Arkana

Python · Active · MIT Licence

An open-source, AI-powered binary intelligence and malware analysis platform with 289 specialised tools behind a single MCP interface. Handles PE, ELF, Mach-O, .NET, Go, Rust, VB6, and shellcode — with auto-enrichment, interactive debugging, symbolic execution, and a live web dashboard.

Website: arkana.re | GitHub: JameZUK/Arkana

---

ProcmonMCP

Python · Active · MIT Licence

An MCP server that lets you query Procmon XML logs using natural language. Point it at a trace file and ask questions instead of building complex filters.

GitHub: JameZUK/ProcmonMCP

---

os-kea-unbound

Shell · Active · OPNsense Plugin

Dynamic DNS registration between Kea DHCP and Unbound DNS on OPNsense. Automatically creates and removes DNS records as DHCP leases are assigned and released — no more manually editing local DNS entries.

GitHub: JameZUK/os-kea-unbound

---

WinIsoExtractor

Python · Stable

A Python tool to extract files from Windows ISOs for use in emulation tools like Qiling. Useful when you need specific Windows DLLs or system files for malware analysis sandboxes.

GitHub: JameZUK/WinIsoExtractor

---

fqdn-builder

Python · Stable

An intelligent domain discovery tool that extracts embedded domain configurations from websites. Designed for building DNS blocklists by finding domains that sites depend on.

GitHub: JameZUK/fqdn-builder

---

Azure Tooling

PowerShell · Stable

A collection of PowerShell tools for Azure cloud migrations and reporting:

• AzureDataDumper — dump Azure resource details for reports and design documentation
• AzureRoboCopyScripts — simplify data migrations into Azure Files
• AzureDataStudioMigrationReports — generate SQL migration reports with Azure Data Studio