Upload two versions of any file and see exactly which bytes changed. Byte-level diff with colour-coded hex view, entropy comparison, file type detection, and change statistics. Essential for malware diff, firmware comparison, and document forensics.
The Binary & Code Differ is a forensic file comparison tool that reveals exactly what changed between two versions of any file — executable, document, archive, image, or source code. While text diff tools only compare visible characters, this tool operates at the byte level, making it possible to compare compiled binaries, encrypted files, and proprietary formats where traditional diff tools are blind.
The hex viewer renders any file as a grid of hexadecimal bytes alongside the ASCII representation — the standard view used in reverse engineering, malware analysis, and protocol dissection. Changed bytes are highlighted in context, making it immediately clear which sections of a binary were modified between two versions. This is critical for malware analysis, where even a single byte change can alter execution behavior.
The entropy visualization chart plots Shannon entropy across the file in sliding windows. High-entropy regions indicate compressed or encrypted data. Sudden jumps in entropy within an executable can reveal injected shellcode, appended payloads, or packed sections — all hallmarks of malware. String extraction pulls all embedded human-readable strings from binaries, often revealing hardcoded credentials, URLs, and command-and-control server addresses.