the Android code packing technique.