Best Krakatau Alternatives & Competitors in 2026

Nightwing DejaVM

Whole-system emulation environment for software dev, debugging, testing & security

Zenyard RE Agent

AI agent for in-depth binary analysis and reverse engineering assistance.

Frida

Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

steg86

steg86 is a steganographic tool that hides information within x86 and AMD64 binary executables without affecting their performance or file size.

REDLattice

AI-assisted vulnerability research and advanced offensive cyber tooling firm.

Two Six Technologies

R&D firm providing cyber defense & operational tech for DoD and DHS.

Boomerang Decompiler

An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.

Darkarmour

Darkarmour is an open-source Windows antivirus evasion framework that enables security professionals to bypass antivirus detection through customizable obfuscation and anti-analysis techniques.

PinCTF

PinCTF is a Python wrapper tool that uses Intel's Pin framework to instrument binaries and count instructions for reverse engineering analysis.

angr

angr is a Python-based binary analysis framework that provides disassembly, symbolic execution, and program analysis capabilities for cross-platform binary examination.

JD-GUI

JD-GUI is a graphical Java decompiler that reconstructs and displays source code from compiled ".class" files for reverse engineering and code analysis purposes.

Attify Offensive IoT Exploitation

Private training course for IoT device pentesting and exploitation

Red Balloon Security RASPUTIN

Automated hardware reversing platform using robotics for embedded device analysis

Shellcode2PE

A Python script that converts shellcode into a PE32 or PE32+ file.

Charlotte

Charlotte is an undetected C++ shellcode launcher for executing shellcode with stealth.

Dendrobate

A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.

Evilginx2

A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.

InvisibilityCloak

InvisibilityCloak is a proof-of-concept C# code obfuscation toolkit designed for red teaming and penetration testing to conceal post-exploitation tools from detection.

Macro_Pack

Macro_Pack automates the generation and obfuscation of Office documents and scripts for penetration testing and security assessments.

SharpSploit

A comprehensive .NET post-exploitation library designed for advanced security testing.

Skyhook

Skyhook is an HTTP-based file transfer tool that uses obfuscation techniques to evade detection by Intrusion Detection Systems.

smali/baksmali

Assembler/disassembler for the dex format used by Dalvik, Android's Java VM implementation.

Fridump

Fridump is an open source memory dumping tool that uses the Frida framework to extract accessible memory addresses from iOS, Android, and Windows applications for security testing and analysis.

PLCinject

PLCinject is a tool for injecting and patching blocks on PLCs with a call instruction.

Luyten

Java decompiler GUI tool for Procyon under Apache License.

Aptoide

Aptoide is an alternative Android application marketplace that enables APK downloads and metadata retrieval for mobile security research and analysis.

Fernflower

Fernflower is an analytical decompiler for Java with command-line options and support for external classes.

Project Zero iPhone Messaging Tools

A collection of security research tools from Google's Project Zero team for testing and analyzing iPhone messaging systems including SMS, iMessage, and IMAP protocols.

SchemDBG

A backend agnostic debugger frontend for debugging binaries without source code access.

GEF (pronounced ʤɛf - 'Jeff')

A set of commands for exploit developers and reverse-engineers to enhance GDB functionality.

Dwarf Debugger

A debugger tool for reverse engineers, crackers, and security analysts, with a user-friendly debugging UI and custom agent support.

ILSpy

ILSpy is the open-source .NET assembly browser and decompiler with various decompiler frontends and features.

PINCE

PINCE is a front-end/reverse engineering tool for the GNU Project Debugger (GDB), focused on games, with CheatEngine-like value type support and memory searching capabilities.

PHPsploit

A PHP-based command and control framework that maintains persistent web server access through polymorphic backdoors and HTTP header communication tunneling.

MagSpoof

MagSpoof is a hardware device that emulates magnetic stripe cards using electromagnetic fields for security research and educational purposes.

SigThief

SigThief extracts digital signatures from signed PE files and appends them to other files to create invalid signatures for testing Anti-Virus detection mechanisms.

Masochist

A framework for creating XNU based rootkits for OS X and iOS security research

InvalidSign

InvalidSign is a security research tool that bypasses endpoint solutions by obtaining valid signed files with different hashes to evade signature-based detection mechanisms.

ctf-tools

A collection of setup scripts for various security research tools with installers for tools like afl, angr, barf, and more.

GoatseLinux: It's Wide Open [tm] GSL

A VMware image for penetration testing purposes

xocopy

Copy executables with execute, but no read permission on Unix systems.

UPX

UPX is a high-performance executable packer for various executable formats.

Java Decompiler Online

Online Java decompiler tool with support for modern Java features.

Windows Oneliners for Remote Code Execution

Collection of Windows oneliners for executing arbitrary code and downloading remote payloads.

Puredns

A fast domain resolver and subdomain bruteforcing tool

Tugarecon

A subdomain enumeration tool for penetration testers and security researchers.

dref

A DNS rebinding exploitation framework

Can I take over XYZ?

A list of services and how to claim (sub)domains with dangling DNS records.