omarghader / pefile-goView external linksLinks
Golang port of pefile
☆25Jul 17, 2017Updated 8 years ago
Alternatives and similar repositories for pefile-go
Users that are interested in pefile-go are comparing it to the libraries listed below
Sorting:
- Simple x64dbg plugin to show registers on every step.☆16Jul 27, 2019Updated 6 years ago
- v1版完成对PE头,区段,输入表的解析☆11Apr 16, 2018Updated 7 years ago
- Python command-line tool that uses nearest neighbor search methods for malware similarity analysis☆16Jan 29, 2019Updated 7 years ago
- ssdeep for python on windows☆18Feb 7, 2026Updated last week
- Volatility plugin to validate Authenticode-signed processes, either with embedded signature or catalog-signed☆20Jun 13, 2023Updated 2 years ago
- A Dockerized Ghidra Server☆15Jan 9, 2021Updated 5 years ago
- PE Import Hash Generator☆78Jul 17, 2017Updated 8 years ago
- Automatic Malware Signature Generation Tool☆16Oct 13, 2021Updated 4 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- Pure Rust fuzzy hash implementation☆22Mar 13, 2023Updated 2 years ago
- ☆24Aug 30, 2019Updated 6 years ago
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 4 months ago
- Network detector for Winnti malware☆21Mar 6, 2018Updated 7 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Mar 30, 2019Updated 6 years ago
- ☆22Jul 7, 2023Updated 2 years ago
- A Ghidra script to export data to a x64dbg database☆34Jan 6, 2023Updated 3 years ago
- Inject and detour DLLs and program functions both managed and unmanaged in other programs, written (almost) purely in C#. [Not maintained…☆37Jan 20, 2014Updated 12 years ago
- Use Ghidra Structs in Python☆30Mar 28, 2021Updated 4 years ago
- VDA Labs scripts for the GHIDRA reverse engineering toolset☆29Mar 8, 2019Updated 6 years ago
- Golang parser for OLE files☆33Dec 4, 2025Updated 2 months ago
- File integrity monitor with malware detection using machine learning☆14May 23, 2024Updated last year
- Plugin to patch and remove ASLR from PE files on x64dbg☆39Sep 23, 2022Updated 3 years ago
- Example of hijacking system calls via function pointer tables☆31Jun 26, 2021Updated 4 years ago
- A better alternative to RunDLL32☆35Jun 11, 2019Updated 6 years ago
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆30Apr 8, 2020Updated 5 years ago
- Golang port of PEFile☆32Jul 23, 2020Updated 5 years ago
- ☆12Aug 4, 2018Updated 7 years ago
- The Code implements the following: => Storing a file => Retrieving a file. Key Technologies used are PHP,HTML 5☆12Feb 5, 2023Updated 3 years ago
- Hacky scripts to fixup stack strings in Ghidra's decompiler.☆36May 22, 2022Updated 3 years ago
- Analyses in IDA/Hex-Rays☆87Apr 6, 2023Updated 2 years ago
- IDAPro scripts/plugins☆93Feb 26, 2019Updated 6 years ago
- APISearch Plugin (x64) - A Plugin For x64dbg☆43Jul 17, 2018Updated 7 years ago
- updated version of autoplay without third party authentication☆10Dec 4, 2020Updated 5 years ago
- ☆11Dec 14, 2016Updated 9 years ago
- C++ Wrapper Library for WinAPI, Direct2D, GUIs and often used functionality. Quick and easy to use.☆10Oct 7, 2022Updated 3 years ago
- Powershell to read ETL file on an interval and convert it to an EVTX (so Windows Event Forwarding can 'subscribe')☆11May 16, 2017Updated 8 years ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆11Apr 22, 2024Updated last year
- PEVuln: A Benchmark Dataset for Using Machine Learning to Detect Vulnerabilities in PE Malware☆14Nov 26, 2025Updated 2 months ago
- This project attempts to classify the entries in the Microsoft Malware Classification Challenge dataset using random forests.☆11Dec 22, 2016Updated 9 years ago