erocarrera / pefileLinks
pefile is a Python module to read and work with PE (Portable Executable) files
☆1,969Updated 11 months ago
Alternatives and similar repositories for pefile
Users that are interested in pefile are comparing it to the libraries listed below
Sorting:
- IDA Pro utilities from FLARE team☆2,376Updated 9 months ago
- A static analyzer for PE executables.☆1,078Updated last year
- IDAPython project for Hex-Ray's IDA Pro☆1,513Updated 5 months ago
- ☆970Updated last month
- DRAKVUF Black-box Binary Analysis☆1,146Updated 2 weeks ago
- Powerful Disassembler Library For x86/AMD64☆1,309Updated last year
- Windows kernel and user mode emulation.☆1,740Updated 4 months ago
- Automated static analysis tools for binary programs☆1,622Updated last month
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,637Updated this week
- Reverse engineering framework in Python☆3,720Updated 6 months ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,982Updated last week
- The Python interface for YARA☆701Updated 2 months ago
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,416Updated last year
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,671Updated last year
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,180Updated 2 weeks ago
- A Coverage Explorer for Reverse Engineers☆2,396Updated last year
- Export disassemblies into Protocol Buffers☆1,132Updated last month
- Portable Executable parsing library (from PE-bear)☆658Updated 3 months ago
- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…☆2,194Updated last year
- WinAppDbg Debugger☆472Updated 3 weeks ago
- Platform for Architecture-Neutral Dynamic Analysis☆2,640Updated this week
- Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…☆1,820Updated 5 months ago
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆1,993Updated last month
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,407Updated 2 months ago
- A fork of AFL for fuzzing Windows binaries☆2,460Updated this week
- A community driven collection of IDA FLIRT signature files☆1,286Updated 3 years ago
- Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)☆2,394Updated 3 months ago
- Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…☆3,845Updated 2 weeks ago
- Public API, examples, documentation and issues for Binary Ninja☆1,078Updated last week
- Diaphora, the most advanced Free and Open Source program diffing tool.☆3,993Updated 9 months ago