RetDec Logo

RetDec

0
Free
Visit Website

RetDec is a retargetable machine-code decompiler based on LLVM. The decompiler supports various file formats such as ELF, PE, Mach-O, COFF, AR, Intel HEX, and raw machine code, as well as architectures like Intel x86, ARM, MIPS, PIC32, PowerPC, x86-64, and ARM64. It offers features like static analysis, compiler and packer detection, instruction decoding, library code removal, debugging information extraction, instruction idiom reconstruction, and C++ class hierarchy detection.

FEATURES

ALTERNATIVES

A file analysis framework that automates the evaluation of files by running a suite of tools and aggregating the output.

A free web-based Yara debugger for security analysts to write hunting or detection rules with ease.

Holistic malware analysis platform with interactive sandbox, static analyzer, and emulation capabilities.

Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.

A web-based manager for Yara rules, allowing for storage, editing, and management of Yara rules.

A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.

BARF is an open source binary analysis framework for supporting various binary code analysis tasks in information security.

A collection of Yara rules for detecting malware evasion techniques