erocarrera / pefileLinks
pefile is a Python module to read and work with PE (Portable Executable) files
☆1,980Updated last year
Alternatives and similar repositories for pefile
Users that are interested in pefile are comparing it to the libraries listed below
Sorting:
- IDA Pro utilities from FLARE team☆2,392Updated 11 months ago
- A static analyzer for PE executables.☆1,085Updated last year
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,677Updated last year
- ☆974Updated last month
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,736Updated last week
- DRAKVUF Black-box Binary Analysis☆1,176Updated 3 weeks ago
- IDAPython project for Hex-Ray's IDA Pro☆1,520Updated 7 months ago
- Powerful Disassembler Library For x86/AMD64☆1,310Updated 2 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,015Updated last month
- Reverse engineering framework in Python☆3,743Updated 8 months ago
- The Python interface for YARA☆711Updated 4 months ago
- Windows kernel and user mode emulation.☆1,770Updated 6 months ago
- Diaphora, the most advanced Free and Open Source program diffing tool.☆4,078Updated 11 months ago
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,442Updated 2 weeks ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,196Updated 2 months ago
- Export disassemblies into Protocol Buffers☆1,149Updated last month
- Automated static analysis tools for binary programs☆1,640Updated 2 months ago
- A Coverage Explorer for Reverse Engineers☆2,429Updated last year
- Platform for Architecture-Neutral Dynamic Analysis☆2,676Updated this week
- A fork of AFL for fuzzing Windows binaries☆2,487Updated 2 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,463Updated last month
- WinAppDbg Debugger☆473Updated last week
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆715Updated 2 months ago
- Rekall Memory Forensic Framework☆1,983Updated 5 years ago
- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…☆2,220Updated 3 weeks ago
- A community driven collection of IDA FLIRT signature files☆1,299Updated 4 years ago
- A list of IDA Plugins☆3,771Updated last year
- rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.☆2,029Updated last month
- Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…☆1,833Updated 8 months ago
- Official repository for Pyew.☆390Updated 6 years ago