Loading...
Krakatau is a free Offensive Security tool. Security professionals most commonly compare it with . All 48 alternatives are matched by shared capabilities, tags, and NIST CSF 2.0 coverage.
A closer look at the 8 most relevant alternatives and competitors to Krakatau, including their key features and shared capabilities.
Whole-system emulation environment for software dev, debugging, testing & security
Shares 3 capabilities with Krakatau: Reverse Engineering, Binary Analysis, Security Research
AI agent for in-depth binary analysis and reverse engineering assistance.
Shares 3 capabilities with Krakatau: Reverse Engineering, Binary Analysis, Security Research
Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.
Shares 3 capabilities with Krakatau: Reverse Engineering, Binary Analysis, Security Research
steg86 is a steganographic tool that hides information within x86 and AMD64 binary executables without affecting their performance or file size.
Shares 3 capabilities with Krakatau: Reverse Engineering, Binary Analysis, Obfuscation
AI-assisted vulnerability research and advanced offensive cyber tooling firm.
R&D firm providing cyber defense & operational tech for DoD and DHS.
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
Darkarmour is an open-source Windows antivirus evasion framework that enables security professionals to bypass antivirus detection through customizable obfuscation and anti-analysis techniques.
Whole-system emulation environment for software dev, debugging, testing & security
AI agent for in-depth binary analysis and reverse engineering assistance.
Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.
steg86 is a steganographic tool that hides information within x86 and AMD64 binary executables without affecting their performance or file size.
AI-assisted vulnerability research and advanced offensive cyber tooling firm.
R&D firm providing cyber defense & operational tech for DoD and DHS.
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
Darkarmour is an open-source Windows antivirus evasion framework that enables security professionals to bypass antivirus detection through customizable obfuscation and anti-analysis techniques.
PinCTF is a Python wrapper tool that uses Intel's Pin framework to instrument binaries and count instructions for reverse engineering analysis.
angr is a Python-based binary analysis framework that provides disassembly, symbolic execution, and program analysis capabilities for cross-platform binary examination.
JD-GUI is a graphical Java decompiler that reconstructs and displays source code from compiled ".class" files for reverse engineering and code analysis purposes.
Private training course for IoT device pentesting and exploitation
Automated hardware reversing platform using robotics for embedded device analysis
A Python script that converts shellcode into a PE32 or PE32+ file.
Charlotte is an undetected C++ shellcode launcher for executing shellcode with stealth.
A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
InvisibilityCloak is a proof-of-concept C# code obfuscation toolkit designed for red teaming and penetration testing to conceal post-exploitation tools from detection.
Macro_Pack automates the generation and obfuscation of Office documents and scripts for penetration testing and security assessments.
A comprehensive .NET post-exploitation library designed for advanced security testing.
Skyhook is an HTTP-based file transfer tool that uses obfuscation techniques to evade detection by Intrusion Detection Systems.
Assembler/disassembler for the dex format used by Dalvik, Android's Java VM implementation.
Fridump is an open source memory dumping tool that uses the Frida framework to extract accessible memory addresses from iOS, Android, and Windows applications for security testing and analysis.
PLCinject is a tool for injecting and patching blocks on PLCs with a call instruction.
Aptoide is an alternative Android application marketplace that enables APK downloads and metadata retrieval for mobile security research and analysis.
Fernflower is an analytical decompiler for Java with command-line options and support for external classes.
A collection of security research tools from Google's Project Zero team for testing and analyzing iPhone messaging systems including SMS, iMessage, and IMAP protocols.
A backend agnostic debugger frontend for debugging binaries without source code access.
A set of commands for exploit developers and reverse-engineers to enhance GDB functionality.
A debugger tool for reverse engineers, crackers, and security analysts, with a user-friendly debugging UI and custom agent support.
ILSpy is the open-source .NET assembly browser and decompiler with various decompiler frontends and features.
PINCE is a front-end/reverse engineering tool for the GNU Project Debugger (GDB), focused on games, with CheatEngine-like value type support and memory searching capabilities.
A PHP-based command and control framework that maintains persistent web server access through polymorphic backdoors and HTTP header communication tunneling.
MagSpoof is a hardware device that emulates magnetic stripe cards using electromagnetic fields for security research and educational purposes.
SigThief extracts digital signatures from signed PE files and appends them to other files to create invalid signatures for testing Anti-Virus detection mechanisms.
A framework for creating XNU based rootkits for OS X and iOS security research
InvalidSign is a security research tool that bypasses endpoint solutions by obtaining valid signed files with different hashes to evade signature-based detection mechanisms.
A collection of setup scripts for various security research tools with installers for tools like afl, angr, barf, and more.
A VMware image for penetration testing purposes
UPX is a high-performance executable packer for various executable formats.
Online Java decompiler tool with support for modern Java features.
Collection of Windows oneliners for executing arbitrary code and downloading remote payloads.
A subdomain enumeration tool for penetration testers and security researchers.
A list of services and how to claim (sub)domains with dangling DNS records.
Common questions security professionals ask when evaluating alternatives and competitors to Krakatau.
The most popular alternatives to Krakatau include Nightwing DejaVM, Zenyard RE Agent, Frida, steg86, and REDLattice. These Offensive Security tools offer similar capabilities and are frequently compared by security professionals evaluating their options.
![GoatseLinux: It's Wide Open [tm] GSL Logo](/_next/image?url=https%3A%2F%2Fcxjzowvlzcyfzumo.public.blob.vercel-storage.com%2Fstatic%2Fdefault-tool-logo-ro06CVHpq5icWFRn4R55i5rA1Ct6ue.webp&w=1920&q=90){kind=logo}
