A curated directory of decades of DEF CON talks, CTF writeups, and real-world case studies on online game hacking layers from memory to network and anti-cheat bypasses.
jadx-ai-mcp combines a JADX decompiler plugin with a Python MCP server, enabling AI assistants like Claude to perform live reverse engineering on Android APKs with 30+ interactive tools.
OpenDrop is a Python CLI tool that reverse-engineers Apple’s AirDrop protocol, enabling file sharing with iOS/macOS devices over AWDL. It supports sending files, URLs, and contacts-only mode on macOS/Linux.
Asset Catalog Tinkerer is a macOS app that parses Apple’s proprietary .car files, letting developers browse and extract images from compiled asset catalogs with a native Swift GUI.
TagTinker is a Flipper Zero app that reverse engineers infrared electronic shelf labels, enabling custom image transmission via a zero-allocation RLE streaming IR engine. It includes a browser-based image preprocessing tool and NFC/WiFi extensions.
Theseus recreates the original Xbox dashboard in C++, delivering a faithful console experience on modded Xbox and a modern 3D launcher on desktop with one codebase.
The ASRock AMD BC-250 mining board uses PS5-derived silicon with 6 Zen 2 cores and a 24CU RDNA2 GPU sharing 16GB GDDR6. This repo documents community firmware mods and Linux GPU support.
Explore capa, a Python tool by Mandiant that analyzes binaries to identify capabilities via rule matching, with detailed evidence tracing for malware analysts.
Open-docs reverse-engineers major AI CLI coding agents to reveal undocumented internals, security models, and integration patterns. A deep dive for developers building on these agents.
mitmproxy2swagger automates REST API reverse-engineering by converting mitmproxy flows or HAR files into OpenAPI 3.0 specs using a two-pass workflow that balances automation and manual curation.
FilmKit manages Fujifilm X-series camera presets and RAW conversion in-browser via WebUSB, using reverse-engineered PTP protocols to offload processing to the camera. Tested on X100VI.
Il2CppDumper-GUI automates IL2CPP metadata extraction from Unity game archives on Windows, supporting multiple package formats for streamlined reverse engineering.
Polypyus bypasses disassembler function detection using binary-only fuzzy matching to locate functions in raw ARM Thumb2 firmware, improving reverse engineering workflows.
pymobiledevice3 reimplements the entire iOS device communication stack in pure Python, replacing C-based tools. It supports iOS 17+ tunnel transport and offers a CLI and Python API for device management.
Usage4Claude is a Swift macOS menu bar app that monitors Claude and Codex usage quotas in real time by scraping the usage endpoint via session cookies, with secure Keychain storage and multi-account support.
WindowsAPIAbuseAtlas catalogs Windows API abuse by malware with reverse engineering notes and YARA rules, aiding threat hunters and malware analysts in detection.
ImHex offers a custom C++-like pattern language for declarative binary parsing, multi-architecture disassembly, and GPU-accelerated hex editing, tailored for reverse engineering.
Explore Mandiant’s FLARE Learning Hub, an open educational platform for malware analysis and reverse engineering with a standout Go reverse engineering reference targeting Windows AMD64.
Explore ipsw, a Go CLI tool for iOS/macOS firmware research featuring Mach-O analysis and AI-powered decompilation with Claude, OpenAI, and Gemini integrations.
OpenPods is an Android app that locally monitors AirPods and Beats battery levels by decoding Apple’s proprietary Bluetooth Low Energy advertisements. It supports all AirPods and Beats models without cloud dependencies.
