🍺 BREW Explorer

← all formulae

ghidra

brew install ghidra v12.1.2 Apache-2.0

Multi-platform software reverse engineering framework with disassembly, decompilation, and graphing tools for compiled code analysis.

Why you might care

Ghidra is the NSA's open-source SRE suite for analyzing binaries across Windows, macOS, and Linux. It combines industrial-strength disassembly and decompilation with extensibility via Java/Python scripts, making it suitable for malware analysis, vulnerability research, and binary auditing at scale — heavier than IDA Free but free and community-backed.

Categories

debugger security reverse-engineering

Alternatives

IDA Pro Radare2 Binary Ninja Rizin
3.5k
30-day installs · #746
6.9k
90-day · #952
21.0k
365-day · #1043
69.9k
★ GitHub stars · updated 3d ago

Runtime dependencies

openjdk@21

Build dependencies

gradle python@3.14

GitHub topics

disassembler reverse-engineering software-analysis

Links

Blurb generated by claude-haiku-4-5 on today.

Raw metadata 
{
  "aliases": [],
  "alternatives": [
    "IDA Pro",
    "Radare2",
    "Binary Ninja",
    "Rizin"
  ],
  "build_dependencies": [
    "gradle",
    "python@3.14"
  ],
  "categories": [
    "debugger",
    "security",
    "reverse-engineering"
  ],
  "caveats": null,
  "conflicts_with": [],
  "dependencies": [
    "openjdk@21"
  ],
  "deprecated": 0,
  "deprecation_reason": null,
  "desc": "Multi-platform software reverse engineering framework",
  "disable_reason": null,
  "disabled": 0,
  "enrichment_fetched_at": "2026-06-20T23:38:01+00:00",
  "first_seen": "2026-06-20T23:34:18+00:00",
  "full_name": "ghidra",
  "github_default_branch": "master",
  "github_last_commit_at": "2026-06-17T14:29:19Z",
  "github_readme_excerpt": "\u003cimg src=\"Ghidra/Features/Base/src/main/resources/images/GHIDRA_3.png\" width=\"400\"\u003e\n\n# Ghidra Software Reverse Engineering Framework\nGhidra is a software reverse engineering (SRE) framework created and maintained by the \n[National Security Agency][nsa] Research Directorate. This framework includes a suite of \nfull-featured, high-end software analysis tools that enable users to analyze compiled code on a \nvariety of platforms including Windows, macOS, and Linux. Capabilities include disassembly, \nassembly, decompilation, graphing, and scripting, along with hundreds of other features. Ghidra \nsupports a wide variety of processor instruction sets and executable formats and can be run in both \nuser-interactive and automated modes. Users may also develop their own Ghidra extension components \nand/or scripts using Java or Python.\n\nIn support of NSA\u0027s Cybersecurity mission, Ghidra was built to solve scaling and teaming problems \non complex SRE efforts, and to provide a customizable and extensible SRE research platform. NSA has \napplied Ghidra SRE capabilities to a variety of problems that involve analyzing malicious code and \ngenerating deep insights for SRE analysts who seek a better understanding of potential \nvulnerabilities in networks and systems.\n\nIf you are a U.S. citizen interested in projects like this, to develop Ghidra and other \ncybersecurity tools for NSA to help protect our nation and its allies, consider applying for a \n[career with us][career].\n\n## Security Warning\n**WARNING:** There are known security vulnerabilities within certain versions of Ghidra.  Before \nproceeding, please read through Ghidra\u0027s [Security Advisories][security] for a better understanding \nof how you might be impacted.\n\n## Install\nTo install an official pre-built multi-platform Ghidra release:  \n* Install [JDK 21 64-bit][jdk]\n* Download a Ghidra [release file][releases]\n  - **NOTE:** The official multi-platform release file is named \n    `ghidra_\u003cversion\u003e_\u003crelease\u003e_\u003cdate\u003e.zip` which can",
  "github_repo": "NationalSecurityAgency/ghidra",
  "github_stars": 69947,
  "github_topics": [
    "disassembler",
    "reverse-engineering",
    "software-analysis"
  ],
  "homepage": "https://github.com/NationalSecurityAgency/ghidra",
  "homepage_og_description": null,
  "homepage_og_image": null,
  "homepage_title": null,
  "installs_30d": 3502,
  "installs_365d": 20989,
  "installs_90d": 6942,
  "keg_only": 0,
  "keg_only_reason": null,
  "last_seen": "2026-06-20T23:34:18+00:00",
  "license": "Apache-2.0",
  "llm_generated_at": "2026-06-20T23:46:47+00:00",
  "llm_model": "claude-haiku-4-5",
  "name": "ghidra",
  "oldnames": [],
  "one_liner": "Multi-platform software reverse engineering framework with disassembly, decompilation, and graphing tools for compiled code analysis.",
  "optional_dependencies": [],
  "rank_30d": 746,
  "rank_365d": 1043,
  "rank_90d": 952,
  "raw_hash": "c9480708fb63f953",
  "recommended_dependencies": [],
  "revision": 0,
  "ruby_source_path": "Formula/g/ghidra.rb",
  "tap": "homebrew/core",
  "test_dependencies": [],
  "uses_from_macos": [],
  "version_head": null,
  "version_stable": "12.1.2",
  "versioned_formulae": [],
  "why_use_this": "Ghidra is the NSA\u0027s open-source SRE suite for analyzing binaries across Windows, macOS, and Linux. It combines industrial-strength disassembly and decompilation with extensibility via Java/Python scripts, making it suitable for malware analysis, vulnerability research, and binary auditing at scale \u2014 heavier than IDA Free but free and community-backed."
}