blackberry / pe_tree
Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports.
☆1,316Updated 2 years ago
Alternatives and similar repositories for pe_tree:
Users that are interested in pe_tree are comparing it to the libraries listed below
- Windows kernel and user mode emulation.☆1,553Updated 9 months ago
- Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories☆1,106Updated 4 years ago
- Diaphora, the most advanced Free and Open Source program diffing tool.☆3,714Updated last month
- IDA Pro utilities from FLARE team☆2,267Updated 2 months ago
- Adversary tradecraft detection, protection, and hunting☆2,264Updated this week
- A Coverage Explorer for Reverse Engineers☆2,284Updated 5 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,183Updated last month
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,895Updated 4 months ago
- Reverse engineering framework in Python☆3,525Updated 4 months ago
- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…☆2,081Updated 10 months ago
- A Trace Explorer for Reverse Engineers☆1,345Updated last year
- Interactive CTF Exploration Tool☆1,647Updated 3 years ago
- Open EDR public repository☆2,324Updated last year
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,376Updated this week
- A list of IDA Plugins☆3,608Updated 7 months ago
- Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…☆1,719Updated 3 months ago
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆2,528Updated this week
- Scripts for the Ghidra software reverse engineering suite.☆1,046Updated 4 years ago
- A True Instrumentable Binary Emulation Framework☆5,199Updated last month
- Retired beginner/intermediate malware analysis training materials from @pedramamini and @erocarrera.☆890Updated 4 years ago
- Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tool…☆4,535Updated 3 years ago
- PE file viewer/editor for Windows, Linux and MacOS.☆1,017Updated this week
- A static analyzer for PE executables.☆1,032Updated last year
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,316Updated 7 months ago
- PE-bear (builds only)☆773Updated last year
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆675Updated 3 months ago
- A curated list of awesome Ghidra materials☆1,202Updated 3 years ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,000Updated this week
- Hook system calls, context switches, page faults and more.☆2,454Updated last year
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,085Updated 2 weeks ago