pe-format
There are 52 repositories under pe-format topic.
hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
hasherezade/pe-bear
Portable Executable reversing tool with a friendly GUI
hasherezade/libpeconv
A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
guidedhacking/GuidedHacking-Injector
The BEST DLL Injector Library.
horsicq/XPEViewer
PE file viewer/editor for Windows, Linux and MacOS.
trailofbits/pe-parse
Principled, lightweight C/C++ PE parser
hasherezade/pe-bear-releases
PE-bear (builds only)
MrSmith33/vox
Vox language compiler. AOT / JIT / Linker. Zero dependencies
saferwall/pe
A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.
hasherezade/IAT_patcher
Persistent IAT hooking application - based on bearparser
HoShiMin/formatPE
A bunch of parsers for PE and PDB formats in C++
tgrysztar/fasmg
flat assembler g - adaptable assembly engine
jovibor/libpe
Library for parsing internal structures of PE32/PE32+ binary files.
jovibor/Pepper
PE32 (x86) and PE32+ (x64) binaries analysis tool, resources viewer/extractor.
Fleynaro/SDA
SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.
packing-box/peid
Python implementation of the Packed Executable iDentifier (PEiD)
jnastarot/enma_pe
Cross-platform library for parsing and building PE\PE+ formats
jaketae/deep-malware-detection
A neural approach to malware detection in portable executables
hasherezade/pe2pic
Small visualizator for PE files
packing-box/docker-packing-box
Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection
packing-box/bintropy
Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes
packing-box/dataset-packed-pe
Dataset of packed PE samples
hMihaiDavid/hooks
A DLL that performs IAT hooking
0xcpu/RElieve
RE scripts, snippets (IDA, lief, gdb, etc.)
IsaacMarovitz/pe-parser
PE Parsing, but blazing fast
guided-hacking/GuidedHacking-Injector
The BEST DLL Injector Library.
packing-box/pypackerdetect
Packing detection tool for PE files
jet2jet/pe-library-js
Provides parsing and generating Portable Executable binaries
packing-box/packer-masking-tool
Attack tool for altering packed samples so that they evade static packing detection
Flawww/Relocation-Reconstructor
Heuristically recover relocations and imports from module memory dumps
Alon-Regev/VeganVirus
A Virus to encourage veganism and deter against eating meat.
phax/gt
GetTyp/GetType/GT2 - legacy file format detector
jmcph4/butyl
Binary executable tool
katahiromz/CodeReverse2
The reverse-engineering tool for Windows executables
AymenSekhri/MalNet
Machine Learning Malware Detector
5h4rrK/PEInsight
PEInsight is a fast and efficient command-line tool for parsing Windows Portable Executable (PE) files, written in C.