Monocle: Open-source LLM for binary analysis search

Monocle is open-source tooling backed by a large language model (LLM) for performing natural language searches against compiled target binaries.

Monocle can be provided with a binary and search criteria (authentication code, vulnerable code, password strings, etc.), and it will decompile the binary to identify and score areas of the code that meet the criteria.

Monocle uses Ghidra headless to enable the decompilation of compiled binaries.

Requirements and download

Monocle is available for free on GitHub. It requires Nvidia CUDA, which allows for increased performance of the LLM.

You should run Monocle on a computer with at least 16GB of RAM and a dedicated Nvidia GPU with a minimum of 4GB of memory. While it can function on machines with lower specifications, performance will be considerably slower.

Must read:

• 20 free cybersecurity tools you might have missed
• 15 open-source cybersecurity tools you’ll wish you’d known earlier
• 20 essential open-source cybersecurity tools that save you time

I have read and agree to the terms & conditions

Leave this field empty if you're human: