ReVens: Reverse Engineering Toolkit AIO

ReVens is a Windows-based and AI-powered Reverse Engineering Toolkit "All-In-One", built for security purposes (malware analysis, penetration testing) and educational use only. It serves as a comprehensive package manager for reverse engineering tools.

[!Note] I made ReVens AIO software to share personal experience in RE since 2008.
RE tools are priceless, especially the legacy ones. They deserve a nice place where they can live in peace.
You can still find legacy items on Wayback Machine.
Watch online preview.

🔧 Features

• Cross-platform & Modern UI software launcher "Blackhat style"
• 90% clean: All detections are false positives, No malware injected
• 90% portable: Using portable versions or resolved/included dependencies
• Original assets: Themes, Sounds (e.g. BRD - Teleport Pro.mx, CORE - Power ISO.xm)
• Packages manager: JSON based Downloader, Versioning, Updater
• AI-powered: Basic AI assistant using Ollama (llama3.2:1b)
• Boilerplate: For other projects (Electron.js X React.js)

🔧 Screenshot

This is how it looks, Made with {heart} using Electron.js X React.js.
The App background is the WebView DevTools itself.

Each item can be downloaded separately from trusted sources.

Packages are automatically downloaded.

Local AI assistant integrated using Ollama.

💡 Notices

[!Important] Respecting the rights of software developers is paramount. Engaging in activities such as bypassing software protections or reverse engineering software without explicit permission is not only generally illegal, but also unethical. It's essential to utilize software in the manner intended by its creators and in compliance with the stipulated terms of service or license agreement.

• ReVens will focus only on the package manager itself and not the packages!
• Reverse engineering tools are flagged by Antivirus (due to binary patching algorithms, debugging, packing, etc.).
• You should use a secure virtual machine or a sandbox.
• Many of the included tools are outdated and provided solely for legacy purposes!
• The primary architecture of the packages is x64, but other architectures (x86, ARM) can also be supported.
• ReVens is Windows-based, but still cross-platform if you want to build it for Linux.
• — Use it at your own risk. Better Call Saul! —

🔧 Requirements

• Windows 10/11 x64 (Runtime)
• Electron.js ^29.4.6 (Node 24.11.0)
• MinGW-w64 or Git for Windows
• Ollama for AI Assistant ReVens AI Assistant Setup

🔧 Build

git clone https://github.com/Jakiboy/ReVens .
bash init.sh
bash run.sh
bash build.sh

🔧 Test

./scripts/test.cmd
./scripts/fix.cmd
./scripts/generate.cmd

🔧 Download

• Download latest ReVens from: Releases.

🔧 TODO

• We need contributors for: Advanced AI, Settings, and the Package Downloader.

🔧 Packages

ReVens packages includes:

<!-- Auto-generated: ReVens Packages Begin -->

⚡ Analyzing

Analyze portable-executables and related files (EXE, DLL, OCX, SYS).

Binary

Analyze PE and other binary files.

• Exe Spy - Exe Spy.
• FileAlyzer - Understand files by analyzing their structure.
• PE-bear - PE reversing tool.
• DLL Analyzer - Display function names in DLLs.
• ReverseKit - Comprehensive reverse engineering toolkit.
• Spyre - Simple YARA-based scanner.
• Com Check - Check COM objects registration.
• Capa - Identify capabilities in executables.
• ClamAV - Open-source antivirus engine.
• Yara - Malware pattern matching tool.
• BDLLScan - Broken DLL scanner.
• Import Searcher - DLL import searcher.
• PE-Sniffer - PE file identifier.
• PEview - PE file viewer.
• View As Image - Hex/image file viewer.
• ExeInfo - Universal binary analyzer.
• Manalyze - Static analyzer for PE executables.
• PEstudio - Malware Analysis in a private context.
• GoBug - Debugging tool for Go programs.
• A-Ray Scanner - CD/DVD Scanner.
• CD Identifier - CD/DVD Device Capabilities Viewer.
• CPSV - Protected Storage Viewer.
• AsViewer - ActiveScript viewer.
• CompatAlyzer - Compatibility analyzer.
• Count Characters - Text length counter.
• Cowspy - Window spy tool.
• DarkSpy - Rootkit detector.
• DebugView - System debug output viewer.
• deChk - Dependency checker.
• DeDe PAS View - Delphi executable analyzer.
• Diskmon - Disk activity monitor.
• DiskView - Disk cluster viewer.
• Dongle Spy - Hardware dongle detector.
• DotNet Id - .NET assembly identifier.
• DriverspyNT - Windows driver spy.
• DupFinder - Duplicate file finder.
• EnumCSP - Cryptographic provider enumerator.
• ESfV Checker - Embedded string/font viewer.
• FastScanner - Fast file scanner.
• FFI - File format identifier.
• File Dependency - File dependency mapper.
• File insPEctor - PE file inspector.
• Filemon EE - File system activity monitor.
• FireLog - Firewall log viewer.
• Flashback - System restore point manager.
• Form Spy - GUI form inspector.
• Gmer - Rootkit/malware detector.
• Handle - Open file/process handle viewer.
• IceSword - Anti-rootkit tool.
• InCtrl - System change tracker.
• KaKeeware - Keystroke logger detector.
• Kerberos - Kerberos ticket viewer.
• Kernel Detective - Kernel mode inspector.
• KeyLogger - Keystroke activity monitor.
• Microsoft Spy - Windows message spy.
• MultiMon - Multi-monitor utility.
• OEP Finder - Original Entry Point locator.
• OEP Scan - OEP scanner for packed files.
• OTP Helper - One-time password assistant.
• PX Binary Viewer - Advanced binary viewer.
• Regcmd - Command-line registry tool.
• Seem - Hidden window revealer.
• ShowString - String extractor.
• Snoopy - Network sniffer.
• SysExporter - System data exporter.
• ToTheStars - Screen ruler/measurement tool.
• USBDeview - USB device history viewer.
• VB Spy - Visual Basic app inspector.
• VeoVeo - Video surveillance detector.
• VideoCacheView - Video cache extractor.
• WinService Manager - Windows service manager.
• Code Visualizer - Code structure visualization tool.
• SmartCheck - Runtime error detection for VB.
• WinHelp - Windows help file compiler.

Compilation

Analyze PE compilation, signature and more.

• Detect It Easy (DiE) - File type identifier.
• Nauz File Detector - Detects compiler tools.
• PE Detective - Identifies PE files.
• Language 2000 - Comprehensive compiler detector.
• gAPE - PE Viewer/Editor.
• GT2 - GetType2 (CLI).
• PE Verify - PE Verify (CLI).

Packaging

Analyze PE packaging and protection.

• Exeinfo PE (ASL) - Detects packers and compressors.
• UPX-Analyser - Analyzes UPX-packed files.
• PEiD - Identifies packed executables.
• ARiD - Identifies archive formats.
• RDG Packer Detector - Detects packers and protectors.
• Armadillo FP - Armadillo Find Protected.
• OverSaver Plugin - PEiD OverSaver Plugin Plugin.
• PEiD P2E - PEiD Plugin To Exe.
• PEiD Sigtool - PEiD Sigtool.
• PEiDSO - PEID Signature Organizer.
• PEPirate - Detect protectors/emulators/crypters.
• PlgLdr - Plugin Loader for PEiD and PE Tools.
• Protection ID - CD/DVD protection detector.
• SCANiT - PE scanner.
• Sleuth Kit - Sleuth Kit.
• TrID - File Identifier (CLI).
• TrIDNet - Binary Signature Identifier.
• Enigma Info - Enigma binary analysis tool.
• Corso Scanner - Vulnerability/code scanner.

System

Dynamic system analysis (Runtime).

• SysInspector - Rootkits scanner.
• Windows Kernel Explorer - Another rootkits scanner.
• Driver Store Explorer - Driver Store Explorer.
• RealTemp - CPU temperature monitoring tool.
• RunAlyzer - Startup program analyzer.
• RootAlyzer - Rootkit detection and analysis tool.
• Open Hardware Monitor - Hardware monitoring tool.

System (API)

• API Monitor - Monitor Windows API calls.
• Reg DLL View - Display the list of all registered DLL/OCX/EXE.
• Regshot - Registry snapshot and comparison utility.
• WinObj - Windows object manager.
• DxWnd - Window information tool.
• NTLDD - List DLL dependencies for Windows executables.
• WinID - Window information tool.
• Regalyz - *Registry ana