whatisgithub

What is radare2?

itayc0hen/radare2 — explained in plain English

Analysis updated 2026-07-18 · repo last pushed 2020-04-09

CAudience · developerComplexity · 4/5DormantSetup · moderate

In one sentence

Radare2 is a toolkit for examining compiled binary files, it disassembles code, debugs running processes, and searches for security vulnerabilities across dozens of file formats and CPU architectures.

Mindmap

mindmap
  root((repo))
    What it does
      Disassembles binaries
      Debugs processes
      Finds vulnerabilities
    Tech stack
      C
      Command line
      Web UI
    Use cases
      Analyze malware
      Pentest software
      Forensics analysis
    Audience
      Security researchers
      Pentesters
    Reach
      Many architectures
      Many file formats

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Load a compiled program and step through its disassembled instructions to understand what it actually does.

USE CASE 2

Investigate a malware sample by examining its binary code and behavior in a controlled way.

USE CASE 3

Search a software binary for known vulnerability patterns as part of a penetration test.

USE CASE 4

Analyze a disk image or memory dump during a digital forensics investigation.

What is it built with?

CPythonJavaScript

How does it compare?

itayc0hen/radare2ac000/find-flvacc4github/kdenlive-omnifade
Stars0
LanguageCCC
Last pushed2020-04-092013-04-05
MaintenanceDormantDormant
Setup difficultymoderatemoderatemoderate
Complexity4/52/52/5
Audiencedeveloperdevelopergeneral

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · moderate Time to first run · 1h+

Reverse engineering and binary analysis require background knowledge beyond just installing the tool.

So what is it?

Radare2 is a set of tools and libraries that lets you examine and understand binary files, the compiled programs and system files that run on your computer. Think of it as a detective's toolkit for looking inside compiled code to see what it does, how it's built, and how to find security problems. Most of the time, when you run a program, you don't see the actual code, you just see it work. Radare2 lets you reverse that process. You can load a compiled program or system file, and it will show you the underlying instructions, translate them into human-readable assembly code, search for specific patterns, debug running processes, and analyze potential vulnerabilities. It's used by security researchers investigating malware, penetration testers examining software for weaknesses, and forensics specialists analyzing disk images or memory dumps. The tool is extremely flexible and comprehensive. It supports dozens of processor architectures (from common ones like Intel x86 and ARM to exotic ones like GameBoy and RISC-V) and can read nearly every file format you'd encounter, Windows executables, Mac binaries, Linux ELF files, Android APKs, firmware images, and more. It runs on Windows, Linux, macOS, and many other operating systems. Beyond the command-line interface, it includes a web-based UI for visual analysis and a package manager to extend functionality with plugins. What makes Radare2 accessible is that it doesn't require heavy dependencies, you can build it with just a standard compiler. If you want to automate analysis or integrate it into scripts, there are bindings for Python, JavaScript, Go, Ruby, and many other languages, so you're not locked into the command line. The community is active, and the tool is packaged in most major Linux distributions, making it straightforward to install and get started whether you're a security professional or someone curious about how compiled software actually works.

Copy-paste prompts

Prompt 1
Show me how to load a compiled ELF binary into radare2 and view its disassembled instructions.
Prompt 2
Walk me through using radare2's debugger to step through a running process.
Prompt 3
Explain how to use radare2's Python bindings to automate analysis of a binary file.
Prompt 4
What radare2 commands would I use to search a firmware image for a specific byte pattern?

Frequently asked questions

What is radare2?

Radare2 is a toolkit for examining compiled binary files, it disassembles code, debugs running processes, and searches for security vulnerabilities across dozens of file formats and CPU architectures.

What language is radare2 written in?

Mainly C. The stack also includes C, Python, JavaScript.

Is radare2 actively maintained?

Dormant — no commits in 2+ years (last push 2020-04-09).

How hard is radare2 to set up?

Setup difficulty is rated moderate, with roughly 1h+ to a first successful run.

Who is radare2 for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.