At GroundX.IO, over the years we founded or contributed to several software projects for binary analysis & reverse engineering. Some of them have been widely used in the security community, as follows.
-
OptiROP: Sematic-level Return-Oriented-Programming tool (PDF slides only, no public release)
-
Capstone: multi-arch disassembler framework
- Unicorn: multi-arch (instruction level) emulator framework framework
-
Keystone: multi-arch assembler
-
Keypatch: binary patching plugin for IDA
-
Skorpio: multi-parch dynamic instrumentation framework (PDF slides only, no public release)
-
Darko: multi-arch binary fuzzer (PDF slides only, no public release)
-
Qiling: Operating System level emulator
-
Demigod: OS kernel emulator
- Redback: high-level static binary injection
Follow us on Twitter at @groundx_io for more annoucement on future R&D works.